diff --git a/docs/data-sources/apps_kubeblocks_io_cluster_v1alpha1_manifest.md b/docs/data-sources/apps_kubeblocks_io_cluster_v1alpha1_manifest.md
index 62ca2182f..41260dba9 100644
--- a/docs/data-sources/apps_kubeblocks_io_cluster_v1alpha1_manifest.md
+++ b/docs/data-sources/apps_kubeblocks_io_cluster_v1alpha1_manifest.md
@@ -115,13 +115,16 @@ Required:
Optional:
- `affinity` (Attributes) Specifies a group of affinity scheduling rules for the Component.It allows users to control how the Component's Pods are scheduled onto nodes in the K8s cluster.Deprecated since v0.10, replaced by the 'schedulingPolicy' field. (see [below for nested schema](#nestedatt--spec--component_specs--affinity))
+- `annotations` (Map of String) Specifies Annotations to override or add for underlying Pods.
- `component_def` (String) References the name of a ComponentDefinition object.The ComponentDefinition specifies the behavior and characteristics of the Component.If both 'componentDefRef' and 'componentDef' are provided,the 'componentDef' will take precedence over 'componentDefRef'.
- `component_def_ref` (String) References a ClusterComponentDefinition defined in the 'clusterDefinition.spec.componentDef' field.Must comply with the IANA service naming rule.Deprecated since v0.9,because defining Components in 'clusterDefinition.spec.componentDef' field has been deprecated.This field is replaced by the 'componentDef' field, use 'componentDef' instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.TODO +kubebuilder:validation:XValidation:rule='self == oldSelf',message='componentDefRef is immutable'
-- `configs` (Attributes List) (see [below for nested schema](#nestedatt--spec--component_specs--configs))
+- `configs` (Attributes List) Specifies the configuration content of a config template. (see [below for nested schema](#nestedatt--spec--component_specs--configs))
- `disable_exporter` (Boolean) Determines whether metrics exporter information is annotated on the Component's headless Service.If set to true, the following annotations will not be patched into the Service:- 'monitor.kubeblocks.io/path'- 'monitor.kubeblocks.io/port'- 'monitor.kubeblocks.io/scheme'These annotations allow the Prometheus installed by KubeBlocks to discover and scrape metrics from the exporter.
- `enabled_logs` (List of String) Specifies which types of logs should be collected for the Component.The log types are defined in the 'componentDefinition.spec.logConfigs' field with the LogConfig entries.The elements in the 'enabledLogs' array correspond to the names of the LogConfig entries.For example, if the 'componentDefinition.spec.logConfigs' defines LogConfig entries withnames 'slow_query_log' and 'error_log',you can enable the collection of these logs by including their names in the 'enabledLogs' array:'''yamlenabledLogs:- slow_query_log- error_log'''
+- `env` (Attributes List) List of environment variables to add.These environment variables will be placed after the environment variables declared in the Pod. (see [below for nested schema](#nestedatt--spec--component_specs--env))
- `instances` (Attributes List) Allows for the customization of configuration values for each instance within a Component.An instance represent a single replica (Pod and associated K8s resources like PVCs, Services, and ConfigMaps).While instances typically share a common configuration as defined in the ClusterComponentSpec,they can require unique settings in various scenarios:For example:- A database Component might require different resource allocations for primary and secondary instances, with primaries needing more resources.- During a rolling upgrade, a Component may first update the image for one or a few instances, and then update the remaining instances after verifying that the updated instances are functioning correctly.InstanceTemplate allows for specifying these unique configurations per instance.Each instance's name is constructed using the pattern: $(component.name)-$(template.name)-$(ordinal),starting with an ordinal of 0.It is crucial to maintain unique names for each InstanceTemplate to avoid conflicts.The sum of replicas across all InstanceTemplates should not exceed the total number of replicas specified for the Component.Any remaining replicas will be generated using the default template and will follow the default naming rules. (see [below for nested schema](#nestedatt--spec--component_specs--instances))
- `issuer` (Attributes) Specifies the configuration for the TLS certificates issuer.It allows defining the issuer name and the reference to the secret containing the TLS certificates and key.The secret should contain the CA certificate, TLS certificate, and private key in the specified keys.Required when TLS is enabled. (see [below for nested schema](#nestedatt--spec--component_specs--issuer))
+- `labels` (Map of String) Specifies Labels to override or add for underlying Pods.
- `monitor` (Boolean) Deprecated since v0.9Determines whether metrics exporter information is annotated on the Component's headless Service.If set to true, the following annotations will be patched into the Service:- 'monitor.kubeblocks.io/path'- 'monitor.kubeblocks.io/port'- 'monitor.kubeblocks.io/scheme'These annotations allow the Prometheus installed by KubeBlocks to discover and scrape metrics from the exporter.
- `name` (String) Specifies the Component's name.It's part of the Service DNS name and must comply with the IANA service naming rule.The name is optional when ClusterComponentSpec is used as a template (e.g., in 'shardingSpec'),but required otherwise.TODO +kubebuilder:validation:XValidation:rule='self == oldSelf',message='name is immutable'
- `offline_instances` (List of String) Specifies the names of instances to be transitioned to offline status.Marking an instance as offline results in the following:1. The associated Pod is stopped, and its PersistentVolumeClaim (PVC) is retained for potential future reuse or data recovery, but it is no longer actively used.2. The ordinal number assigned to this instance is preserved, ensuring it remains unique and avoiding conflicts with new instances.Setting instances to offline allows for a controlled scale-in process, preserving their data and maintainingordinal consistency within the Cluster.Note that offline instances and their associated resources, such as PVCs, are not automatically deleted.The administrator must manually manage the cleanup and removal of these resources when they are no longer needed.
@@ -138,6 +141,7 @@ Optional:
- `update_strategy` (String) Defines the update strategy for the Component.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.
- `user_resource_refs` (Attributes) Allows users to specify custom ConfigMaps and Secrets to be mounted as volumesin the Cluster's Pods.This is useful in scenarios where users need to provide additional resources to the Cluster, such as:- Mounting custom scripts or configuration files during Cluster startup.- Mounting Secrets as volumes to provide sensitive information, like S3 AK/SK, to the Cluster. (see [below for nested schema](#nestedatt--spec--component_specs--user_resource_refs))
- `volume_claim_templates` (Attributes List) Specifies a list of PersistentVolumeClaim templates that represent the storage requirements for the Component.Each template specifies the desired characteristics of a persistent volume, such as storage class,size, and access modes.These templates are used to dynamically provision persistent volumes for the Component. (see [below for nested schema](#nestedatt--spec--component_specs--volume_claim_templates))
+- `volumes` (Attributes List) List of volumes to override. (see [below for nested schema](#nestedatt--spec--component_specs--volumes))
### Nested Schema for `spec.component_specs.affinity`
@@ -183,6 +187,81 @@ Optional:
+
+### Nested Schema for `spec.component_specs.env`
+
+Required:
+
+- `name` (String) Name of the environment variable. Must be a C_IDENTIFIER.
+
+Optional:
+
+- `value` (String) Variable references $(VAR_NAME) are expandedusing the previously defined environment variables in the container andany service environment variables. If a variable cannot be resolved,the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.'$$(VAR_NAME)' will produce the string literal '$(VAR_NAME)'.Escaped references will never be expanded, regardless of whether the variableexists or not.Defaults to ''.
+- `value_from` (Attributes) Source for the environment variable's value. Cannot be used if value is not empty. (see [below for nested schema](#nestedatt--spec--component_specs--env--value_from))
+
+
+### Nested Schema for `spec.component_specs.env.value_from`
+
+Optional:
+
+- `config_map_key_ref` (Attributes) Selects a key of a ConfigMap. (see [below for nested schema](#nestedatt--spec--component_specs--env--value_from--config_map_key_ref))
+- `field_ref` (Attributes) Selects a field of the pod: supports metadata.name, metadata.namespace, 'metadata.labels['']', 'metadata.annotations['']',spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs. (see [below for nested schema](#nestedatt--spec--component_specs--env--value_from--field_ref))
+- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported. (see [below for nested schema](#nestedatt--spec--component_specs--env--value_from--resource_field_ref))
+- `secret_key_ref` (Attributes) Selects a key of a secret in the pod's namespace (see [below for nested schema](#nestedatt--spec--component_specs--env--value_from--secret_key_ref))
+
+
+### Nested Schema for `spec.component_specs.env.value_from.config_map_key_ref`
+
+Required:
+
+- `key` (String) The key to select.
+
+Optional:
+
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+- `optional` (Boolean) Specify whether the ConfigMap or its key must be defined
+
+
+
+### Nested Schema for `spec.component_specs.env.value_from.field_ref`
+
+Required:
+
+- `field_path` (String) Path of the field to select in the specified API version.
+
+Optional:
+
+- `api_version` (String) Version of the schema the FieldPath is written in terms of, defaults to 'v1'.
+
+
+
+### Nested Schema for `spec.component_specs.env.value_from.resource_field_ref`
+
+Required:
+
+- `resource` (String) Required: resource to select
+
+Optional:
+
+- `container_name` (String) Container name: required for volumes, optional for env vars
+- `divisor` (String) Specifies the output format of the exposed resources, defaults to '1'
+
+
+
+### Nested Schema for `spec.component_specs.env.value_from.secret_key_ref`
+
+Required:
+
+- `key` (String) The key of the secret to select from. Must be a valid secret key.
+
+Optional:
+
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+- `optional` (Boolean) Specify whether the Secret or its key must be defined
+
+
+
+
### Nested Schema for `spec.component_specs.instances`
@@ -2283,315 +2362,325 @@ Required:
+
+### Nested Schema for `spec.component_specs.volumes`
-
-### Nested Schema for `spec.network`
-
-Optional:
-
-- `host_network_accessible` (Boolean) Indicates whether the host network can be accessed. By default, this is set to false.
-- `publicly_accessible` (Boolean) Indicates whether the network is accessible to the public. By default, this is set to false.
-
+Required:
-
-### Nested Schema for `spec.resources`
+- `name` (String) name of the volume.Must be a DNS_LABEL and unique within the pod.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
Optional:
-- `cpu` (String) Specifies the amount of CPU resource the Cluster needs.For more information, refer to: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `memory` (String) Specifies the amount of memory resource the Cluster needs.For more information, refer to: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `aws_elastic_block_store` (Attributes) awsElasticBlockStore represents an AWS Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore (see [below for nested schema](#nestedatt--spec--component_specs--volumes--aws_elastic_block_store))
+- `azure_disk` (Attributes) azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--azure_disk))
+- `azure_file` (Attributes) azureFile represents an Azure File Service mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--azure_file))
+- `cephfs` (Attributes) cephFS represents a Ceph FS mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--component_specs--volumes--cephfs))
+- `cinder` (Attributes) cinder represents a cinder volume attached and mounted on kubelets host machine.More info: https://examples.k8s.io/mysql-cinder-pd/README.md (see [below for nested schema](#nestedatt--spec--component_specs--volumes--cinder))
+- `config_map` (Attributes) configMap represents a configMap that should populate this volume (see [below for nested schema](#nestedatt--spec--component_specs--volumes--config_map))
+- `csi` (Attributes) csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature). (see [below for nested schema](#nestedatt--spec--component_specs--volumes--csi))
+- `downward_api` (Attributes) downwardAPI represents downward API about the pod that should populate this volume (see [below for nested schema](#nestedatt--spec--component_specs--volumes--downward_api))
+- `empty_dir` (Attributes) emptyDir represents a temporary directory that shares a pod's lifetime.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir (see [below for nested schema](#nestedatt--spec--component_specs--volumes--empty_dir))
+- `ephemeral` (Attributes) ephemeral represents a volume that is handled by a cluster storage driver.The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,and deleted when the pod is removed.Use this if:a) the volume is only needed while the pod runs,b) features of normal volumes like restoring from snapshot or capacity tracking are needed,c) the storage driver is specified through a storage class, andd) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim).Use PersistentVolumeClaim or one of the vendor-specificAPIs for volumes that persist for longer than the lifecycleof an individual pod.Use CSI for light-weight local ephemeral volumes if the CSI driver is meant tobe used that way - see the documentation of the driver formore information.A pod can use both types of ephemeral volumes andpersistent volumes at the same time. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--ephemeral))
+- `fc` (Attributes) fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--fc))
+- `flex_volume` (Attributes) flexVolume represents a generic volume resource that isprovisioned/attached using an exec based plugin. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--flex_volume))
+- `flocker` (Attributes) flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running (see [below for nested schema](#nestedatt--spec--component_specs--volumes--flocker))
+- `gce_persistent_disk` (Attributes) gcePersistentDisk represents a GCE Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk (see [below for nested schema](#nestedatt--spec--component_specs--volumes--gce_persistent_disk))
+- `git_repo` (Attributes) gitRepo represents a git repository at a particular revision.DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount anEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDirinto the Pod's container. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--git_repo))
+- `glusterfs` (Attributes) glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/glusterfs/README.md (see [below for nested schema](#nestedatt--spec--component_specs--volumes--glusterfs))
+- `host_path` (Attributes) hostPath represents a pre-existing file or directory on the hostmachine that is directly exposed to the container. This is generallyused for system agents or other privileged things that are allowedto see the host machine. Most containers will NOT need this.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath---TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can notmount host directories as read/write. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--host_path))
+- `iscsi` (Attributes) iscsi represents an ISCSI Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://examples.k8s.io/volumes/iscsi/README.md (see [below for nested schema](#nestedatt--spec--component_specs--volumes--iscsi))
+- `nfs` (Attributes) nfs represents an NFS mount on the host that shares a pod's lifetimeMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs (see [below for nested schema](#nestedatt--spec--component_specs--volumes--nfs))
+- `persistent_volume_claim` (Attributes) persistentVolumeClaimVolumeSource represents a reference to aPersistentVolumeClaim in the same namespace.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims (see [below for nested schema](#nestedatt--spec--component_specs--volumes--persistent_volume_claim))
+- `photon_persistent_disk` (Attributes) photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--component_specs--volumes--photon_persistent_disk))
+- `portworx_volume` (Attributes) portworxVolume represents a portworx volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--component_specs--volumes--portworx_volume))
+- `projected` (Attributes) projected items for all in one resources secrets, configmaps, and downward API (see [below for nested schema](#nestedatt--spec--component_specs--volumes--projected))
+- `quobyte` (Attributes) quobyte represents a Quobyte mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--component_specs--volumes--quobyte))
+- `rbd` (Attributes) rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/rbd/README.md (see [below for nested schema](#nestedatt--spec--component_specs--volumes--rbd))
+- `scale_io` (Attributes) scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--scale_io))
+- `secret` (Attributes) secret represents a secret that should populate this volume.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret (see [below for nested schema](#nestedatt--spec--component_specs--volumes--secret))
+- `storageos` (Attributes) storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--storageos))
+- `vsphere_volume` (Attributes) vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--component_specs--volumes--vsphere_volume))
+
+
+### Nested Schema for `spec.component_specs.volumes.aws_elastic_block_store`
+Required:
-
-### Nested Schema for `spec.scheduling_policy`
+- `volume_id` (String) volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
Optional:
-- `affinity` (Attributes) Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity))
-- `node_name` (String) NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.
-- `node_selector` (Map of String) NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
-- `scheduler_name` (String) If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.
-- `tolerations` (Attributes List) Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes. (see [below for nested schema](#nestedatt--spec--scheduling_policy--tolerations))
-- `topology_spread_constraints` (Attributes List) TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed. (see [below for nested schema](#nestedatt--spec--scheduling_policy--topology_spread_constraints))
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstoreTODO: how do we prevent errors in the filesystem from compromising the machine
+- `partition` (Number) partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).
+- `read_only` (Boolean) readOnly value true will force the readOnly setting in VolumeMounts.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
-
-### Nested Schema for `spec.scheduling_policy.affinity`
-Optional:
+
+### Nested Schema for `spec.component_specs.volumes.azure_disk`
-- `node_affinity` (Attributes) Describes node affinity scheduling rules for the pod. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--node_affinity))
-- `pod_affinity` (Attributes) Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)). (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity))
-- `pod_anti_affinity` (Attributes) Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)). (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity))
+Required:
-
-### Nested Schema for `spec.scheduling_policy.affinity.node_affinity`
+- `disk_name` (String) diskName is the Name of the data disk in the blob storage
+- `disk_uri` (String) diskURI is the URI of data disk in the blob storage
Optional:
-- `preferred_during_scheduling_ignored_during_execution` (Attributes List) The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution))
-- `required_during_scheduling_ignored_during_execution` (Attributes) If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution))
+- `caching_mode` (String) cachingMode is the Host Caching mode: None, Read Only, Read Write.
+- `fs_type` (String) fsType is Filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `kind` (String) kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared
+- `read_only` (Boolean) readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
-
-### Nested Schema for `spec.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution`
-Required:
+
+### Nested Schema for `spec.component_specs.volumes.azure_file`
-- `preference` (Attributes) A node selector term, associated with the corresponding weight. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference))
-- `weight` (Number) Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.
+Required:
-
-### Nested Schema for `spec.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution.preference`
+- `secret_name` (String) secretName is the name of secret that contains Azure Storage Account Name and Key
+- `share_name` (String) shareName is the azure share Name
Optional:
-- `match_expressions` (Attributes List) A list of node selector requirements by node's labels. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference--match_expressions))
-- `match_fields` (Attributes List) A list of node selector requirements by node's fields. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference--match_fields))
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
-
-### Nested Schema for `spec.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution.preference.match_expressions`
+
+
+### Nested Schema for `spec.component_specs.volumes.cephfs`
Required:
-- `key` (String) The label key that the selector applies to.
-- `operator` (String) Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+- `monitors` (List of String) monitors is Required: Monitors is a collection of Ceph monitorsMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
Optional:
-- `values` (List of String) An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.
-
-
-
-### Nested Schema for `spec.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution.preference.match_fields`
-
-Required:
+- `path` (String) path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /
+- `read_only` (Boolean) readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `secret_file` (String) secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secretMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `secret_ref` (Attributes) secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--component_specs--volumes--cephfs--secret_ref))
+- `user` (String) user is optional: User is the rados user name, default is adminMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
-- `key` (String) The label key that the selector applies to.
-- `operator` (String) Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+
+### Nested Schema for `spec.component_specs.volumes.cephfs.secret_ref`
Optional:
-- `values` (List of String) An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.
-
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
-
-### Nested Schema for `spec.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution`
+
+### Nested Schema for `spec.component_specs.volumes.cinder`
Required:
-- `node_selector_terms` (Attributes List) Required. A list of node selector terms. The terms are ORed. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms))
+- `volume_id` (String) volumeID used to identify the volume in cinder.More info: https://examples.k8s.io/mysql-cinder-pd/README.md
-
-### Nested Schema for `spec.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution.node_selector_terms`
+Optional:
+
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+- `secret_ref` (Attributes) secretRef is optional: points to a secret object containing parameters used to connectto OpenStack. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--cinder--secret_ref))
+
+
+### Nested Schema for `spec.component_specs.volumes.cinder.secret_ref`
Optional:
-- `match_expressions` (Attributes List) A list of node selector requirements by node's labels. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms--match_expressions))
-- `match_fields` (Attributes List) A list of node selector requirements by node's fields. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms--match_fields))
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
-
-### Nested Schema for `spec.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution.node_selector_terms.match_expressions`
-Required:
-- `key` (String) The label key that the selector applies to.
-- `operator` (String) Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+
+### Nested Schema for `spec.component_specs.volumes.config_map`
Optional:
-- `values` (List of String) An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.
-
+- `default_mode` (Number) defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--config_map--items))
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+- `optional` (Boolean) optional specify whether the ConfigMap or its keys must be defined
-
-### Nested Schema for `spec.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution.node_selector_terms.match_fields`
+
+### Nested Schema for `spec.component_specs.volumes.config_map.items`
Required:
-- `key` (String) The label key that the selector applies to.
-- `operator` (String) Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
Optional:
-- `values` (List of String) An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+
+### Nested Schema for `spec.component_specs.volumes.csi`
+Required:
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity`
+- `driver` (String) driver is the name of the CSI driver that handles this volume.Consult with your admin for the correct name as registered in the cluster.
Optional:
-- `preferred_during_scheduling_ignored_during_execution` (Attributes List) The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution))
-- `required_during_scheduling_ignored_during_execution` (Attributes List) If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution))
+- `fs_type` (String) fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'.If not provided, the empty value is passed to the associated CSI driverwhich will determine the default filesystem to apply.
+- `node_publish_secret_ref` (Attributes) nodePublishSecretRef is a reference to the secret object containingsensitive information to pass to the CSI driver to complete the CSINodePublishVolume and NodeUnpublishVolume calls.This field is optional, and may be empty if no secret is required. If thesecret object contains more than one secret, all secret references are passed. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--csi--node_publish_secret_ref))
+- `read_only` (Boolean) readOnly specifies a read-only configuration for the volume.Defaults to false (read/write).
+- `volume_attributes` (Map of String) volumeAttributes stores driver-specific properties that are passed to the CSIdriver. Consult your driver's documentation for supported values.
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution`
+
+### Nested Schema for `spec.component_specs.volumes.csi.node_publish_secret_ref`
-Required:
+Optional:
-- `pod_affinity_term` (Attributes) Required. A pod affinity term, associated with the corresponding weight. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term))
-- `weight` (Number) weight associated with matching the corresponding podAffinityTerm,in the range 1-100.
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term`
-Required:
-- `topology_key` (String) This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.
+
+### Nested Schema for `spec.component_specs.volumes.downward_api`
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
+- `default_mode` (Number) Optional: mode bits to use on created files by default. Must be aOptional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) Items is a list of downward API volume file (see [below for nested schema](#nestedatt--spec--component_specs--volumes--downward_api--items))
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector`
+
+### Nested Schema for `spec.component_specs.volumes.downward_api.items`
+
+Required:
+
+- `path` (String) Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector--match_expressions))
-- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name and namespace are supported. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--downward_api--items--field_ref))
+- `mode` (Number) Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--downward_api--items--resource_field_ref))
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector.match_expressions`
+
+### Nested Schema for `spec.component_specs.volumes.downward_api.items.field_ref`
Required:
-- `key` (String) key is the label key that the selector applies to.
-- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+- `field_path` (String) Path of the field to select in the specified API version.
Optional:
-- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+- `api_version` (String) Version of the schema the FieldPath is written in terms of, defaults to 'v1'.
+
+### Nested Schema for `spec.component_specs.volumes.downward_api.items.resource_field_ref`
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector`
+Required:
+
+- `resource` (String) Required: resource to select
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector--match_expressions))
-- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+- `container_name` (String) Container name: required for volumes, optional for env vars
+- `divisor` (String) Specifies the output format of the exposed resources, defaults to '1'
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector.match_expressions`
-Required:
-- `key` (String) key is the label key that the selector applies to.
-- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+
+
+### Nested Schema for `spec.component_specs.volumes.empty_dir`
Optional:
-- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+- `medium` (String) medium represents what type of storage medium should back this directory.The default is '' which means to use the node's default medium.Must be an empty string (default) or Memory.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
+- `size_limit` (String) sizeLimit is the total amount of local storage required for this EmptyDir volume.The size limit is also applicable for memory medium.The maximum usage on memory medium EmptyDir would be the minimum value betweenthe SizeLimit specified here and the sum of memory limits of all containers in a pod.The default is nil which means that the limit is undefined.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
+
+### Nested Schema for `spec.component_specs.volumes.ephemeral`
+Optional:
+- `volume_claim_template` (Attributes) Will be used to create a stand-alone PVC to provision the volume.The pod in which this EphemeralVolumeSource is embedded will be theowner of the PVC, i.e. the PVC will be deleted together with thepod. The name of the PVC will be '-' where'' is the name from the 'PodSpec.Volumes' arrayentry. Pod validation will reject the pod if the concatenated nameis not valid for a PVC (for example, too long).An existing PVC with that name that is not owned by the podwill *not* be used for the pod to avoid using an unrelatedvolume by mistake. Starting the pod is then blocked untilthe unrelated PVC is removed. If such a pre-created PVC ismeant to be used by the pod, the PVC has to updated with anowner reference to the pod once the pod exists. Normallythis should not be necessary, but it may be useful whenmanually reconstructing a broken cluster.This field is read-only and no changes will be made by Kubernetesto the PVC after it has been created.Required, must not be nil. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--ephemeral--volume_claim_template))
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution`
+
+### Nested Schema for `spec.component_specs.volumes.ephemeral.volume_claim_template`
Required:
-- `topology_key` (String) This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.
+- `spec` (Attributes) The specification for the PersistentVolumeClaim. The entire content iscopied unchanged into the PVC that gets created from thistemplate. The same fields as in a PersistentVolumeClaimare also valid here. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--ephemeral--volume_claim_template--spec))
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
+- `metadata` (Attributes) May contain labels and annotations that will be copied into the PVCwhen creating it. No other fields are allowed and will be rejected duringvalidation. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--ephemeral--volume_claim_template--metadata))
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.label_selector`
+
+### Nested Schema for `spec.component_specs.volumes.ephemeral.volume_claim_template.spec`
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector--match_expressions))
-- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+- `access_modes` (List of String) accessModes contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
+- `data_source` (Attributes) dataSource field can be used to specify either:* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)* An existing PVC (PersistentVolumeClaim)If the provisioner or an external controller can support the specified data source,it will create a new volume based on the contents of the specified data source.When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.If the namespace is specified, then dataSourceRef will not be copied to dataSource. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--ephemeral--volume_claim_template--spec--data_source))
+- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-emptyvolume is desired. This may be any object from a non-empty API group (noncore object) or a PersistentVolumeClaim object.When this field is specified, volume binding will only succeed if the type ofthe specified object matches some installed volume populator or dynamicprovisioner.This field will replace the functionality of the dataSource field and as suchif both fields are non-empty, they must have the same value. For backwardscompatibility, when namespace isn't specified in dataSourceRef,both fields (dataSource and dataSourceRef) will be set to the samevalue automatically if one of them is empty and the other is non-empty.When namespace is specified in dataSourceRef,dataSource isn't set to the same value and must be empty.There are three important differences between dataSource and dataSourceRef:* While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects.* While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified.* While dataSource only allows local objects, dataSourceRef allows objects in any namespaces.(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--ephemeral--volume_claim_template--spec--data_source_ref))
+- `resources` (Attributes) resources represents the minimum resources the volume should have.If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirementsthat are lower than previous value but must still be higher than capacity recorded in thestatus field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources (see [below for nested schema](#nestedatt--spec--component_specs--volumes--ephemeral--volume_claim_template--spec--resources))
+- `selector` (Attributes) selector is a label query over volumes to consider for binding. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--ephemeral--volume_claim_template--spec--selector))
+- `storage_class_name` (String) storageClassName is the name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
+- `volume_mode` (String) volumeMode defines what type of volume is required by the claim.Value of Filesystem is implied when not included in claim spec.
+- `volume_name` (String) volumeName is the binding reference to the PersistentVolume backing this claim.
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.label_selector.match_expressions`
+
+### Nested Schema for `spec.component_specs.volumes.ephemeral.volume_claim_template.spec.data_source`
Required:
-- `key` (String) key is the label key that the selector applies to.
-- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+- `kind` (String) Kind is the type of resource being referenced
+- `name` (String) Name is the name of resource being referenced
Optional:
-- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+- `api_group` (String) APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.
+
+### Nested Schema for `spec.component_specs.volumes.ephemeral.volume_claim_template.spec.data_source_ref`
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.namespace_selector`
+Required:
+
+- `kind` (String) Kind is the type of resource being referenced
+- `name` (String) Name is the name of resource being referenced
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector--match_expressions))
-- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
-
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.namespace_selector.match_expressions`
-
-Required:
-
-- `key` (String) key is the label key that the selector applies to.
-- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
-
-Optional:
-
-- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
-
-
-
+- `api_group` (String) APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.
+- `namespace` (String) Namespace is the namespace of resource being referencedNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity`
+
+### Nested Schema for `spec.component_specs.volumes.ephemeral.volume_claim_template.spec.resources`
Optional:
-- `preferred_during_scheduling_ignored_during_execution` (Attributes List) The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution))
-- `required_during_scheduling_ignored_during_execution` (Attributes List) If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution))
-
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution`
-
-Required:
-
-- `pod_affinity_term` (Attributes) Required. A pod affinity term, associated with the corresponding weight. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term))
-- `weight` (Number) weight associated with matching the corresponding podAffinityTerm,in the range 1-100.
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--ephemeral--volume_claim_template--spec--resources--claims))
+- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term`
+
+### Nested Schema for `spec.component_specs.volumes.ephemeral.volume_claim_template.spec.resources.claims`
Required:
-- `topology_key` (String) This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.
-Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector`
+
+### Nested Schema for `spec.component_specs.volumes.ephemeral.volume_claim_template.spec.selector`
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector--match_expressions))
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--ephemeral--volume_claim_template--spec--selector--match_expressions))
- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector.match_expressions`
+
+### Nested Schema for `spec.component_specs.volumes.ephemeral.volume_claim_template.spec.selector.match_expressions`
Required:
@@ -2604,220 +2693,225 @@ Optional:
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector`
+
+
+### Nested Schema for `spec.component_specs.volumes.ephemeral.volume_claim_template.metadata`
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector--match_expressions))
-- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+- `annotations` (Map of String)
+- `finalizers` (List of String)
+- `labels` (Map of String)
+- `name` (String)
+- `namespace` (String)
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector.match_expressions`
-Required:
-- `key` (String) key is the label key that the selector applies to.
-- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+
+
+### Nested Schema for `spec.component_specs.volumes.fc`
Optional:
-- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.TODO: how do we prevent errors in the filesystem from compromising the machine
+- `lun` (Number) lun is Optional: FC target lun number
+- `read_only` (Boolean) readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+- `target_ww_ns` (List of String) targetWWNs is Optional: FC target worldwide names (WWNs)
+- `wwids` (List of String) wwids Optional: FC volume world wide identifiers (wwids)Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.
+
+### Nested Schema for `spec.component_specs.volumes.flex_volume`
+Required:
+- `driver` (String) driver is the name of the driver to use for this volume.
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution`
+Optional:
-Required:
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.
+- `options` (Map of String) options is Optional: this field holds extra command options if any.
+- `read_only` (Boolean) readOnly is Optional: defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+- `secret_ref` (Attributes) secretRef is Optional: secretRef is reference to the secret object containingsensitive information to pass to the plugin scripts. This may beempty if no secret object is specified. If the secret objectcontains more than one secret, all secrets are passed to the pluginscripts. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--flex_volume--secret_ref))
-- `topology_key` (String) This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.
+
+### Nested Schema for `spec.component_specs.volumes.flex_volume.secret_ref`
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.label_selector`
+
+
+
+### Nested Schema for `spec.component_specs.volumes.flocker`
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector--match_expressions))
-- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+- `dataset_name` (String) datasetName is Name of the dataset stored as metadata -> name on the dataset for Flockershould be considered as deprecated
+- `dataset_uuid` (String) datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.label_selector.match_expressions`
+
+
+### Nested Schema for `spec.component_specs.volumes.gce_persistent_disk`
Required:
-- `key` (String) key is the label key that the selector applies to.
-- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+- `pd_name` (String) pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
Optional:
-- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+- `fs_type` (String) fsType is filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskTODO: how do we prevent errors in the filesystem from compromising the machine
+- `partition` (Number) partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+
+### Nested Schema for `spec.component_specs.volumes.git_repo`
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.namespace_selector`
+Required:
+
+- `repository` (String) repository is the URL
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector--match_expressions))
-- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+- `directory` (String) directory is the target directory name.Must not contain or start with '..'. If '.' is supplied, the volume directory will be thegit repository. Otherwise, if specified, the volume will contain the git repository inthe subdirectory with the given name.
+- `revision` (String) revision is the commit hash for the specified revision.
-
-### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.namespace_selector.match_expressions`
+
+
+### Nested Schema for `spec.component_specs.volumes.glusterfs`
Required:
-- `key` (String) key is the label key that the selector applies to.
-- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+- `endpoints` (String) endpoints is the endpoint name that details Glusterfs topology.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+- `path` (String) path is the Glusterfs volume path.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
Optional:
-- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
-
-
+- `read_only` (Boolean) readOnly here will force the Glusterfs volume to be mounted with read-only permissions.Defaults to false.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+
+### Nested Schema for `spec.component_specs.volumes.host_path`
+Required:
-
-### Nested Schema for `spec.scheduling_policy.tolerations`
+- `path` (String) path of the directory on the host.If the path is a symlink, it will follow the link to the real path.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
Optional:
-- `effect` (String) Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.
-- `key` (String) Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.
-- `operator` (String) Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.
-- `toleration_seconds` (Number) TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.
-- `value` (String) Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.
+- `type` (String) type for HostPath VolumeDefaults to ''More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
-
-### Nested Schema for `spec.scheduling_policy.topology_spread_constraints`
+
+### Nested Schema for `spec.component_specs.volumes.iscsi`
Required:
-- `max_skew` (Number) MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.
-- `topology_key` (String) TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.
-- `when_unsatisfiable` (String) WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.
+- `iqn` (String) iqn is the target iSCSI Qualified Name.
+- `lun` (Number) lun represents iSCSI Target Lun number.
+- `target_portal` (String) targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).
Optional:
-- `label_selector` (Attributes) LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain. (see [below for nested schema](#nestedatt--spec--scheduling_policy--topology_spread_constraints--label_selector))
-- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).
-- `min_domains` (Number) MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).
-- `node_affinity_policy` (String) NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.
-- `node_taints_policy` (String) NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.
+- `chap_auth_discovery` (Boolean) chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication
+- `chap_auth_session` (Boolean) chapAuthSession defines whether support iSCSI Session CHAP authentication
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsiTODO: how do we prevent errors in the filesystem from compromising the machine
+- `initiator_name` (String) initiatorName is the custom iSCSI Initiator Name.If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface: will be created for the connection.
+- `iscsi_interface` (String) iscsiInterface is the interface Name that uses an iSCSI transport.Defaults to 'default' (tcp).
+- `portals` (List of String) portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.
+- `secret_ref` (Attributes) secretRef is the CHAP Secret for iSCSI target and initiator authentication (see [below for nested schema](#nestedatt--spec--component_specs--volumes--iscsi--secret_ref))
-
-### Nested Schema for `spec.scheduling_policy.topology_spread_constraints.label_selector`
+
+### Nested Schema for `spec.component_specs.volumes.iscsi.secret_ref`
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--scheduling_policy--topology_spread_constraints--label_selector--match_expressions))
-- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+
-
-### Nested Schema for `spec.scheduling_policy.topology_spread_constraints.label_selector.match_expressions`
+
+
+### Nested Schema for `spec.component_specs.volumes.nfs`
Required:
-- `key` (String) key is the label key that the selector applies to.
-- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+- `path` (String) path that is exported by the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+- `server` (String) server is the hostname or IP address of the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
Optional:
-- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+- `read_only` (Boolean) readOnly here will force the NFS export to be mounted with read-only permissions.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+
+### Nested Schema for `spec.component_specs.volumes.persistent_volume_claim`
+Required:
+- `claim_name` (String) claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
-
-### Nested Schema for `spec.sharding_specs`
+Optional:
+
+- `read_only` (Boolean) readOnly Will force the ReadOnly setting in VolumeMounts.Default false.
+
+
+
+### Nested Schema for `spec.component_specs.volumes.photon_persistent_disk`
Required:
-- `name` (String) Represents the common parent part of all shard names.This identifier is included as part of the Service DNS name and must comply with IANA service naming rules.It is used to generate the names of underlying Components following the pattern '$(shardingSpec.name)-$(ShardID)'.ShardID is a random string that is appended to the Name to generate unique identifiers for each shard.For example, if the sharding specification name is 'my-shard' and the ShardID is 'abc', the resulting Component namewould be 'my-shard-abc'.Note that the name defined in Component template('shardingSpec.template.name') will be disregardedwhen generating the Component names of the shards. The 'shardingSpec.name' field takes precedence.
-- `template` (Attributes) The template for generating Components for shards, where each shard consists of one Component.This field is of type ClusterComponentSpec, which encapsulates all the required details anddefinitions for creating and managing the Components.KubeBlocks uses this template to generate a set of identical Components or shards.All the generated Components will have the same specifications and definitions as specified in the 'template' field.This allows for the creation of multiple Components with consistent configurations,enabling sharding and distribution of workloads across Components. (see [below for nested schema](#nestedatt--spec--sharding_specs--template))
+- `pd_id` (String) pdID is the ID that identifies Photon Controller persistent disk
Optional:
-- `shards` (Number) Specifies the desired number of shards.Users can declare the desired number of shards through this field.KubeBlocks dynamically creates and deletes Components based on the differencebetween the desired and actual number of shards.KubeBlocks provides lifecycle management for sharding, including:- Executing the postProvision Action defined in the ComponentDefinition when the number of shards increases. This allows for custom actions to be performed after a new shard is provisioned.- Executing the preTerminate Action defined in the ComponentDefinition when the number of shards decreases. This enables custom cleanup or data migration tasks to be executed before a shard is terminated. Resources and data associated with the corresponding Component will also be deleted.
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
-
-### Nested Schema for `spec.sharding_specs.template`
+
+
+### Nested Schema for `spec.component_specs.volumes.portworx_volume`
Required:
-- `replicas` (Number) Specifies the desired number of replicas in the Component for enhancing availability and durability, or load balancing.
+- `volume_id` (String) volumeID uniquely identifies a Portworx volume
Optional:
-- `affinity` (Attributes) Specifies a group of affinity scheduling rules for the Component.It allows users to control how the Component's Pods are scheduled onto nodes in the K8s cluster.Deprecated since v0.10, replaced by the 'schedulingPolicy' field. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--affinity))
-- `component_def` (String) References the name of a ComponentDefinition object.The ComponentDefinition specifies the behavior and characteristics of the Component.If both 'componentDefRef' and 'componentDef' are provided,the 'componentDef' will take precedence over 'componentDefRef'.
-- `component_def_ref` (String) References a ClusterComponentDefinition defined in the 'clusterDefinition.spec.componentDef' field.Must comply with the IANA service naming rule.Deprecated since v0.9,because defining Components in 'clusterDefinition.spec.componentDef' field has been deprecated.This field is replaced by the 'componentDef' field, use 'componentDef' instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.TODO +kubebuilder:validation:XValidation:rule='self == oldSelf',message='componentDefRef is immutable'
-- `configs` (Attributes List) (see [below for nested schema](#nestedatt--spec--sharding_specs--template--configs))
-- `disable_exporter` (Boolean) Determines whether metrics exporter information is annotated on the Component's headless Service.If set to true, the following annotations will not be patched into the Service:- 'monitor.kubeblocks.io/path'- 'monitor.kubeblocks.io/port'- 'monitor.kubeblocks.io/scheme'These annotations allow the Prometheus installed by KubeBlocks to discover and scrape metrics from the exporter.
-- `enabled_logs` (List of String) Specifies which types of logs should be collected for the Component.The log types are defined in the 'componentDefinition.spec.logConfigs' field with the LogConfig entries.The elements in the 'enabledLogs' array correspond to the names of the LogConfig entries.For example, if the 'componentDefinition.spec.logConfigs' defines LogConfig entries withnames 'slow_query_log' and 'error_log',you can enable the collection of these logs by including their names in the 'enabledLogs' array:'''yamlenabledLogs:- slow_query_log- error_log'''
-- `instances` (Attributes List) Allows for the customization of configuration values for each instance within a Component.An instance represent a single replica (Pod and associated K8s resources like PVCs, Services, and ConfigMaps).While instances typically share a common configuration as defined in the ClusterComponentSpec,they can require unique settings in various scenarios:For example:- A database Component might require different resource allocations for primary and secondary instances, with primaries needing more resources.- During a rolling upgrade, a Component may first update the image for one or a few instances, and then update the remaining instances after verifying that the updated instances are functioning correctly.InstanceTemplate allows for specifying these unique configurations per instance.Each instance's name is constructed using the pattern: $(component.name)-$(template.name)-$(ordinal),starting with an ordinal of 0.It is crucial to maintain unique names for each InstanceTemplate to avoid conflicts.The sum of replicas across all InstanceTemplates should not exceed the total number of replicas specified for the Component.Any remaining replicas will be generated using the default template and will follow the default naming rules. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances))
-- `issuer` (Attributes) Specifies the configuration for the TLS certificates issuer.It allows defining the issuer name and the reference to the secret containing the TLS certificates and key.The secret should contain the CA certificate, TLS certificate, and private key in the specified keys.Required when TLS is enabled. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--issuer))
-- `monitor` (Boolean) Deprecated since v0.9Determines whether metrics exporter information is annotated on the Component's headless Service.If set to true, the following annotations will be patched into the Service:- 'monitor.kubeblocks.io/path'- 'monitor.kubeblocks.io/port'- 'monitor.kubeblocks.io/scheme'These annotations allow the Prometheus installed by KubeBlocks to discover and scrape metrics from the exporter.
-- `name` (String) Specifies the Component's name.It's part of the Service DNS name and must comply with the IANA service naming rule.The name is optional when ClusterComponentSpec is used as a template (e.g., in 'shardingSpec'),but required otherwise.TODO +kubebuilder:validation:XValidation:rule='self == oldSelf',message='name is immutable'
-- `offline_instances` (List of String) Specifies the names of instances to be transitioned to offline status.Marking an instance as offline results in the following:1. The associated Pod is stopped, and its PersistentVolumeClaim (PVC) is retained for potential future reuse or data recovery, but it is no longer actively used.2. The ordinal number assigned to this instance is preserved, ensuring it remains unique and avoiding conflicts with new instances.Setting instances to offline allows for a controlled scale-in process, preserving their data and maintainingordinal consistency within the Cluster.Note that offline instances and their associated resources, such as PVCs, are not automatically deleted.The administrator must manually manage the cleanup and removal of these resources when they are no longer needed.
-- `resources` (Attributes) Specifies the resources required by the Component.It allows defining the CPU, memory requirements and limits for the Component's containers. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--resources))
-- `scheduling_policy` (Attributes) Specifies the scheduling policy for the Component. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy))
-- `service_account_name` (String) Specifies the name of the ServiceAccount required by the running Component.This ServiceAccount is used to grant necessary permissions for the Component's Pods to interactwith other Kubernetes resources, such as modifying Pod labels or sending events.Defaults:If not specified, KubeBlocks automatically assigns a default ServiceAccount named 'kb-{cluster.name}',bound to a default role installed together with KubeBlocks.Future Changes:Future versions might change the default ServiceAccount creation strategy to one per Component,potentially revising the naming to 'kb-{cluster.name}-{component.name}'.Users can override the automatic ServiceAccount assignment by explicitly setting the name ofan existed ServiceAccount in this field.
-- `service_refs` (Attributes List) Defines a list of ServiceRef for a Component, enabling access to both external services andServices provided by other Clusters.Types of services:- External services: Not managed by KubeBlocks or managed by a different KubeBlocks operator; Require a ServiceDescriptor for connection details.- Services provided by a Cluster: Managed by the same KubeBlocks operator; identified using Cluster, Component and Service names.ServiceRefs with identical 'serviceRef.name' in the same Cluster are considered the same.Example:'''yamlserviceRefs: - name: 'redis-sentinel' serviceDescriptor: name: 'external-redis-sentinel' - name: 'postgres-cluster' clusterServiceSelector: cluster: 'my-postgres-cluster' service: component: 'postgresql''''The example above includes ServiceRefs to an external Redis Sentinel service and a PostgreSQL Cluster. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--service_refs))
-- `service_version` (String) ServiceVersion specifies the version of the Service expected to be provisioned by this Component.The version should follow the syntax and semantics of the 'Semantic Versioning' specification (http://semver.org/).If no version is specified, the latest available version will be used.
-- `services` (Attributes List) Overrides services defined in referenced ComponentDefinition and expose endpoints that can be accessed by clients. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--services))
-- `switch_policy` (Attributes) Defines the strategy for switchover and failover when workloadType is Replication.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--switch_policy))
-- `system_accounts` (Attributes List) Overrides system accounts defined in referenced ComponentDefinition. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--system_accounts))
-- `tls` (Boolean) A boolean flag that indicates whether the Component should use Transport Layer Security (TLS)for secure communication.When set to true, the Component will be configured to use TLS encryption for its network connections.This ensures that the data transmitted between the Component and its clients or other Components is encryptedand protected from unauthorized access.If TLS is enabled, the Component may require additional configuration, such as specifying TLS certificates and keys,to properly set up the secure communication channel.
-- `tolerations` (Map of String) Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.Deprecated since v0.10, replaced by the 'schedulingPolicy' field.
-- `update_strategy` (String) Defines the update strategy for the Component.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.
-- `user_resource_refs` (Attributes) Allows users to specify custom ConfigMaps and Secrets to be mounted as volumesin the Cluster's Pods.This is useful in scenarios where users need to provide additional resources to the Cluster, such as:- Mounting custom scripts or configuration files during Cluster startup.- Mounting Secrets as volumes to provide sensitive information, like S3 AK/SK, to the Cluster. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--user_resource_refs))
-- `volume_claim_templates` (Attributes List) Specifies a list of PersistentVolumeClaim templates that represent the storage requirements for the Component.Each template specifies the desired characteristics of a persistent volume, such as storage class,size, and access modes.These templates are used to dynamically provision persistent volumes for the Component. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volume_claim_templates))
+- `fs_type` (String) fSType represents the filesystem type to mountMust be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
-
-### Nested Schema for `spec.sharding_specs.template.affinity`
-Optional:
+
+### Nested Schema for `spec.component_specs.volumes.projected`
-- `node_labels` (Map of String) Indicates the node labels that must be present on nodes for pods to be scheduled on them.It is a map where the keys are the label keys and the values are the corresponding label values.Pods will only be scheduled on nodes that have all the specified labels with the corresponding values.For example, if NodeLabels is set to {'nodeType': 'ssd', 'environment': 'production'},pods will only be scheduled on nodes that have both the 'nodeType' label with value 'ssd'and the 'environment' label with value 'production'.This field allows users to control Pod placement based on specific node labels.It can be used to ensure that Pods are scheduled on nodes with certain characteristics,such as specific hardware (e.g., SSD), environment (e.g., production, staging),or any other custom labels assigned to nodes.
-- `pod_anti_affinity` (String) Specifies the anti-affinity level of Pods within a Component.It determines how pods should be spread across nodes to improve availability and performance.It can have the following values: 'Preferred' and 'Required'.The default value is 'Preferred'.
-- `tenancy` (String) Determines the level of resource isolation between Pods.It can have the following values: 'SharedNode' and 'DedicatedNode'.- SharedNode: Allow that multiple Pods may share the same node, which is the default behavior of K8s.- DedicatedNode: Each Pod runs on a dedicated node, ensuring that no two Pods share the same node. In other words, if a Pod is already running on a node, no other Pods will be scheduled on that node. Which provides a higher level of isolation and resource guarantee for Pods. The default value is 'SharedNode'.
-- `topology_keys` (List of String) Represents the key of node labels used to define the topology domain for Pod anti-affinityand Pod spread constraints.In K8s, a topology domain is a set of nodes that have the same value for a specific label key.Nodes with labels containing any of the specified TopologyKeys and identical values are consideredto be in the same topology domain.Note: The concept of topology in the context of K8s TopologyKeys is different from the concept oftopology in the ClusterDefinition.When a Pod has anti-affinity or spread constraints specified, Kubernetes will attempt to schedule thePod on nodes with different values for the specified TopologyKeys.This ensures that Pods are spread across different topology domains, promoting high availability andreducing the impact of node failures.Some well-known label keys, such as 'kubernetes.io/hostname' and 'topology.kubernetes.io/zone',are often used as TopologyKey.These keys represent the hostname and zone of a node, respectively.By including these keys in the TopologyKeys list, Pods will be spread across nodes withdifferent hostnames or zones.In addition to the well-known keys, users can also specify custom label keys as TopologyKeys.This allows for more flexible and custom topology definitions based on the specific needsof the application or environment.The TopologyKeys field is a slice of strings, where each string represents a label key.The order of the keys in the slice does not matter.
+Optional:
+- `default_mode` (Number) defaultMode are the mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `sources` (Attributes List) sources is the list of volume projections (see [below for nested schema](#nestedatt--spec--component_specs--volumes--projected--sources))
-
-### Nested Schema for `spec.sharding_specs.template.configs`
+
+### Nested Schema for `spec.component_specs.volumes.projected.sources`
Optional:
-- `config_map` (Attributes) ConfigMap source for the config. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--configs--config_map))
-- `name` (String) The name of the config.
+- `config_map` (Attributes) configMap information about the configMap data to project (see [below for nested schema](#nestedatt--spec--component_specs--volumes--projected--sources--config_map))
+- `downward_api` (Attributes) downwardAPI information about the downwardAPI data to project (see [below for nested schema](#nestedatt--spec--component_specs--volumes--projected--sources--downward_api))
+- `secret` (Attributes) secret information about the secret data to project (see [below for nested schema](#nestedatt--spec--component_specs--volumes--projected--sources--secret))
+- `service_account_token` (Attributes) serviceAccountToken is information about the serviceAccountToken data to project (see [below for nested schema](#nestedatt--spec--component_specs--volumes--projected--sources--service_account_token))
-
-### Nested Schema for `spec.sharding_specs.template.configs.config_map`
+
+### Nested Schema for `spec.component_specs.volumes.projected.sources.config_map`
Optional:
-- `default_mode` (Number) defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
-- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--configs--config_map--items))
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--projected--sources--config_map--items))
- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
- `optional` (Boolean) optional specify whether the ConfigMap or its keys must be defined
-
-### Nested Schema for `spec.sharding_specs.template.configs.config_map.items`
+
+### Nested Schema for `spec.component_specs.volumes.projected.sources.config_map.items`
Required:
@@ -2830,167 +2924,286 @@ Optional:
+
+### Nested Schema for `spec.component_specs.volumes.projected.sources.downward_api`
-
-### Nested Schema for `spec.sharding_specs.template.instances`
+Optional:
+
+- `items` (Attributes List) Items is a list of DownwardAPIVolume file (see [below for nested schema](#nestedatt--spec--component_specs--volumes--projected--sources--downward_api--items))
+
+
+### Nested Schema for `spec.component_specs.volumes.projected.sources.downward_api.items`
Required:
-- `name` (String) Name specifies the unique name of the instance Pod created using this InstanceTemplate.This name is constructed by concatenating the Component's name, the template's name, and the instance's ordinalusing the pattern: $(cluster.name)-$(component.name)-$(template.name)-$(ordinal). Ordinals start from 0.The specified name overrides any default naming conventions or patterns.
+- `path` (String) Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'
Optional:
-- `annotations` (Map of String) Specifies a map of key-value pairs to be merged into the Pod's existing annotations.Existing keys will have their values overwritten, while new keys will be added to the annotations.
-- `env` (Attributes List) Defines Env to override.Add new or override existing envs. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--env))
-- `image` (String) Specifies an override for the first container's image in the Pod.
-- `labels` (Map of String) Specifies a map of key-value pairs that will be merged into the Pod's existing labels.Values for existing keys will be overwritten, and new keys will be added.
-- `replicas` (Number) Specifies the number of instances (Pods) to create from this InstanceTemplate.This field allows setting how many replicated instances of the Component,with the specific overrides in the InstanceTemplate, are created.The default value is 1. A value of 0 disables instance creation.
-- `resources` (Attributes) Specifies an override for the resource requirements of the first container in the Pod.This field allows for customizing resource allocation (CPU, memory, etc.) for the container. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--resources))
-- `scheduling_policy` (Attributes) Specifies the scheduling policy for the Component. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy))
-- `volume_claim_templates` (Attributes List) Defines VolumeClaimTemplates to override.Add new or override existing volume claim templates. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volume_claim_templates))
-- `volume_mounts` (Attributes List) Defines VolumeMounts to override.Add new or override existing volume mounts of the first container in the Pod. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volume_mounts))
-- `volumes` (Attributes List) Defines Volumes to override.Add new or override existing volumes. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes))
+- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name and namespace are supported. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--projected--sources--downward_api--items--field_ref))
+- `mode` (Number) Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--projected--sources--downward_api--items--resource_field_ref))
-
-### Nested Schema for `spec.sharding_specs.template.instances.env`
+
+### Nested Schema for `spec.component_specs.volumes.projected.sources.downward_api.items.field_ref`
Required:
-- `name` (String) Name of the environment variable. Must be a C_IDENTIFIER.
+- `field_path` (String) Path of the field to select in the specified API version.
Optional:
-- `value` (String) Variable references $(VAR_NAME) are expandedusing the previously defined environment variables in the container andany service environment variables. If a variable cannot be resolved,the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.'$$(VAR_NAME)' will produce the string literal '$(VAR_NAME)'.Escaped references will never be expanded, regardless of whether the variableexists or not.Defaults to ''.
-- `value_from` (Attributes) Source for the environment variable's value. Cannot be used if value is not empty. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--env--value_from))
+- `api_version` (String) Version of the schema the FieldPath is written in terms of, defaults to 'v1'.
-
-### Nested Schema for `spec.sharding_specs.template.instances.env.value_from`
-Optional:
+
+### Nested Schema for `spec.component_specs.volumes.projected.sources.downward_api.items.resource_field_ref`
-- `config_map_key_ref` (Attributes) Selects a key of a ConfigMap. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--env--value_from--config_map_key_ref))
-- `field_ref` (Attributes) Selects a field of the pod: supports metadata.name, metadata.namespace, 'metadata.labels['']', 'metadata.annotations['']',spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--env--value_from--field_ref))
-- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--env--value_from--resource_field_ref))
-- `secret_key_ref` (Attributes) Selects a key of a secret in the pod's namespace (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--env--value_from--secret_key_ref))
+Required:
+
+- `resource` (String) Required: resource to select
+
+Optional:
+
+- `container_name` (String) Container name: required for volumes, optional for env vars
+- `divisor` (String) Specifies the output format of the exposed resources, defaults to '1'
-
-### Nested Schema for `spec.sharding_specs.template.instances.env.value_from.config_map_key_ref`
-Required:
-- `key` (String) The key to select.
+
+
+### Nested Schema for `spec.component_specs.volumes.projected.sources.secret`
Optional:
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--projected--sources--secret--items))
- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
-- `optional` (Boolean) Specify whether the ConfigMap or its key must be defined
+- `optional` (Boolean) optional field specify whether the Secret or its key must be defined
+
+### Nested Schema for `spec.component_specs.volumes.projected.sources.secret.items`
-
-### Nested Schema for `spec.sharding_specs.template.instances.env.value_from.field_ref`
+Required:
+
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
+
+Optional:
+
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+
+
+
+
+### Nested Schema for `spec.component_specs.volumes.projected.sources.service_account_token`
Required:
-- `field_path` (String) Path of the field to select in the specified API version.
+- `path` (String) path is the path relative to the mount point of the file to project thetoken into.
Optional:
-- `api_version` (String) Version of the schema the FieldPath is written in terms of, defaults to 'v1'.
+- `audience` (String) audience is the intended audience of the token. A recipient of a tokenmust identify itself with an identifier specified in the audience of thetoken, and otherwise should reject the token. The audience defaults to theidentifier of the apiserver.
+- `expiration_seconds` (Number) expirationSeconds is the requested duration of validity of the serviceaccount token. As the token approaches expiration, the kubelet volumeplugin will proactively rotate the service account token. The kubelet willstart trying to rotate the token if the token is older than 80 percent ofits time to live or if the token is older than 24 hours.Defaults to 1 hourand must be at least 10 minutes.
+
-
-### Nested Schema for `spec.sharding_specs.template.instances.env.value_from.resource_field_ref`
+
+
+### Nested Schema for `spec.component_specs.volumes.quobyte`
Required:
-- `resource` (String) Required: resource to select
+- `registry` (String) registry represents a single or multiple Quobyte Registry servicesspecified as a string as host:port pair (multiple entries are separated with commas)which acts as the central registry for volumes
+- `volume` (String) volume is a string that references an already created Quobyte volume by name.
Optional:
-- `container_name` (String) Container name: required for volumes, optional for env vars
-- `divisor` (String) Specifies the output format of the exposed resources, defaults to '1'
+- `group` (String) group to map volume access toDefault is no group
+- `read_only` (Boolean) readOnly here will force the Quobyte volume to be mounted with read-only permissions.Defaults to false.
+- `tenant` (String) tenant owning the given Quobyte volume in the BackendUsed with dynamically provisioned Quobyte volumes, value is set by the plugin
+- `user` (String) user to map volume access toDefaults to serivceaccount user
-
-### Nested Schema for `spec.sharding_specs.template.instances.env.value_from.secret_key_ref`
+
+### Nested Schema for `spec.component_specs.volumes.rbd`
Required:
-- `key` (String) The key of the secret to select from. Must be a valid secret key.
+- `image` (String) image is the rados image name.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `monitors` (List of String) monitors is a collection of Ceph monitors.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+
+Optional:
+
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#rbdTODO: how do we prevent errors in the filesystem from compromising the machine
+- `keyring` (String) keyring is the path to key ring for RBDUser.Default is /etc/ceph/keyring.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `pool` (String) pool is the rados pool name.Default is rbd.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `secret_ref` (Attributes) secretRef is name of the authentication secret for RBDUser. If providedoverrides keyring.Default is nil.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--component_specs--volumes--rbd--secret_ref))
+- `user` (String) user is the rados user name.Default is admin.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+
+
+### Nested Schema for `spec.component_specs.volumes.rbd.secret_ref`
Optional:
- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
-- `optional` (Boolean) Specify whether the Secret or its key must be defined
+
+### Nested Schema for `spec.component_specs.volumes.scale_io`
-
-### Nested Schema for `spec.sharding_specs.template.instances.resources`
+Required:
+
+- `gateway` (String) gateway is the host address of the ScaleIO API Gateway.
+- `secret_ref` (Attributes) secretRef references to the secret for ScaleIO user and othersensitive information. If this is not provided, Login operation will fail. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--scale_io--secret_ref))
+- `system` (String) system is the name of the storage system as configured in ScaleIO.
Optional:
-- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--resources--claims))
-- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'.Default is 'xfs'.
+- `protection_domain` (String) protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.
+- `read_only` (Boolean) readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+- `ssl_enabled` (Boolean) sslEnabled Flag enable/disable SSL communication with Gateway, default false
+- `storage_mode` (String) storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.Default is ThinProvisioned.
+- `storage_pool` (String) storagePool is the ScaleIO Storage Pool associated with the protection domain.
+- `volume_name` (String) volumeName is the name of a volume already created in the ScaleIO systemthat is associated with this volume source.
-
-### Nested Schema for `spec.sharding_specs.template.instances.resources.claims`
+
+### Nested Schema for `spec.component_specs.volumes.scale_io.secret_ref`
+
+Optional:
+
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+
+
+
+
+### Nested Schema for `spec.component_specs.volumes.secret`
+
+Optional:
+
+- `default_mode` (Number) defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--secret--items))
+- `optional` (Boolean) optional field specify whether the Secret or its keys must be defined
+- `secret_name` (String) secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
+
+
+### Nested Schema for `spec.component_specs.volumes.secret.items`
Required:
-- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
+Optional:
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy`
+
+
+
+### Nested Schema for `spec.component_specs.volumes.storageos`
Optional:
-- `affinity` (Attributes) Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity))
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+- `secret_ref` (Attributes) secretRef specifies the secret to use for obtaining the StorageOS APIcredentials. If not specified, default values will be attempted. (see [below for nested schema](#nestedatt--spec--component_specs--volumes--storageos--secret_ref))
+- `volume_name` (String) volumeName is the human-readable name of the StorageOS volume. Volumenames are only unique within a namespace.
+- `volume_namespace` (String) volumeNamespace specifies the scope of the volume within StorageOS. If nonamespace is specified then the Pod's namespace will be used. This allows theKubernetes name scoping to be mirrored within StorageOS for tighter integration.Set VolumeName to any name to override the default behaviour.Set to 'default' if you are not using namespaces within StorageOS.Namespaces that do not pre-exist within StorageOS will be created.
+
+
+### Nested Schema for `spec.component_specs.volumes.storageos.secret_ref`
+
+Optional:
+
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+
+
+
+
+### Nested Schema for `spec.component_specs.volumes.vsphere_volume`
+
+Required:
+
+- `volume_path` (String) volumePath is the path that identifies vSphere volume vmdk
+
+Optional:
+
+- `fs_type` (String) fsType is filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `storage_policy_id` (String) storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.
+- `storage_policy_name` (String) storagePolicyName is the storage Policy Based Management (SPBM) profile name.
+
+
+
+
+
+### Nested Schema for `spec.network`
+
+Optional:
+
+- `host_network_accessible` (Boolean) Indicates whether the host network can be accessed. By default, this is set to false.
+- `publicly_accessible` (Boolean) Indicates whether the network is accessible to the public. By default, this is set to false.
+
+
+
+### Nested Schema for `spec.resources`
+
+Optional:
+
+- `cpu` (String) Specifies the amount of CPU resource the Cluster needs.For more information, refer to: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `memory` (String) Specifies the amount of memory resource the Cluster needs.For more information, refer to: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+
+### Nested Schema for `spec.scheduling_policy`
+
+Optional:
+
+- `affinity` (Attributes) Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity))
- `node_name` (String) NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.
- `node_selector` (Map of String) NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
- `scheduler_name` (String) If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.
-- `tolerations` (Attributes List) Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--tolerations))
-- `topology_spread_constraints` (Attributes List) TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--topology_spread_constraints))
+- `tolerations` (Attributes List) Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes. (see [below for nested schema](#nestedatt--spec--scheduling_policy--tolerations))
+- `topology_spread_constraints` (Attributes List) TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed. (see [below for nested schema](#nestedatt--spec--scheduling_policy--topology_spread_constraints))
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity`
+
+### Nested Schema for `spec.scheduling_policy.affinity`
Optional:
-- `node_affinity` (Attributes) Describes node affinity scheduling rules for the pod. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--node_affinity))
-- `pod_affinity` (Attributes) Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)). (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity))
-- `pod_anti_affinity` (Attributes) Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)). (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity))
+- `node_affinity` (Attributes) Describes node affinity scheduling rules for the pod. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--node_affinity))
+- `pod_affinity` (Attributes) Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)). (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity))
+- `pod_anti_affinity` (Attributes) Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)). (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity))
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.node_affinity`
+
+### Nested Schema for `spec.scheduling_policy.affinity.node_affinity`
Optional:
-- `preferred_during_scheduling_ignored_during_execution` (Attributes List) The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution))
-- `required_during_scheduling_ignored_during_execution` (Attributes) If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution))
+- `preferred_during_scheduling_ignored_during_execution` (Attributes List) The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution))
+- `required_during_scheduling_ignored_during_execution` (Attributes) If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution))
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution`
+
+### Nested Schema for `spec.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution`
Required:
-- `preference` (Attributes) A node selector term, associated with the corresponding weight. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference))
+- `preference` (Attributes) A node selector term, associated with the corresponding weight. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference))
- `weight` (Number) Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution.preference`
+
+### Nested Schema for `spec.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution.preference`
Optional:
-- `match_expressions` (Attributes List) A list of node selector requirements by node's labels. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference--match_expressions))
-- `match_fields` (Attributes List) A list of node selector requirements by node's fields. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference--match_fields))
+- `match_expressions` (Attributes List) A list of node selector requirements by node's labels. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference--match_expressions))
+- `match_fields` (Attributes List) A list of node selector requirements by node's fields. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference--match_fields))
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution.preference.match_expressions`
+
+### Nested Schema for `spec.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution.preference.match_expressions`
Required:
@@ -3002,8 +3215,8 @@ Optional:
- `values` (List of String) An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution.preference.match_fields`
+
+### Nested Schema for `spec.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution.preference.match_fields`
Required:
@@ -3017,23 +3230,23 @@ Optional:
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution`
+
+### Nested Schema for `spec.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution`
Required:
-- `node_selector_terms` (Attributes List) Required. A list of node selector terms. The terms are ORed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms))
+- `node_selector_terms` (Attributes List) Required. A list of node selector terms. The terms are ORed. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms))
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution.node_selector_terms`
+
+### Nested Schema for `spec.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution.node_selector_terms`
Optional:
-- `match_expressions` (Attributes List) A list of node selector requirements by node's labels. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms--match_expressions))
-- `match_fields` (Attributes List) A list of node selector requirements by node's fields. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms--match_fields))
+- `match_expressions` (Attributes List) A list of node selector requirements by node's labels. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms--match_expressions))
+- `match_fields` (Attributes List) A list of node selector requirements by node's fields. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms--match_fields))
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution.node_selector_terms.match_expressions`
+
+### Nested Schema for `spec.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution.node_selector_terms.match_expressions`
Required:
@@ -3045,8 +3258,8 @@ Optional:
- `values` (List of String) An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution.node_selector_terms.match_fields`
+
+### Nested Schema for `spec.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution.node_selector_terms.match_fields`
Required:
@@ -3061,24 +3274,24 @@ Optional:
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity`
Optional:
-- `preferred_during_scheduling_ignored_during_execution` (Attributes List) The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution))
-- `required_during_scheduling_ignored_during_execution` (Attributes List) If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution))
+- `preferred_during_scheduling_ignored_during_execution` (Attributes List) The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution))
+- `required_during_scheduling_ignored_during_execution` (Attributes List) If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution))
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution`
Required:
-- `pod_affinity_term` (Attributes) Required. A pod affinity term, associated with the corresponding weight. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term))
+- `pod_affinity_term` (Attributes) Required. A pod affinity term, associated with the corresponding weight. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term))
- `weight` (Number) weight associated with matching the corresponding podAffinityTerm,in the range 1-100.
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term`
Required:
@@ -3086,20 +3299,20 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector`
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector--match_expressions))
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector--match_expressions))
- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector.match_expressions`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector.match_expressions`
Required:
@@ -3112,16 +3325,16 @@ Optional:
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector`
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector--match_expressions))
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector--match_expressions))
- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector.match_expressions`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector.match_expressions`
Required:
@@ -3136,8 +3349,8 @@ Optional:
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution`
Required:
@@ -3145,20 +3358,20 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.label_selector`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.label_selector`
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector--match_expressions))
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector--match_expressions))
- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.label_selector.match_expressions`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.label_selector.match_expressions`
Required:
@@ -3171,16 +3384,16 @@ Optional:
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.namespace_selector`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.namespace_selector`
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector--match_expressions))
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector--match_expressions))
- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.namespace_selector.match_expressions`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.namespace_selector.match_expressions`
Required:
@@ -3195,24 +3408,24 @@ Optional:
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity`
Optional:
-- `preferred_during_scheduling_ignored_during_execution` (Attributes List) The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution))
-- `required_during_scheduling_ignored_during_execution` (Attributes List) If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution))
+- `preferred_during_scheduling_ignored_during_execution` (Attributes List) The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution))
+- `required_during_scheduling_ignored_during_execution` (Attributes List) If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution))
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution`
Required:
-- `pod_affinity_term` (Attributes) Required. A pod affinity term, associated with the corresponding weight. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term))
+- `pod_affinity_term` (Attributes) Required. A pod affinity term, associated with the corresponding weight. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term))
- `weight` (Number) weight associated with matching the corresponding podAffinityTerm,in the range 1-100.
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term`
Required:
@@ -3220,20 +3433,20 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector`
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector--match_expressions))
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector--match_expressions))
- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector.match_expressions`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector.match_expressions`
Required:
@@ -3246,16 +3459,16 @@ Optional:
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector`
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector--match_expressions))
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector--match_expressions))
- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector.match_expressions`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector.match_expressions`
Required:
@@ -3270,8 +3483,8 @@ Optional:
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution`
Required:
@@ -3279,20 +3492,20 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.label_selector`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.label_selector`
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector--match_expressions))
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector--match_expressions))
- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.label_selector.match_expressions`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.label_selector.match_expressions`
Required:
@@ -3305,16 +3518,16 @@ Optional:
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.namespace_selector`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.namespace_selector`
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector--match_expressions))
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector--match_expressions))
- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.namespace_selector.match_expressions`
+
+### Nested Schema for `spec.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.namespace_selector.match_expressions`
Required:
@@ -3330,8 +3543,8 @@ Optional:
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.tolerations`
+
+### Nested Schema for `spec.scheduling_policy.tolerations`
Optional:
@@ -3342,8 +3555,8 @@ Optional:
- `value` (String) Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.topology_spread_constraints`
+
+### Nested Schema for `spec.scheduling_policy.topology_spread_constraints`
Required:
@@ -3353,22 +3566,22 @@ Required:
Optional:
-- `label_selector` (Attributes) LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--topology_spread_constraints--label_selector))
+- `label_selector` (Attributes) LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain. (see [below for nested schema](#nestedatt--spec--scheduling_policy--topology_spread_constraints--label_selector))
- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).
- `min_domains` (Number) MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).
- `node_affinity_policy` (String) NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.
- `node_taints_policy` (String) NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.topology_spread_constraints.label_selector`
+
+### Nested Schema for `spec.scheduling_policy.topology_spread_constraints.label_selector`
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--topology_spread_constraints--label_selector--match_expressions))
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--scheduling_policy--topology_spread_constraints--label_selector--match_expressions))
- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
-
-### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.topology_spread_constraints.label_selector.match_expressions`
+
+### Nested Schema for `spec.scheduling_policy.topology_spread_constraints.label_selector.match_expressions`
Required:
@@ -3383,668 +3596,1389 @@ Optional:
-
-### Nested Schema for `spec.sharding_specs.template.instances.volume_claim_templates`
+
+### Nested Schema for `spec.sharding_specs`
Required:
-- `name` (String) Refers to the name of a volumeMount defined in either:- 'componentDefinition.spec.runtime.containers[*].volumeMounts'- 'clusterDefinition.spec.componentDefs[*].podSpec.containers[*].volumeMounts' (deprecated)The value of 'name' must match the 'name' field of a volumeMount specified in the corresponding 'volumeMounts' array.
+- `name` (String) Represents the common parent part of all shard names.This identifier is included as part of the Service DNS name and must comply with IANA service naming rules.It is used to generate the names of underlying Components following the pattern '$(shardingSpec.name)-$(ShardID)'.ShardID is a random string that is appended to the Name to generate unique identifiers for each shard.For example, if the sharding specification name is 'my-shard' and the ShardID is 'abc', the resulting Component namewould be 'my-shard-abc'.Note that the name defined in Component template('shardingSpec.template.name') will be disregardedwhen generating the Component names of the shards. The 'shardingSpec.name' field takes precedence.
+- `template` (Attributes) The template for generating Components for shards, where each shard consists of one Component.This field is of type ClusterComponentSpec, which encapsulates all the required details anddefinitions for creating and managing the Components.KubeBlocks uses this template to generate a set of identical Components or shards.All the generated Components will have the same specifications and definitions as specified in the 'template' field.This allows for the creation of multiple Components with consistent configurations,enabling sharding and distribution of workloads across Components. (see [below for nested schema](#nestedatt--spec--sharding_specs--template))
Optional:
-- `spec` (Attributes) Defines the desired characteristics of a PersistentVolumeClaim that will be created for the volumewith the mount name specified in the 'name' field.When a Pod is created for this ClusterComponent, a new PVC will be created based on the specificationdefined in the 'spec' field. The PVC will be associated with the volume mount specified by the 'name' field. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volume_claim_templates--spec))
+- `shards` (Number) Specifies the desired number of shards.Users can declare the desired number of shards through this field.KubeBlocks dynamically creates and deletes Components based on the differencebetween the desired and actual number of shards.KubeBlocks provides lifecycle management for sharding, including:- Executing the postProvision Action defined in the ComponentDefinition when the number of shards increases. This allows for custom actions to be performed after a new shard is provisioned.- Executing the preTerminate Action defined in the ComponentDefinition when the number of shards decreases. This enables custom cleanup or data migration tasks to be executed before a shard is terminated. Resources and data associated with the corresponding Component will also be deleted.
-
-### Nested Schema for `spec.sharding_specs.template.instances.volume_claim_templates.spec`
+
+### Nested Schema for `spec.sharding_specs.template`
+
+Required:
+
+- `replicas` (Number) Specifies the desired number of replicas in the Component for enhancing availability and durability, or load balancing.
Optional:
-- `access_modes` (Map of String) Contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1.
-- `resources` (Attributes) Represents the minimum resources the volume should have.If the RecoverVolumeExpansionFailure feature is enabled, users are allowed to specify resource requirements thatare lower than the previous value but must still be higher than the capacity recorded in the status field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volume_claim_templates--spec--resources))
-- `storage_class_name` (String) The name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1.
-- `volume_mode` (String) Defines what type of volume is required by the claim, either Block or Filesystem.
+- `affinity` (Attributes) Specifies a group of affinity scheduling rules for the Component.It allows users to control how the Component's Pods are scheduled onto nodes in the K8s cluster.Deprecated since v0.10, replaced by the 'schedulingPolicy' field. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--affinity))
+- `annotations` (Map of String) Specifies Annotations to override or add for underlying Pods.
+- `component_def` (String) References the name of a ComponentDefinition object.The ComponentDefinition specifies the behavior and characteristics of the Component.If both 'componentDefRef' and 'componentDef' are provided,the 'componentDef' will take precedence over 'componentDefRef'.
+- `component_def_ref` (String) References a ClusterComponentDefinition defined in the 'clusterDefinition.spec.componentDef' field.Must comply with the IANA service naming rule.Deprecated since v0.9,because defining Components in 'clusterDefinition.spec.componentDef' field has been deprecated.This field is replaced by the 'componentDef' field, use 'componentDef' instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.TODO +kubebuilder:validation:XValidation:rule='self == oldSelf',message='componentDefRef is immutable'
+- `configs` (Attributes List) Specifies the configuration content of a config template. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--configs))
+- `disable_exporter` (Boolean) Determines whether metrics exporter information is annotated on the Component's headless Service.If set to true, the following annotations will not be patched into the Service:- 'monitor.kubeblocks.io/path'- 'monitor.kubeblocks.io/port'- 'monitor.kubeblocks.io/scheme'These annotations allow the Prometheus installed by KubeBlocks to discover and scrape metrics from the exporter.
+- `enabled_logs` (List of String) Specifies which types of logs should be collected for the Component.The log types are defined in the 'componentDefinition.spec.logConfigs' field with the LogConfig entries.The elements in the 'enabledLogs' array correspond to the names of the LogConfig entries.For example, if the 'componentDefinition.spec.logConfigs' defines LogConfig entries withnames 'slow_query_log' and 'error_log',you can enable the collection of these logs by including their names in the 'enabledLogs' array:'''yamlenabledLogs:- slow_query_log- error_log'''
+- `env` (Attributes List) List of environment variables to add.These environment variables will be placed after the environment variables declared in the Pod. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--env))
+- `instances` (Attributes List) Allows for the customization of configuration values for each instance within a Component.An instance represent a single replica (Pod and associated K8s resources like PVCs, Services, and ConfigMaps).While instances typically share a common configuration as defined in the ClusterComponentSpec,they can require unique settings in various scenarios:For example:- A database Component might require different resource allocations for primary and secondary instances, with primaries needing more resources.- During a rolling upgrade, a Component may first update the image for one or a few instances, and then update the remaining instances after verifying that the updated instances are functioning correctly.InstanceTemplate allows for specifying these unique configurations per instance.Each instance's name is constructed using the pattern: $(component.name)-$(template.name)-$(ordinal),starting with an ordinal of 0.It is crucial to maintain unique names for each InstanceTemplate to avoid conflicts.The sum of replicas across all InstanceTemplates should not exceed the total number of replicas specified for the Component.Any remaining replicas will be generated using the default template and will follow the default naming rules. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances))
+- `issuer` (Attributes) Specifies the configuration for the TLS certificates issuer.It allows defining the issuer name and the reference to the secret containing the TLS certificates and key.The secret should contain the CA certificate, TLS certificate, and private key in the specified keys.Required when TLS is enabled. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--issuer))
+- `labels` (Map of String) Specifies Labels to override or add for underlying Pods.
+- `monitor` (Boolean) Deprecated since v0.9Determines whether metrics exporter information is annotated on the Component's headless Service.If set to true, the following annotations will be patched into the Service:- 'monitor.kubeblocks.io/path'- 'monitor.kubeblocks.io/port'- 'monitor.kubeblocks.io/scheme'These annotations allow the Prometheus installed by KubeBlocks to discover and scrape metrics from the exporter.
+- `name` (String) Specifies the Component's name.It's part of the Service DNS name and must comply with the IANA service naming rule.The name is optional when ClusterComponentSpec is used as a template (e.g., in 'shardingSpec'),but required otherwise.TODO +kubebuilder:validation:XValidation:rule='self == oldSelf',message='name is immutable'
+- `offline_instances` (List of String) Specifies the names of instances to be transitioned to offline status.Marking an instance as offline results in the following:1. The associated Pod is stopped, and its PersistentVolumeClaim (PVC) is retained for potential future reuse or data recovery, but it is no longer actively used.2. The ordinal number assigned to this instance is preserved, ensuring it remains unique and avoiding conflicts with new instances.Setting instances to offline allows for a controlled scale-in process, preserving their data and maintainingordinal consistency within the Cluster.Note that offline instances and their associated resources, such as PVCs, are not automatically deleted.The administrator must manually manage the cleanup and removal of these resources when they are no longer needed.
+- `resources` (Attributes) Specifies the resources required by the Component.It allows defining the CPU, memory requirements and limits for the Component's containers. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--resources))
+- `scheduling_policy` (Attributes) Specifies the scheduling policy for the Component. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy))
+- `service_account_name` (String) Specifies the name of the ServiceAccount required by the running Component.This ServiceAccount is used to grant necessary permissions for the Component's Pods to interactwith other Kubernetes resources, such as modifying Pod labels or sending events.Defaults:If not specified, KubeBlocks automatically assigns a default ServiceAccount named 'kb-{cluster.name}',bound to a default role installed together with KubeBlocks.Future Changes:Future versions might change the default ServiceAccount creation strategy to one per Component,potentially revising the naming to 'kb-{cluster.name}-{component.name}'.Users can override the automatic ServiceAccount assignment by explicitly setting the name ofan existed ServiceAccount in this field.
+- `service_refs` (Attributes List) Defines a list of ServiceRef for a Component, enabling access to both external services andServices provided by other Clusters.Types of services:- External services: Not managed by KubeBlocks or managed by a different KubeBlocks operator; Require a ServiceDescriptor for connection details.- Services provided by a Cluster: Managed by the same KubeBlocks operator; identified using Cluster, Component and Service names.ServiceRefs with identical 'serviceRef.name' in the same Cluster are considered the same.Example:'''yamlserviceRefs: - name: 'redis-sentinel' serviceDescriptor: name: 'external-redis-sentinel' - name: 'postgres-cluster' clusterServiceSelector: cluster: 'my-postgres-cluster' service: component: 'postgresql''''The example above includes ServiceRefs to an external Redis Sentinel service and a PostgreSQL Cluster. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--service_refs))
+- `service_version` (String) ServiceVersion specifies the version of the Service expected to be provisioned by this Component.The version should follow the syntax and semantics of the 'Semantic Versioning' specification (http://semver.org/).If no version is specified, the latest available version will be used.
+- `services` (Attributes List) Overrides services defined in referenced ComponentDefinition and expose endpoints that can be accessed by clients. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--services))
+- `switch_policy` (Attributes) Defines the strategy for switchover and failover when workloadType is Replication.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--switch_policy))
+- `system_accounts` (Attributes List) Overrides system accounts defined in referenced ComponentDefinition. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--system_accounts))
+- `tls` (Boolean) A boolean flag that indicates whether the Component should use Transport Layer Security (TLS)for secure communication.When set to true, the Component will be configured to use TLS encryption for its network connections.This ensures that the data transmitted between the Component and its clients or other Components is encryptedand protected from unauthorized access.If TLS is enabled, the Component may require additional configuration, such as specifying TLS certificates and keys,to properly set up the secure communication channel.
+- `tolerations` (Map of String) Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.Deprecated since v0.10, replaced by the 'schedulingPolicy' field.
+- `update_strategy` (String) Defines the update strategy for the Component.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.
+- `user_resource_refs` (Attributes) Allows users to specify custom ConfigMaps and Secrets to be mounted as volumesin the Cluster's Pods.This is useful in scenarios where users need to provide additional resources to the Cluster, such as:- Mounting custom scripts or configuration files during Cluster startup.- Mounting Secrets as volumes to provide sensitive information, like S3 AK/SK, to the Cluster. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--user_resource_refs))
+- `volume_claim_templates` (Attributes List) Specifies a list of PersistentVolumeClaim templates that represent the storage requirements for the Component.Each template specifies the desired characteristics of a persistent volume, such as storage class,size, and access modes.These templates are used to dynamically provision persistent volumes for the Component. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volume_claim_templates))
+- `volumes` (Attributes List) List of volumes to override. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes))
-
-### Nested Schema for `spec.sharding_specs.template.instances.volume_claim_templates.spec.resources`
+
+### Nested Schema for `spec.sharding_specs.template.affinity`
Optional:
-- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volume_claim_templates--spec--resources--claims))
-- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `node_labels` (Map of String) Indicates the node labels that must be present on nodes for pods to be scheduled on them.It is a map where the keys are the label keys and the values are the corresponding label values.Pods will only be scheduled on nodes that have all the specified labels with the corresponding values.For example, if NodeLabels is set to {'nodeType': 'ssd', 'environment': 'production'},pods will only be scheduled on nodes that have both the 'nodeType' label with value 'ssd'and the 'environment' label with value 'production'.This field allows users to control Pod placement based on specific node labels.It can be used to ensure that Pods are scheduled on nodes with certain characteristics,such as specific hardware (e.g., SSD), environment (e.g., production, staging),or any other custom labels assigned to nodes.
+- `pod_anti_affinity` (String) Specifies the anti-affinity level of Pods within a Component.It determines how pods should be spread across nodes to improve availability and performance.It can have the following values: 'Preferred' and 'Required'.The default value is 'Preferred'.
+- `tenancy` (String) Determines the level of resource isolation between Pods.It can have the following values: 'SharedNode' and 'DedicatedNode'.- SharedNode: Allow that multiple Pods may share the same node, which is the default behavior of K8s.- DedicatedNode: Each Pod runs on a dedicated node, ensuring that no two Pods share the same node. In other words, if a Pod is already running on a node, no other Pods will be scheduled on that node. Which provides a higher level of isolation and resource guarantee for Pods. The default value is 'SharedNode'.
+- `topology_keys` (List of String) Represents the key of node labels used to define the topology domain for Pod anti-affinityand Pod spread constraints.In K8s, a topology domain is a set of nodes that have the same value for a specific label key.Nodes with labels containing any of the specified TopologyKeys and identical values are consideredto be in the same topology domain.Note: The concept of topology in the context of K8s TopologyKeys is different from the concept oftopology in the ClusterDefinition.When a Pod has anti-affinity or spread constraints specified, Kubernetes will attempt to schedule thePod on nodes with different values for the specified TopologyKeys.This ensures that Pods are spread across different topology domains, promoting high availability andreducing the impact of node failures.Some well-known label keys, such as 'kubernetes.io/hostname' and 'topology.kubernetes.io/zone',are often used as TopologyKey.These keys represent the hostname and zone of a node, respectively.By including these keys in the TopologyKeys list, Pods will be spread across nodes withdifferent hostnames or zones.In addition to the well-known keys, users can also specify custom label keys as TopologyKeys.This allows for more flexible and custom topology definitions based on the specific needsof the application or environment.The TopologyKeys field is a slice of strings, where each string represents a label key.The order of the keys in the slice does not matter.
-
-### Nested Schema for `spec.sharding_specs.template.instances.volume_claim_templates.spec.resources.claims`
-Required:
+
+### Nested Schema for `spec.sharding_specs.template.configs`
-- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.
+Optional:
+- `config_map` (Attributes) ConfigMap source for the config. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--configs--config_map))
+- `name` (String) The name of the config.
+
+### Nested Schema for `spec.sharding_specs.template.configs.config_map`
+Optional:
+- `default_mode` (Number) defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--configs--config_map--items))
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+- `optional` (Boolean) optional specify whether the ConfigMap or its keys must be defined
-
-### Nested Schema for `spec.sharding_specs.template.instances.volume_mounts`
+
+### Nested Schema for `spec.sharding_specs.template.configs.config_map.items`
Required:
-- `mount_path` (String) Path within the container at which the volume should be mounted. Mustnot contain ':'.
-- `name` (String) This must match the Name of a Volume.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
Optional:
-- `mount_propagation` (String) mountPropagation determines how mounts are propagated from the hostto container and the other way around.When not set, MountPropagationNone is used.This field is beta in 1.10.
-- `read_only` (Boolean) Mounted read-only if true, read-write otherwise (false or unspecified).Defaults to false.
-- `sub_path` (String) Path within the volume from which the container's volume should be mounted.Defaults to '' (volume's root).
-- `sub_path_expr` (String) Expanded path within the volume from which the container's volume should be mounted.Behaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.Defaults to '' (volume's root).SubPathExpr and SubPath are mutually exclusive.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes`
+
+
+### Nested Schema for `spec.sharding_specs.template.env`
Required:
-- `name` (String) name of the volume.Must be a DNS_LABEL and unique within the pod.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+- `name` (String) Name of the environment variable. Must be a C_IDENTIFIER.
Optional:
-- `aws_elastic_block_store` (Attributes) awsElasticBlockStore represents an AWS Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--aws_elastic_block_store))
-- `azure_disk` (Attributes) azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--azure_disk))
-- `azure_file` (Attributes) azureFile represents an Azure File Service mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--azure_file))
-- `cephfs` (Attributes) cephFS represents a Ceph FS mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--cephfs))
-- `cinder` (Attributes) cinder represents a cinder volume attached and mounted on kubelets host machine.More info: https://examples.k8s.io/mysql-cinder-pd/README.md (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--cinder))
-- `config_map` (Attributes) configMap represents a configMap that should populate this volume (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--config_map))
-- `csi` (Attributes) csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature). (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--csi))
-- `downward_api` (Attributes) downwardAPI represents downward API about the pod that should populate this volume (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--downward_api))
-- `empty_dir` (Attributes) emptyDir represents a temporary directory that shares a pod's lifetime.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--empty_dir))
-- `ephemeral` (Attributes) ephemeral represents a volume that is handled by a cluster storage driver.The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,and deleted when the pod is removed.Use this if:a) the volume is only needed while the pod runs,b) features of normal volumes like restoring from snapshot or capacity tracking are needed,c) the storage driver is specified through a storage class, andd) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim).Use PersistentVolumeClaim or one of the vendor-specificAPIs for volumes that persist for longer than the lifecycleof an individual pod.Use CSI for light-weight local ephemeral volumes if the CSI driver is meant tobe used that way - see the documentation of the driver formore information.A pod can use both types of ephemeral volumes andpersistent volumes at the same time. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--ephemeral))
-- `fc` (Attributes) fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--fc))
-- `flex_volume` (Attributes) flexVolume represents a generic volume resource that isprovisioned/attached using an exec based plugin. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--flex_volume))
-- `flocker` (Attributes) flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--flocker))
-- `gce_persistent_disk` (Attributes) gcePersistentDisk represents a GCE Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--gce_persistent_disk))
-- `git_repo` (Attributes) gitRepo represents a git repository at a particular revision.DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount anEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDirinto the Pod's container. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--git_repo))
-- `glusterfs` (Attributes) glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/glusterfs/README.md (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--glusterfs))
-- `host_path` (Attributes) hostPath represents a pre-existing file or directory on the hostmachine that is directly exposed to the container. This is generallyused for system agents or other privileged things that are allowedto see the host machine. Most containers will NOT need this.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath---TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can notmount host directories as read/write. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--host_path))
-- `iscsi` (Attributes) iscsi represents an ISCSI Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://examples.k8s.io/volumes/iscsi/README.md (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--iscsi))
-- `nfs` (Attributes) nfs represents an NFS mount on the host that shares a pod's lifetimeMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--nfs))
-- `persistent_volume_claim` (Attributes) persistentVolumeClaimVolumeSource represents a reference to aPersistentVolumeClaim in the same namespace.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--persistent_volume_claim))
-- `photon_persistent_disk` (Attributes) photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--photon_persistent_disk))
-- `portworx_volume` (Attributes) portworxVolume represents a portworx volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--portworx_volume))
-- `projected` (Attributes) projected items for all in one resources secrets, configmaps, and downward API (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--projected))
-- `quobyte` (Attributes) quobyte represents a Quobyte mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--quobyte))
-- `rbd` (Attributes) rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/rbd/README.md (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--rbd))
-- `scale_io` (Attributes) scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--scale_io))
-- `secret` (Attributes) secret represents a secret that should populate this volume.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--secret))
-- `storageos` (Attributes) storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--storageos))
-- `vsphere_volume` (Attributes) vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--vsphere_volume))
+- `value` (String) Variable references $(VAR_NAME) are expandedusing the previously defined environment variables in the container andany service environment variables. If a variable cannot be resolved,the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.'$$(VAR_NAME)' will produce the string literal '$(VAR_NAME)'.Escaped references will never be expanded, regardless of whether the variableexists or not.Defaults to ''.
+- `value_from` (Attributes) Source for the environment variable's value. Cannot be used if value is not empty. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--env--value_from))
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.aws_elastic_block_store`
+
+### Nested Schema for `spec.sharding_specs.template.env.value_from`
+
+Optional:
+
+- `config_map_key_ref` (Attributes) Selects a key of a ConfigMap. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--env--value_from--config_map_key_ref))
+- `field_ref` (Attributes) Selects a field of the pod: supports metadata.name, metadata.namespace, 'metadata.labels['']', 'metadata.annotations['']',spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--env--value_from--field_ref))
+- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--env--value_from--resource_field_ref))
+- `secret_key_ref` (Attributes) Selects a key of a secret in the pod's namespace (see [below for nested schema](#nestedatt--spec--sharding_specs--template--env--value_from--secret_key_ref))
+
+
+### Nested Schema for `spec.sharding_specs.template.env.value_from.config_map_key_ref`
Required:
-- `volume_id` (String) volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+- `key` (String) The key to select.
Optional:
-- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstoreTODO: how do we prevent errors in the filesystem from compromising the machine
-- `partition` (Number) partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).
-- `read_only` (Boolean) readOnly value true will force the readOnly setting in VolumeMounts.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+- `optional` (Boolean) Specify whether the ConfigMap or its key must be defined
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.azure_disk`
+
+### Nested Schema for `spec.sharding_specs.template.env.value_from.field_ref`
Required:
-- `disk_name` (String) diskName is the Name of the data disk in the blob storage
-- `disk_uri` (String) diskURI is the URI of data disk in the blob storage
+- `field_path` (String) Path of the field to select in the specified API version.
Optional:
-- `caching_mode` (String) cachingMode is the Host Caching mode: None, Read Only, Read Write.
-- `fs_type` (String) fsType is Filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
-- `kind` (String) kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared
-- `read_only` (Boolean) readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+- `api_version` (String) Version of the schema the FieldPath is written in terms of, defaults to 'v1'.
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.azure_file`
+
+### Nested Schema for `spec.sharding_specs.template.env.value_from.resource_field_ref`
Required:
-- `secret_name` (String) secretName is the name of secret that contains Azure Storage Account Name and Key
-- `share_name` (String) shareName is the azure share Name
+- `resource` (String) Required: resource to select
Optional:
-- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+- `container_name` (String) Container name: required for volumes, optional for env vars
+- `divisor` (String) Specifies the output format of the exposed resources, defaults to '1'
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.cephfs`
+
+### Nested Schema for `spec.sharding_specs.template.env.value_from.secret_key_ref`
Required:
-- `monitors` (List of String) monitors is Required: Monitors is a collection of Ceph monitorsMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
-
-Optional:
-
-- `path` (String) path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /
-- `read_only` (Boolean) readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
-- `secret_file` (String) secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secretMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
-- `secret_ref` (Attributes) secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--cephfs--secret_ref))
-- `user` (String) user is optional: User is the rados user name, default is adminMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
-
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.cephfs.secret_ref`
+- `key` (String) The key of the secret to select from. Must be a valid secret key.
Optional:
- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+- `optional` (Boolean) Specify whether the Secret or its key must be defined
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.cinder`
+
+
+### Nested Schema for `spec.sharding_specs.template.instances`
Required:
-- `volume_id` (String) volumeID used to identify the volume in cinder.More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+- `name` (String) Name specifies the unique name of the instance Pod created using this InstanceTemplate.This name is constructed by concatenating the Component's name, the template's name, and the instance's ordinalusing the pattern: $(cluster.name)-$(component.name)-$(template.name)-$(ordinal). Ordinals start from 0.The specified name overrides any default naming conventions or patterns.
Optional:
-- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://examples.k8s.io/mysql-cinder-pd/README.md
-- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/mysql-cinder-pd/README.md
-- `secret_ref` (Attributes) secretRef is optional: points to a secret object containing parameters used to connectto OpenStack. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--cinder--secret_ref))
+- `annotations` (Map of String) Specifies a map of key-value pairs to be merged into the Pod's existing annotations.Existing keys will have their values overwritten, while new keys will be added to the annotations.
+- `env` (Attributes List) Defines Env to override.Add new or override existing envs. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--env))
+- `image` (String) Specifies an override for the first container's image in the Pod.
+- `labels` (Map of String) Specifies a map of key-value pairs that will be merged into the Pod's existing labels.Values for existing keys will be overwritten, and new keys will be added.
+- `replicas` (Number) Specifies the number of instances (Pods) to create from this InstanceTemplate.This field allows setting how many replicated instances of the Component,with the specific overrides in the InstanceTemplate, are created.The default value is 1. A value of 0 disables instance creation.
+- `resources` (Attributes) Specifies an override for the resource requirements of the first container in the Pod.This field allows for customizing resource allocation (CPU, memory, etc.) for the container. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--resources))
+- `scheduling_policy` (Attributes) Specifies the scheduling policy for the Component. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy))
+- `volume_claim_templates` (Attributes List) Defines VolumeClaimTemplates to override.Add new or override existing volume claim templates. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volume_claim_templates))
+- `volume_mounts` (Attributes List) Defines VolumeMounts to override.Add new or override existing volume mounts of the first container in the Pod. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volume_mounts))
+- `volumes` (Attributes List) Defines Volumes to override.Add new or override existing volumes. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes))
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.cinder.secret_ref`
+
+### Nested Schema for `spec.sharding_specs.template.instances.env`
-Optional:
+Required:
-- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+- `name` (String) Name of the environment variable. Must be a C_IDENTIFIER.
+Optional:
+- `value` (String) Variable references $(VAR_NAME) are expandedusing the previously defined environment variables in the container andany service environment variables. If a variable cannot be resolved,the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.'$$(VAR_NAME)' will produce the string literal '$(VAR_NAME)'.Escaped references will never be expanded, regardless of whether the variableexists or not.Defaults to ''.
+- `value_from` (Attributes) Source for the environment variable's value. Cannot be used if value is not empty. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--env--value_from))
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.config_map`
+
+### Nested Schema for `spec.sharding_specs.template.instances.env.value_from`
Optional:
-- `default_mode` (Number) defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
-- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--config_map--items))
-- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
-- `optional` (Boolean) optional specify whether the ConfigMap or its keys must be defined
+- `config_map_key_ref` (Attributes) Selects a key of a ConfigMap. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--env--value_from--config_map_key_ref))
+- `field_ref` (Attributes) Selects a field of the pod: supports metadata.name, metadata.namespace, 'metadata.labels['']', 'metadata.annotations['']',spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--env--value_from--field_ref))
+- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--env--value_from--resource_field_ref))
+- `secret_key_ref` (Attributes) Selects a key of a secret in the pod's namespace (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--env--value_from--secret_key_ref))
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.config_map.items`
+
+### Nested Schema for `spec.sharding_specs.template.instances.env.value_from.config_map_key_ref`
Required:
-- `key` (String) key is the key to project.
-- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
+- `key` (String) The key to select.
Optional:
-- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
-
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+- `optional` (Boolean) Specify whether the ConfigMap or its key must be defined
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.csi`
+
+### Nested Schema for `spec.sharding_specs.template.instances.env.value_from.field_ref`
Required:
-- `driver` (String) driver is the name of the CSI driver that handles this volume.Consult with your admin for the correct name as registered in the cluster.
+- `field_path` (String) Path of the field to select in the specified API version.
Optional:
-- `fs_type` (String) fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'.If not provided, the empty value is passed to the associated CSI driverwhich will determine the default filesystem to apply.
-- `node_publish_secret_ref` (Attributes) nodePublishSecretRef is a reference to the secret object containingsensitive information to pass to the CSI driver to complete the CSINodePublishVolume and NodeUnpublishVolume calls.This field is optional, and may be empty if no secret is required. If thesecret object contains more than one secret, all secret references are passed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--csi--node_publish_secret_ref))
-- `read_only` (Boolean) readOnly specifies a read-only configuration for the volume.Defaults to false (read/write).
-- `volume_attributes` (Map of String) volumeAttributes stores driver-specific properties that are passed to the CSIdriver. Consult your driver's documentation for supported values.
-
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.csi.node_publish_secret_ref`
-
-Optional:
+- `api_version` (String) Version of the schema the FieldPath is written in terms of, defaults to 'v1'.
-- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+
+### Nested Schema for `spec.sharding_specs.template.instances.env.value_from.resource_field_ref`
+Required:
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.downward_api`
+- `resource` (String) Required: resource to select
Optional:
-- `default_mode` (Number) Optional: mode bits to use on created files by default. Must be aOptional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
-- `items` (Attributes List) Items is a list of downward API volume file (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--downward_api--items))
+- `container_name` (String) Container name: required for volumes, optional for env vars
+- `divisor` (String) Specifies the output format of the exposed resources, defaults to '1'
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.downward_api.items`
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.env.value_from.secret_key_ref`
Required:
-- `path` (String) Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'
+- `key` (String) The key of the secret to select from. Must be a valid secret key.
Optional:
-- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name and namespace are supported. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--downward_api--items--field_ref))
-- `mode` (Number) Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
-- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--downward_api--items--resource_field_ref))
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+- `optional` (Boolean) Specify whether the Secret or its key must be defined
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.downward_api.items.field_ref`
-Required:
-- `field_path` (String) Path of the field to select in the specified API version.
-Optional:
+
+### Nested Schema for `spec.sharding_specs.template.instances.resources`
-- `api_version` (String) Version of the schema the FieldPath is written in terms of, defaults to 'v1'.
+Optional:
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--resources--claims))
+- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.downward_api.items.resource_field_ref`
+
+### Nested Schema for `spec.sharding_specs.template.instances.resources.claims`
Required:
-- `resource` (String) Required: resource to select
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.
-Optional:
-- `container_name` (String) Container name: required for volumes, optional for env vars
-- `divisor` (String) Specifies the output format of the exposed resources, defaults to '1'
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy`
+Optional:
+- `affinity` (Attributes) Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity))
+- `node_name` (String) NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.
+- `node_selector` (Map of String) NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
+- `scheduler_name` (String) If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.
+- `tolerations` (Attributes List) Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--tolerations))
+- `topology_spread_constraints` (Attributes List) TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--topology_spread_constraints))
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.empty_dir`
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity`
Optional:
-- `medium` (String) medium represents what type of storage medium should back this directory.The default is '' which means to use the node's default medium.Must be an empty string (default) or Memory.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
-- `size_limit` (String) sizeLimit is the total amount of local storage required for this EmptyDir volume.The size limit is also applicable for memory medium.The maximum usage on memory medium EmptyDir would be the minimum value betweenthe SizeLimit specified here and the sum of memory limits of all containers in a pod.The default is nil which means that the limit is undefined.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
-
+- `node_affinity` (Attributes) Describes node affinity scheduling rules for the pod. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--node_affinity))
+- `pod_affinity` (Attributes) Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)). (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity))
+- `pod_anti_affinity` (Attributes) Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)). (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity))
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.ephemeral`
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.node_affinity`
Optional:
-- `volume_claim_template` (Attributes) Will be used to create a stand-alone PVC to provision the volume.The pod in which this EphemeralVolumeSource is embedded will be theowner of the PVC, i.e. the PVC will be deleted together with thepod. The name of the PVC will be '-' where'' is the name from the 'PodSpec.Volumes' arrayentry. Pod validation will reject the pod if the concatenated nameis not valid for a PVC (for example, too long).An existing PVC with that name that is not owned by the podwill *not* be used for the pod to avoid using an unrelatedvolume by mistake. Starting the pod is then blocked untilthe unrelated PVC is removed. If such a pre-created PVC ismeant to be used by the pod, the PVC has to updated with anowner reference to the pod once the pod exists. Normallythis should not be necessary, but it may be useful whenmanually reconstructing a broken cluster.This field is read-only and no changes will be made by Kubernetesto the PVC after it has been created.Required, must not be nil. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--ephemeral--volume_claim_template))
+- `preferred_during_scheduling_ignored_during_execution` (Attributes List) The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution))
+- `required_during_scheduling_ignored_during_execution` (Attributes) If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution))
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.ephemeral.volume_claim_template`
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution`
Required:
-- `spec` (Attributes) The specification for the PersistentVolumeClaim. The entire content iscopied unchanged into the PVC that gets created from thistemplate. The same fields as in a PersistentVolumeClaimare also valid here. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--ephemeral--volume_claim_template--spec))
-
-Optional:
-
-- `metadata` (Attributes) May contain labels and annotations that will be copied into the PVCwhen creating it. No other fields are allowed and will be rejected duringvalidation. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--ephemeral--volume_claim_template--metadata))
+- `preference` (Attributes) A node selector term, associated with the corresponding weight. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference))
+- `weight` (Number) Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.ephemeral.volume_claim_template.spec`
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution.preference`
Optional:
-- `access_modes` (List of String) accessModes contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
-- `data_source` (Attributes) dataSource field can be used to specify either:* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)* An existing PVC (PersistentVolumeClaim)If the provisioner or an external controller can support the specified data source,it will create a new volume based on the contents of the specified data source.When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.If the namespace is specified, then dataSourceRef will not be copied to dataSource. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--ephemeral--volume_claim_template--spec--data_source))
-- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-emptyvolume is desired. This may be any object from a non-empty API group (noncore object) or a PersistentVolumeClaim object.When this field is specified, volume binding will only succeed if the type ofthe specified object matches some installed volume populator or dynamicprovisioner.This field will replace the functionality of the dataSource field and as suchif both fields are non-empty, they must have the same value. For backwardscompatibility, when namespace isn't specified in dataSourceRef,both fields (dataSource and dataSourceRef) will be set to the samevalue automatically if one of them is empty and the other is non-empty.When namespace is specified in dataSourceRef,dataSource isn't set to the same value and must be empty.There are three important differences between dataSource and dataSourceRef:* While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects.* While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified.* While dataSource only allows local objects, dataSourceRef allows objects in any namespaces.(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--ephemeral--volume_claim_template--spec--data_source_ref))
-- `resources` (Attributes) resources represents the minimum resources the volume should have.If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirementsthat are lower than previous value but must still be higher than capacity recorded in thestatus field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--ephemeral--volume_claim_template--spec--resources))
-- `selector` (Attributes) selector is a label query over volumes to consider for binding. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--ephemeral--volume_claim_template--spec--selector))
-- `storage_class_name` (String) storageClassName is the name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
-- `volume_mode` (String) volumeMode defines what type of volume is required by the claim.Value of Filesystem is implied when not included in claim spec.
-- `volume_name` (String) volumeName is the binding reference to the PersistentVolume backing this claim.
+- `match_expressions` (Attributes List) A list of node selector requirements by node's labels. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference--match_expressions))
+- `match_fields` (Attributes List) A list of node selector requirements by node's fields. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference--match_fields))
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.ephemeral.volume_claim_template.spec.data_source`
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution.preference.match_expressions`
Required:
-- `kind` (String) Kind is the type of resource being referenced
-- `name` (String) Name is the name of resource being referenced
+- `key` (String) The label key that the selector applies to.
+- `operator` (String) Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
Optional:
-- `api_group` (String) APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.
+- `values` (List of String) An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.ephemeral.volume_claim_template.spec.data_source_ref`
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution.preference.match_fields`
Required:
-- `kind` (String) Kind is the type of resource being referenced
-- `name` (String) Name is the name of resource being referenced
+- `key` (String) The label key that the selector applies to.
+- `operator` (String) Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
Optional:
-- `api_group` (String) APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.
-- `namespace` (String) Namespace is the namespace of resource being referencedNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.
-
+- `values` (List of String) An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.ephemeral.volume_claim_template.spec.resources`
-Optional:
-- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--ephemeral--volume_claim_template--spec--resources--claims))
-- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.ephemeral.volume_claim_template.spec.resources.claims`
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution`
Required:
-- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.
-
-
+- `node_selector_terms` (Attributes List) Required. A list of node selector terms. The terms are ORed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms))
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.ephemeral.volume_claim_template.spec.selector`
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution.node_selector_terms`
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--ephemeral--volume_claim_template--spec--selector--match_expressions))
-- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+- `match_expressions` (Attributes List) A list of node selector requirements by node's labels. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms--match_expressions))
+- `match_fields` (Attributes List) A list of node selector requirements by node's fields. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms--match_fields))
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.ephemeral.volume_claim_template.spec.selector.match_expressions`
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution.node_selector_terms.match_expressions`
Required:
-- `key` (String) key is the label key that the selector applies to.
-- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+- `key` (String) The label key that the selector applies to.
+- `operator` (String) Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
Optional:
-- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+- `values` (List of String) An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution.node_selector_terms.match_fields`
+Required:
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.ephemeral.volume_claim_template.metadata`
+- `key` (String) The label key that the selector applies to.
+- `operator` (String) Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
Optional:
-- `annotations` (Map of String)
-- `finalizers` (List of String)
-- `labels` (Map of String)
-- `name` (String)
-- `namespace` (String)
+- `values` (List of String) An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.fc`
-Optional:
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity`
-- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.TODO: how do we prevent errors in the filesystem from compromising the machine
-- `lun` (Number) lun is Optional: FC target lun number
-- `read_only` (Boolean) readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
-- `target_ww_ns` (List of String) targetWWNs is Optional: FC target worldwide names (WWNs)
-- `wwids` (List of String) wwids Optional: FC volume world wide identifiers (wwids)Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.
+Optional:
+- `preferred_during_scheduling_ignored_during_execution` (Attributes List) The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution))
+- `required_during_scheduling_ignored_during_execution` (Attributes List) If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution))
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.flex_volume`
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution`
Required:
-- `driver` (String) driver is the name of the driver to use for this volume.
+- `pod_affinity_term` (Attributes) Required. A pod affinity term, associated with the corresponding weight. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term))
+- `weight` (Number) weight associated with matching the corresponding podAffinityTerm,in the range 1-100.
-Optional:
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term`
-- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.
-- `options` (Map of String) options is Optional: this field holds extra command options if any.
-- `read_only` (Boolean) readOnly is Optional: defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
-- `secret_ref` (Attributes) secretRef is Optional: secretRef is reference to the secret object containingsensitive information to pass to the plugin scripts. This may beempty if no secret object is specified. If the secret objectcontains more than one secret, all secrets are passed to the pluginscripts. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--flex_volume--secret_ref))
+Required:
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.flex_volume.secret_ref`
+- `topology_key` (String) This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.
Optional:
-- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
-
-
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.flocker`
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector`
Optional:
-- `dataset_name` (String) datasetName is Name of the dataset stored as metadata -> name on the dataset for Flockershould be considered as deprecated
-- `dataset_uuid` (String) datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset
-
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.gce_persistent_disk`
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector.match_expressions`
Required:
-- `pd_name` (String) pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
Optional:
-- `fs_type` (String) fsType is filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskTODO: how do we prevent errors in the filesystem from compromising the machine
-- `partition` (Number) partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
-- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
-
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.git_repo`
-Required:
-- `repository` (String) repository is the URL
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector`
Optional:
-- `directory` (String) directory is the target directory name.Must not contain or start with '..'. If '.' is supplied, the volume directory will be thegit repository. Otherwise, if specified, the volume will contain the git repository inthe subdirectory with the given name.
-- `revision` (String) revision is the commit hash for the specified revision.
-
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.glusterfs`
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector.match_expressions`
Required:
-- `endpoints` (String) endpoints is the endpoint name that details Glusterfs topology.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
-- `path` (String) path is the Glusterfs volume path.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
Optional:
-- `read_only` (Boolean) readOnly here will force the Glusterfs volume to be mounted with read-only permissions.Defaults to false.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
-
-
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.host_path`
-
-Required:
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
-- `path` (String) path of the directory on the host.If the path is a symlink, it will follow the link to the real path.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
-Optional:
-- `type` (String) type for HostPath VolumeDefaults to ''More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.iscsi`
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution`
Required:
-- `iqn` (String) iqn is the target iSCSI Qualified Name.
-- `lun` (Number) lun represents iSCSI Target Lun number.
-- `target_portal` (String) targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).
+- `topology_key` (String) This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.
Optional:
-- `chap_auth_discovery` (Boolean) chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication
-- `chap_auth_session` (Boolean) chapAuthSession defines whether support iSCSI Session CHAP authentication
-- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsiTODO: how do we prevent errors in the filesystem from compromising the machine
-- `initiator_name` (String) initiatorName is the custom iSCSI Initiator Name.If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface: will be created for the connection.
-- `iscsi_interface` (String) iscsiInterface is the interface Name that uses an iSCSI transport.Defaults to 'default' (tcp).
-- `portals` (List of String) portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).
-- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.
-- `secret_ref` (Attributes) secretRef is the CHAP Secret for iSCSI target and initiator authentication (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--iscsi--secret_ref))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.iscsi.secret_ref`
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.label_selector`
Optional:
-- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
-
-
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.nfs`
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.label_selector.match_expressions`
Required:
-- `path` (String) path that is exported by the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
-- `server` (String) server is the hostname or IP address of the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
Optional:
-- `read_only` (Boolean) readOnly here will force the NFS export to be mounted with read-only permissions.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
-
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.persistent_volume_claim`
-Required:
-- `claim_name` (String) claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.namespace_selector`
Optional:
-- `read_only` (Boolean) readOnly Will force the ReadOnly setting in VolumeMounts.Default false.
-
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.photon_persistent_disk`
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.namespace_selector.match_expressions`
Required:
-- `pd_id` (String) pdID is the ID that identifies Photon Controller persistent disk
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
Optional:
-- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.portworx_volume`
-Required:
-- `volume_id` (String) volumeID uniquely identifies a Portworx volume
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity`
Optional:
-- `fs_type` (String) fSType represents the filesystem type to mountMust be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.
-- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+- `preferred_during_scheduling_ignored_during_execution` (Attributes List) The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution))
+- `required_during_scheduling_ignored_during_execution` (Attributes List) If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution))
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution`
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.projected`
+Required:
-Optional:
+- `pod_affinity_term` (Attributes) Required. A pod affinity term, associated with the corresponding weight. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term))
+- `weight` (Number) weight associated with matching the corresponding podAffinityTerm,in the range 1-100.
-- `default_mode` (Number) defaultMode are the mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
-- `sources` (Attributes List) sources is the list of volume projections (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--projected--sources))
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term`
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.projected.sources`
+Required:
+
+- `topology_key` (String) This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.
Optional:
-- `config_map` (Attributes) configMap information about the configMap data to project (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--projected--sources--config_map))
-- `downward_api` (Attributes) downwardAPI information about the downwardAPI data to project (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--projected--sources--downward_api))
-- `secret` (Attributes) secret information about the secret data to project (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--projected--sources--secret))
-- `service_account_token` (Attributes) serviceAccountToken is information about the serviceAccountToken data to project (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--projected--sources--service_account_token))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.projected.sources.config_map`
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector`
Optional:
-- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--projected--sources--config_map--items))
-- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
-- `optional` (Boolean) optional specify whether the ConfigMap or its keys must be defined
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.projected.sources.config_map.items`
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector.match_expressions`
Required:
-- `key` (String) key is the key to project.
-- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
Optional:
-- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.projected.sources.downward_api`
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector`
Optional:
-- `items` (Attributes List) Items is a list of DownwardAPIVolume file (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--projected--sources--downward_api--items))
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.projected.sources.downward_api.items`
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector.match_expressions`
Required:
-- `path` (String) Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
Optional:
-- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name and namespace are supported. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--projected--sources--downward_api--items--field_ref))
-- `mode` (Number) Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
-- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--projected--sources--downward_api--items--resource_field_ref))
-
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.projected.sources.downward_api.items.field_ref`
-
-Required:
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
-- `field_path` (String) Path of the field to select in the specified API version.
-Optional:
-- `api_version` (String) Version of the schema the FieldPath is written in terms of, defaults to 'v1'.
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.projected.sources.downward_api.items.resource_field_ref`
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution`
Required:
-- `resource` (String) Required: resource to select
+- `topology_key` (String) This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.
Optional:
-- `container_name` (String) Container name: required for volumes, optional for env vars
-- `divisor` (String) Specifies the output format of the exposed resources, defaults to '1'
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.label_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.label_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.namespace_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.namespace_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+
+
+
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.tolerations`
+
+Optional:
+
+- `effect` (String) Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.
+- `key` (String) Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.
+- `operator` (String) Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.
+- `toleration_seconds` (Number) TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.
+- `value` (String) Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.topology_spread_constraints`
+
+Required:
+
+- `max_skew` (Number) MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.
+- `topology_key` (String) TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.
+- `when_unsatisfiable` (String) WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.
+
+Optional:
+
+- `label_selector` (Attributes) LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--topology_spread_constraints--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).
+- `min_domains` (Number) MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).
+- `node_affinity_policy` (String) NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.
+- `node_taints_policy` (String) NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.topology_spread_constraints.label_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--scheduling_policy--topology_spread_constraints--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.scheduling_policy.topology_spread_constraints.label_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+
+
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volume_claim_templates`
+
+Required:
+
+- `name` (String) Refers to the name of a volumeMount defined in either:- 'componentDefinition.spec.runtime.containers[*].volumeMounts'- 'clusterDefinition.spec.componentDefs[*].podSpec.containers[*].volumeMounts' (deprecated)The value of 'name' must match the 'name' field of a volumeMount specified in the corresponding 'volumeMounts' array.
+
+Optional:
+
+- `spec` (Attributes) Defines the desired characteristics of a PersistentVolumeClaim that will be created for the volumewith the mount name specified in the 'name' field.When a Pod is created for this ClusterComponent, a new PVC will be created based on the specificationdefined in the 'spec' field. The PVC will be associated with the volume mount specified by the 'name' field. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volume_claim_templates--spec))
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volume_claim_templates.spec`
+
+Optional:
+
+- `access_modes` (Map of String) Contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1.
+- `resources` (Attributes) Represents the minimum resources the volume should have.If the RecoverVolumeExpansionFailure feature is enabled, users are allowed to specify resource requirements thatare lower than the previous value but must still be higher than the capacity recorded in the status field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volume_claim_templates--spec--resources))
+- `storage_class_name` (String) The name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1.
+- `volume_mode` (String) Defines what type of volume is required by the claim, either Block or Filesystem.
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volume_claim_templates.spec.resources`
+
+Optional:
+
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volume_claim_templates--spec--resources--claims))
+- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volume_claim_templates.spec.resources.claims`
+
+Required:
+
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.
+
+
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volume_mounts`
+
+Required:
+
+- `mount_path` (String) Path within the container at which the volume should be mounted. Mustnot contain ':'.
+- `name` (String) This must match the Name of a Volume.
+
+Optional:
+
+- `mount_propagation` (String) mountPropagation determines how mounts are propagated from the hostto container and the other way around.When not set, MountPropagationNone is used.This field is beta in 1.10.
+- `read_only` (Boolean) Mounted read-only if true, read-write otherwise (false or unspecified).Defaults to false.
+- `sub_path` (String) Path within the volume from which the container's volume should be mounted.Defaults to '' (volume's root).
+- `sub_path_expr` (String) Expanded path within the volume from which the container's volume should be mounted.Behaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.Defaults to '' (volume's root).SubPathExpr and SubPath are mutually exclusive.
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes`
+
+Required:
+
+- `name` (String) name of the volume.Must be a DNS_LABEL and unique within the pod.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+
+Optional:
+
+- `aws_elastic_block_store` (Attributes) awsElasticBlockStore represents an AWS Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--aws_elastic_block_store))
+- `azure_disk` (Attributes) azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--azure_disk))
+- `azure_file` (Attributes) azureFile represents an Azure File Service mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--azure_file))
+- `cephfs` (Attributes) cephFS represents a Ceph FS mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--cephfs))
+- `cinder` (Attributes) cinder represents a cinder volume attached and mounted on kubelets host machine.More info: https://examples.k8s.io/mysql-cinder-pd/README.md (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--cinder))
+- `config_map` (Attributes) configMap represents a configMap that should populate this volume (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--config_map))
+- `csi` (Attributes) csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature). (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--csi))
+- `downward_api` (Attributes) downwardAPI represents downward API about the pod that should populate this volume (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--downward_api))
+- `empty_dir` (Attributes) emptyDir represents a temporary directory that shares a pod's lifetime.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--empty_dir))
+- `ephemeral` (Attributes) ephemeral represents a volume that is handled by a cluster storage driver.The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,and deleted when the pod is removed.Use this if:a) the volume is only needed while the pod runs,b) features of normal volumes like restoring from snapshot or capacity tracking are needed,c) the storage driver is specified through a storage class, andd) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim).Use PersistentVolumeClaim or one of the vendor-specificAPIs for volumes that persist for longer than the lifecycleof an individual pod.Use CSI for light-weight local ephemeral volumes if the CSI driver is meant tobe used that way - see the documentation of the driver formore information.A pod can use both types of ephemeral volumes andpersistent volumes at the same time. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--ephemeral))
+- `fc` (Attributes) fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--fc))
+- `flex_volume` (Attributes) flexVolume represents a generic volume resource that isprovisioned/attached using an exec based plugin. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--flex_volume))
+- `flocker` (Attributes) flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--flocker))
+- `gce_persistent_disk` (Attributes) gcePersistentDisk represents a GCE Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--gce_persistent_disk))
+- `git_repo` (Attributes) gitRepo represents a git repository at a particular revision.DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount anEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDirinto the Pod's container. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--git_repo))
+- `glusterfs` (Attributes) glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/glusterfs/README.md (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--glusterfs))
+- `host_path` (Attributes) hostPath represents a pre-existing file or directory on the hostmachine that is directly exposed to the container. This is generallyused for system agents or other privileged things that are allowedto see the host machine. Most containers will NOT need this.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath---TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can notmount host directories as read/write. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--host_path))
+- `iscsi` (Attributes) iscsi represents an ISCSI Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://examples.k8s.io/volumes/iscsi/README.md (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--iscsi))
+- `nfs` (Attributes) nfs represents an NFS mount on the host that shares a pod's lifetimeMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--nfs))
+- `persistent_volume_claim` (Attributes) persistentVolumeClaimVolumeSource represents a reference to aPersistentVolumeClaim in the same namespace.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--persistent_volume_claim))
+- `photon_persistent_disk` (Attributes) photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--photon_persistent_disk))
+- `portworx_volume` (Attributes) portworxVolume represents a portworx volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--portworx_volume))
+- `projected` (Attributes) projected items for all in one resources secrets, configmaps, and downward API (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--projected))
+- `quobyte` (Attributes) quobyte represents a Quobyte mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--quobyte))
+- `rbd` (Attributes) rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/rbd/README.md (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--rbd))
+- `scale_io` (Attributes) scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--scale_io))
+- `secret` (Attributes) secret represents a secret that should populate this volume.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--secret))
+- `storageos` (Attributes) storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--storageos))
+- `vsphere_volume` (Attributes) vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--vsphere_volume))
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.aws_elastic_block_store`
+
+Required:
+
+- `volume_id` (String) volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+
+Optional:
+
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstoreTODO: how do we prevent errors in the filesystem from compromising the machine
+- `partition` (Number) partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).
+- `read_only` (Boolean) readOnly value true will force the readOnly setting in VolumeMounts.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.azure_disk`
+
+Required:
+
+- `disk_name` (String) diskName is the Name of the data disk in the blob storage
+- `disk_uri` (String) diskURI is the URI of data disk in the blob storage
+
+Optional:
+
+- `caching_mode` (String) cachingMode is the Host Caching mode: None, Read Only, Read Write.
+- `fs_type` (String) fsType is Filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `kind` (String) kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared
+- `read_only` (Boolean) readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.azure_file`
+
+Required:
+
+- `secret_name` (String) secretName is the name of secret that contains Azure Storage Account Name and Key
+- `share_name` (String) shareName is the azure share Name
+
+Optional:
+
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.cephfs`
+
+Required:
+
+- `monitors` (List of String) monitors is Required: Monitors is a collection of Ceph monitorsMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+
+Optional:
+
+- `path` (String) path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /
+- `read_only` (Boolean) readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `secret_file` (String) secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secretMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `secret_ref` (Attributes) secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--cephfs--secret_ref))
+- `user` (String) user is optional: User is the rados user name, default is adminMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.cephfs.secret_ref`
+
+Optional:
+
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.cinder`
+
+Required:
+
+- `volume_id` (String) volumeID used to identify the volume in cinder.More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+
+Optional:
+
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+- `secret_ref` (Attributes) secretRef is optional: points to a secret object containing parameters used to connectto OpenStack. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--cinder--secret_ref))
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.cinder.secret_ref`
+
+Optional:
+
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.config_map`
+
+Optional:
+
+- `default_mode` (Number) defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--config_map--items))
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+- `optional` (Boolean) optional specify whether the ConfigMap or its keys must be defined
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.config_map.items`
+
+Required:
+
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
+
+Optional:
+
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.csi`
+
+Required:
+
+- `driver` (String) driver is the name of the CSI driver that handles this volume.Consult with your admin for the correct name as registered in the cluster.
+
+Optional:
+
+- `fs_type` (String) fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'.If not provided, the empty value is passed to the associated CSI driverwhich will determine the default filesystem to apply.
+- `node_publish_secret_ref` (Attributes) nodePublishSecretRef is a reference to the secret object containingsensitive information to pass to the CSI driver to complete the CSINodePublishVolume and NodeUnpublishVolume calls.This field is optional, and may be empty if no secret is required. If thesecret object contains more than one secret, all secret references are passed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--csi--node_publish_secret_ref))
+- `read_only` (Boolean) readOnly specifies a read-only configuration for the volume.Defaults to false (read/write).
+- `volume_attributes` (Map of String) volumeAttributes stores driver-specific properties that are passed to the CSIdriver. Consult your driver's documentation for supported values.
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.csi.node_publish_secret_ref`
+
+Optional:
+
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.downward_api`
+
+Optional:
+
+- `default_mode` (Number) Optional: mode bits to use on created files by default. Must be aOptional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) Items is a list of downward API volume file (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--downward_api--items))
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.downward_api.items`
+
+Required:
+
+- `path` (String) Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'
+
+Optional:
+
+- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name and namespace are supported. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--downward_api--items--field_ref))
+- `mode` (Number) Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--downward_api--items--resource_field_ref))
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.downward_api.items.field_ref`
+
+Required:
+
+- `field_path` (String) Path of the field to select in the specified API version.
+
+Optional:
+
+- `api_version` (String) Version of the schema the FieldPath is written in terms of, defaults to 'v1'.
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.downward_api.items.resource_field_ref`
+
+Required:
+
+- `resource` (String) Required: resource to select
+
+Optional:
+
+- `container_name` (String) Container name: required for volumes, optional for env vars
+- `divisor` (String) Specifies the output format of the exposed resources, defaults to '1'
+
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.empty_dir`
+
+Optional:
+
+- `medium` (String) medium represents what type of storage medium should back this directory.The default is '' which means to use the node's default medium.Must be an empty string (default) or Memory.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
+- `size_limit` (String) sizeLimit is the total amount of local storage required for this EmptyDir volume.The size limit is also applicable for memory medium.The maximum usage on memory medium EmptyDir would be the minimum value betweenthe SizeLimit specified here and the sum of memory limits of all containers in a pod.The default is nil which means that the limit is undefined.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.ephemeral`
+
+Optional:
+
+- `volume_claim_template` (Attributes) Will be used to create a stand-alone PVC to provision the volume.The pod in which this EphemeralVolumeSource is embedded will be theowner of the PVC, i.e. the PVC will be deleted together with thepod. The name of the PVC will be '-' where'' is the name from the 'PodSpec.Volumes' arrayentry. Pod validation will reject the pod if the concatenated nameis not valid for a PVC (for example, too long).An existing PVC with that name that is not owned by the podwill *not* be used for the pod to avoid using an unrelatedvolume by mistake. Starting the pod is then blocked untilthe unrelated PVC is removed. If such a pre-created PVC ismeant to be used by the pod, the PVC has to updated with anowner reference to the pod once the pod exists. Normallythis should not be necessary, but it may be useful whenmanually reconstructing a broken cluster.This field is read-only and no changes will be made by Kubernetesto the PVC after it has been created.Required, must not be nil. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--ephemeral--volume_claim_template))
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.ephemeral.volume_claim_template`
+
+Required:
+
+- `spec` (Attributes) The specification for the PersistentVolumeClaim. The entire content iscopied unchanged into the PVC that gets created from thistemplate. The same fields as in a PersistentVolumeClaimare also valid here. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--ephemeral--volume_claim_template--spec))
+
+Optional:
+
+- `metadata` (Attributes) May contain labels and annotations that will be copied into the PVCwhen creating it. No other fields are allowed and will be rejected duringvalidation. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--ephemeral--volume_claim_template--metadata))
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.ephemeral.volume_claim_template.spec`
+
+Optional:
+
+- `access_modes` (List of String) accessModes contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
+- `data_source` (Attributes) dataSource field can be used to specify either:* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)* An existing PVC (PersistentVolumeClaim)If the provisioner or an external controller can support the specified data source,it will create a new volume based on the contents of the specified data source.When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.If the namespace is specified, then dataSourceRef will not be copied to dataSource. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--ephemeral--volume_claim_template--spec--data_source))
+- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-emptyvolume is desired. This may be any object from a non-empty API group (noncore object) or a PersistentVolumeClaim object.When this field is specified, volume binding will only succeed if the type ofthe specified object matches some installed volume populator or dynamicprovisioner.This field will replace the functionality of the dataSource field and as suchif both fields are non-empty, they must have the same value. For backwardscompatibility, when namespace isn't specified in dataSourceRef,both fields (dataSource and dataSourceRef) will be set to the samevalue automatically if one of them is empty and the other is non-empty.When namespace is specified in dataSourceRef,dataSource isn't set to the same value and must be empty.There are three important differences between dataSource and dataSourceRef:* While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects.* While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified.* While dataSource only allows local objects, dataSourceRef allows objects in any namespaces.(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--ephemeral--volume_claim_template--spec--data_source_ref))
+- `resources` (Attributes) resources represents the minimum resources the volume should have.If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirementsthat are lower than previous value but must still be higher than capacity recorded in thestatus field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--ephemeral--volume_claim_template--spec--resources))
+- `selector` (Attributes) selector is a label query over volumes to consider for binding. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--ephemeral--volume_claim_template--spec--selector))
+- `storage_class_name` (String) storageClassName is the name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
+- `volume_mode` (String) volumeMode defines what type of volume is required by the claim.Value of Filesystem is implied when not included in claim spec.
+- `volume_name` (String) volumeName is the binding reference to the PersistentVolume backing this claim.
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.ephemeral.volume_claim_template.spec.data_source`
+
+Required:
+
+- `kind` (String) Kind is the type of resource being referenced
+- `name` (String) Name is the name of resource being referenced
+
+Optional:
+
+- `api_group` (String) APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.ephemeral.volume_claim_template.spec.data_source_ref`
+
+Required:
+
+- `kind` (String) Kind is the type of resource being referenced
+- `name` (String) Name is the name of resource being referenced
+
+Optional:
+
+- `api_group` (String) APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.
+- `namespace` (String) Namespace is the namespace of resource being referencedNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.ephemeral.volume_claim_template.spec.resources`
+
+Optional:
+
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--ephemeral--volume_claim_template--spec--resources--claims))
+- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.ephemeral.volume_claim_template.spec.resources.claims`
+
+Required:
+
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.ephemeral.volume_claim_template.spec.selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--ephemeral--volume_claim_template--spec--selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.ephemeral.volume_claim_template.spec.selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.ephemeral.volume_claim_template.metadata`
+
+Optional:
+
+- `annotations` (Map of String)
+- `finalizers` (List of String)
+- `labels` (Map of String)
+- `name` (String)
+- `namespace` (String)
+
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.fc`
+
+Optional:
+
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.TODO: how do we prevent errors in the filesystem from compromising the machine
+- `lun` (Number) lun is Optional: FC target lun number
+- `read_only` (Boolean) readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+- `target_ww_ns` (List of String) targetWWNs is Optional: FC target worldwide names (WWNs)
+- `wwids` (List of String) wwids Optional: FC volume world wide identifiers (wwids)Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.flex_volume`
+
+Required:
+
+- `driver` (String) driver is the name of the driver to use for this volume.
+
+Optional:
+
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.
+- `options` (Map of String) options is Optional: this field holds extra command options if any.
+- `read_only` (Boolean) readOnly is Optional: defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+- `secret_ref` (Attributes) secretRef is Optional: secretRef is reference to the secret object containingsensitive information to pass to the plugin scripts. This may beempty if no secret object is specified. If the secret objectcontains more than one secret, all secrets are passed to the pluginscripts. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--flex_volume--secret_ref))
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.flex_volume.secret_ref`
+
+Optional:
+
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.flocker`
+
+Optional:
+
+- `dataset_name` (String) datasetName is Name of the dataset stored as metadata -> name on the dataset for Flockershould be considered as deprecated
+- `dataset_uuid` (String) datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.gce_persistent_disk`
+
+Required:
+
+- `pd_name` (String) pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+
+Optional:
+
+- `fs_type` (String) fsType is filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskTODO: how do we prevent errors in the filesystem from compromising the machine
+- `partition` (Number) partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.git_repo`
+
+Required:
+
+- `repository` (String) repository is the URL
+
+Optional:
+
+- `directory` (String) directory is the target directory name.Must not contain or start with '..'. If '.' is supplied, the volume directory will be thegit repository. Otherwise, if specified, the volume will contain the git repository inthe subdirectory with the given name.
+- `revision` (String) revision is the commit hash for the specified revision.
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.glusterfs`
+
+Required:
+
+- `endpoints` (String) endpoints is the endpoint name that details Glusterfs topology.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+- `path` (String) path is the Glusterfs volume path.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+
+Optional:
+
+- `read_only` (Boolean) readOnly here will force the Glusterfs volume to be mounted with read-only permissions.Defaults to false.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.host_path`
+
+Required:
+
+- `path` (String) path of the directory on the host.If the path is a symlink, it will follow the link to the real path.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+
+Optional:
+
+- `type` (String) type for HostPath VolumeDefaults to ''More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.iscsi`
+
+Required:
+
+- `iqn` (String) iqn is the target iSCSI Qualified Name.
+- `lun` (Number) lun represents iSCSI Target Lun number.
+- `target_portal` (String) targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).
+
+Optional:
+
+- `chap_auth_discovery` (Boolean) chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication
+- `chap_auth_session` (Boolean) chapAuthSession defines whether support iSCSI Session CHAP authentication
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsiTODO: how do we prevent errors in the filesystem from compromising the machine
+- `initiator_name` (String) initiatorName is the custom iSCSI Initiator Name.If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface: will be created for the connection.
+- `iscsi_interface` (String) iscsiInterface is the interface Name that uses an iSCSI transport.Defaults to 'default' (tcp).
+- `portals` (List of String) portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.
+- `secret_ref` (Attributes) secretRef is the CHAP Secret for iSCSI target and initiator authentication (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--iscsi--secret_ref))
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.iscsi.secret_ref`
+
+Optional:
+
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.nfs`
+
+Required:
+
+- `path` (String) path that is exported by the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+- `server` (String) server is the hostname or IP address of the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+
+Optional:
+
+- `read_only` (Boolean) readOnly here will force the NFS export to be mounted with read-only permissions.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.persistent_volume_claim`
+
+Required:
+
+- `claim_name` (String) claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+
+Optional:
+
+- `read_only` (Boolean) readOnly Will force the ReadOnly setting in VolumeMounts.Default false.
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.photon_persistent_disk`
+
+Required:
+
+- `pd_id` (String) pdID is the ID that identifies Photon Controller persistent disk
+
+Optional:
+
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.portworx_volume`
+
+Required:
+
+- `volume_id` (String) volumeID uniquely identifies a Portworx volume
+
+Optional:
+
+- `fs_type` (String) fSType represents the filesystem type to mountMust be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.projected`
+
+Optional:
+
+- `default_mode` (Number) defaultMode are the mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `sources` (Attributes List) sources is the list of volume projections (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--projected--sources))
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.projected.sources`
+
+Optional:
+
+- `config_map` (Attributes) configMap information about the configMap data to project (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--projected--sources--config_map))
+- `downward_api` (Attributes) downwardAPI information about the downwardAPI data to project (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--projected--sources--downward_api))
+- `secret` (Attributes) secret information about the secret data to project (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--projected--sources--secret))
+- `service_account_token` (Attributes) serviceAccountToken is information about the serviceAccountToken data to project (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--projected--sources--service_account_token))
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.projected.sources.config_map`
+
+Optional:
+
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--projected--sources--config_map--items))
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+- `optional` (Boolean) optional specify whether the ConfigMap or its keys must be defined
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.projected.sources.config_map.items`
+
+Required:
+
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
+
+Optional:
+
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.projected.sources.downward_api`
+
+Optional:
+
+- `items` (Attributes List) Items is a list of DownwardAPIVolume file (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--projected--sources--downward_api--items))
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.projected.sources.downward_api.items`
+
+Required:
+
+- `path` (String) Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'
+
+Optional:
+
+- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name and namespace are supported. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--projected--sources--downward_api--items--field_ref))
+- `mode` (Number) Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--projected--sources--downward_api--items--resource_field_ref))
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.projected.sources.downward_api.items.field_ref`
+
+Required:
+
+- `field_path` (String) Path of the field to select in the specified API version.
+
+Optional:
+
+- `api_version` (String) Version of the schema the FieldPath is written in terms of, defaults to 'v1'.
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.projected.sources.downward_api.items.resource_field_ref`
+
+Required:
+
+- `resource` (String) Required: resource to select
+
+Optional:
+
+- `container_name` (String) Container name: required for volumes, optional for env vars
+- `divisor` (String) Specifies the output format of the exposed resources, defaults to '1'
@@ -4054,121 +4988,828 @@ Optional:
Optional:
-- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--projected--sources--secret--items))
-- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
-- `optional` (Boolean) optional field specify whether the Secret or its key must be defined
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--projected--sources--secret--items))
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+- `optional` (Boolean) optional field specify whether the Secret or its key must be defined
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.projected.sources.secret.items`
+
+Required:
+
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
+
+Optional:
+
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.projected.sources.service_account_token`
+
+Required:
+
+- `path` (String) path is the path relative to the mount point of the file to project thetoken into.
+
+Optional:
+
+- `audience` (String) audience is the intended audience of the token. A recipient of a tokenmust identify itself with an identifier specified in the audience of thetoken, and otherwise should reject the token. The audience defaults to theidentifier of the apiserver.
+- `expiration_seconds` (Number) expirationSeconds is the requested duration of validity of the serviceaccount token. As the token approaches expiration, the kubelet volumeplugin will proactively rotate the service account token. The kubelet willstart trying to rotate the token if the token is older than 80 percent ofits time to live or if the token is older than 24 hours.Defaults to 1 hourand must be at least 10 minutes.
+
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.quobyte`
+
+Required:
+
+- `registry` (String) registry represents a single or multiple Quobyte Registry servicesspecified as a string as host:port pair (multiple entries are separated with commas)which acts as the central registry for volumes
+- `volume` (String) volume is a string that references an already created Quobyte volume by name.
+
+Optional:
+
+- `group` (String) group to map volume access toDefault is no group
+- `read_only` (Boolean) readOnly here will force the Quobyte volume to be mounted with read-only permissions.Defaults to false.
+- `tenant` (String) tenant owning the given Quobyte volume in the BackendUsed with dynamically provisioned Quobyte volumes, value is set by the plugin
+- `user` (String) user to map volume access toDefaults to serivceaccount user
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.rbd`
+
+Required:
+
+- `image` (String) image is the rados image name.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `monitors` (List of String) monitors is a collection of Ceph monitors.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+
+Optional:
+
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#rbdTODO: how do we prevent errors in the filesystem from compromising the machine
+- `keyring` (String) keyring is the path to key ring for RBDUser.Default is /etc/ceph/keyring.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `pool` (String) pool is the rados pool name.Default is rbd.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `secret_ref` (Attributes) secretRef is name of the authentication secret for RBDUser. If providedoverrides keyring.Default is nil.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--rbd--secret_ref))
+- `user` (String) user is the rados user name.Default is admin.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.rbd.secret_ref`
+
+Optional:
+
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.scale_io`
+
+Required:
+
+- `gateway` (String) gateway is the host address of the ScaleIO API Gateway.
+- `secret_ref` (Attributes) secretRef references to the secret for ScaleIO user and othersensitive information. If this is not provided, Login operation will fail. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--scale_io--secret_ref))
+- `system` (String) system is the name of the storage system as configured in ScaleIO.
+
+Optional:
+
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'.Default is 'xfs'.
+- `protection_domain` (String) protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.
+- `read_only` (Boolean) readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+- `ssl_enabled` (Boolean) sslEnabled Flag enable/disable SSL communication with Gateway, default false
+- `storage_mode` (String) storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.Default is ThinProvisioned.
+- `storage_pool` (String) storagePool is the ScaleIO Storage Pool associated with the protection domain.
+- `volume_name` (String) volumeName is the name of a volume already created in the ScaleIO systemthat is associated with this volume source.
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.scale_io.secret_ref`
+
+Optional:
+
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.secret`
+
+Optional:
+
+- `default_mode` (Number) defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--secret--items))
+- `optional` (Boolean) optional field specify whether the Secret or its keys must be defined
+- `secret_name` (String) secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.secret.items`
+
+Required:
+
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
+
+Optional:
+
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.storageos`
+
+Optional:
+
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+- `secret_ref` (Attributes) secretRef specifies the secret to use for obtaining the StorageOS APIcredentials. If not specified, default values will be attempted. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--storageos--secret_ref))
+- `volume_name` (String) volumeName is the human-readable name of the StorageOS volume. Volumenames are only unique within a namespace.
+- `volume_namespace` (String) volumeNamespace specifies the scope of the volume within StorageOS. If nonamespace is specified then the Pod's namespace will be used. This allows theKubernetes name scoping to be mirrored within StorageOS for tighter integration.Set VolumeName to any name to override the default behaviour.Set to 'default' if you are not using namespaces within StorageOS.Namespaces that do not pre-exist within StorageOS will be created.
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.storageos.secret_ref`
+
+Optional:
+
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.instances.volumes.vsphere_volume`
+
+Required:
+
+- `volume_path` (String) volumePath is the path that identifies vSphere volume vmdk
+
+Optional:
+
+- `fs_type` (String) fsType is filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `storage_policy_id` (String) storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.
+- `storage_policy_name` (String) storagePolicyName is the storage Policy Based Management (SPBM) profile name.
+
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.issuer`
+
+Required:
+
+- `name` (String) The issuer for TLS certificates.It only allows two enum values: 'KubeBlocks' and 'UserProvided'.- 'KubeBlocks' indicates that the self-signed TLS certificates generated by the KubeBlocks Operator will be used.- 'UserProvided' means that the user is responsible for providing their own CA, Cert, and Key. In this case, the user-provided CA certificate, server certificate, and private key will be used for TLS communication.
+
+Optional:
+
+- `secret_ref` (Attributes) SecretRef is the reference to the secret that contains user-provided certificates.It is required when the issuer is set to 'UserProvided'. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--issuer--secret_ref))
+
+
+### Nested Schema for `spec.sharding_specs.template.issuer.secret_ref`
+
+Required:
+
+- `ca` (String) Key of CA cert in Secret
+- `cert` (String) Key of Cert in Secret
+- `key` (String) Key of TLS private key in Secret
+- `name` (String) Name of the Secret that contains user-provided certificates.
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.resources`
+
+Optional:
+
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--resources--claims))
+- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+### Nested Schema for `spec.sharding_specs.template.resources.claims`
+
+Required:
+
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy`
+
+Optional:
+
+- `affinity` (Attributes) Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity))
+- `node_name` (String) NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.
+- `node_selector` (Map of String) NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
+- `scheduler_name` (String) If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.
+- `tolerations` (Attributes List) Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--tolerations))
+- `topology_spread_constraints` (Attributes List) TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--topology_spread_constraints))
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity`
+
+Optional:
+
+- `node_affinity` (Attributes) Describes node affinity scheduling rules for the pod. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--node_affinity))
+- `pod_affinity` (Attributes) Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)). (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity))
+- `pod_anti_affinity` (Attributes) Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)). (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity))
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.node_affinity`
+
+Optional:
+
+- `preferred_during_scheduling_ignored_during_execution` (Attributes List) The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution))
+- `required_during_scheduling_ignored_during_execution` (Attributes) If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution))
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution`
+
+Required:
+
+- `preference` (Attributes) A node selector term, associated with the corresponding weight. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference))
+- `weight` (Number) Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution.preference`
+
+Optional:
+
+- `match_expressions` (Attributes List) A list of node selector requirements by node's labels. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference--match_expressions))
+- `match_fields` (Attributes List) A list of node selector requirements by node's fields. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference--match_fields))
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution.preference.match_expressions`
+
+Required:
+
+- `key` (String) The label key that the selector applies to.
+- `operator` (String) Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+
+Optional:
+
+- `values` (List of String) An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.
+
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution.preference.match_fields`
+
+Required:
+
+- `key` (String) The label key that the selector applies to.
+- `operator` (String) Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+
+Optional:
+
+- `values` (List of String) An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.
+
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution`
+
+Required:
+
+- `node_selector_terms` (Attributes List) Required. A list of node selector terms. The terms are ORed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms))
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution.node_selector_terms`
+
+Optional:
+
+- `match_expressions` (Attributes List) A list of node selector requirements by node's labels. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms--match_expressions))
+- `match_fields` (Attributes List) A list of node selector requirements by node's fields. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms--match_fields))
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution.node_selector_terms.match_expressions`
+
+Required:
+
+- `key` (String) The label key that the selector applies to.
+- `operator` (String) Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+
+Optional:
+
+- `values` (List of String) An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.
+
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution.node_selector_terms.match_fields`
+
+Required:
+
+- `key` (String) The label key that the selector applies to.
+- `operator` (String) Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+
+Optional:
+
+- `values` (List of String) An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.
+
+
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity`
+
+Optional:
+
+- `preferred_during_scheduling_ignored_during_execution` (Attributes List) The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution))
+- `required_during_scheduling_ignored_during_execution` (Attributes List) If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution))
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution`
+
+Required:
+
+- `pod_affinity_term` (Attributes) Required. A pod affinity term, associated with the corresponding weight. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term))
+- `weight` (Number) weight associated with matching the corresponding podAffinityTerm,in the range 1-100.
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term`
+
+Required:
+
+- `topology_key` (String) This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.
+
+Optional:
+
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+
+
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution`
+
+Required:
+
+- `topology_key` (String) This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.
+
+Optional:
+
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.label_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.label_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.namespace_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.namespace_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+
+
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity`
+
+Optional:
+
+- `preferred_during_scheduling_ignored_during_execution` (Attributes List) The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution))
+- `required_during_scheduling_ignored_during_execution` (Attributes List) If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution))
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution`
+
+Required:
+
+- `pod_affinity_term` (Attributes) Required. A pod affinity term, associated with the corresponding weight. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term))
+- `weight` (Number) weight associated with matching the corresponding podAffinityTerm,in the range 1-100.
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term`
+
+Required:
+
+- `topology_key` (String) This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.
+
+Optional:
+
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+
+
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution`
+
+Required:
+
+- `topology_key` (String) This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.
+
+Optional:
+
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.label_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.label_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.namespace_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.namespace_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+
+
+
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.tolerations`
+
+Optional:
+
+- `effect` (String) Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.
+- `key` (String) Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.
+- `operator` (String) Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.
+- `toleration_seconds` (Number) TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.
+- `value` (String) Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.
+
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.topology_spread_constraints`
+
+Required:
+
+- `max_skew` (Number) MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.
+- `topology_key` (String) TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.
+- `when_unsatisfiable` (String) WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.
+
+Optional:
+
+- `label_selector` (Attributes) LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--topology_spread_constraints--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).
+- `min_domains` (Number) MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).
+- `node_affinity_policy` (String) NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.
+- `node_taints_policy` (String) NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.topology_spread_constraints.label_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--topology_spread_constraints--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.sharding_specs.template.scheduling_policy.topology_spread_constraints.label_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+
+
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.service_refs`
+
+Required:
+
+- `name` (String) Specifies the identifier of the service reference declaration.It corresponds to the serviceRefDeclaration name defined in either:- 'componentDefinition.spec.serviceRefDeclarations[*].name'- 'clusterDefinition.spec.componentDefs[*].serviceRefDeclarations[*].name' (deprecated)
+
+Optional:
+
+- `cluster` (String) Specifies the name of the KubeBlocks Cluster being referenced.This is used when services from another KubeBlocks Cluster are consumed.By default, the referenced KubeBlocks Cluster's 'clusterDefinition.spec.connectionCredential'will be utilized to bind to the current Component. This credential should include:'endpoint', 'port', 'username', and 'password'.Note:- The 'ServiceKind' and 'ServiceVersion' specified in the service reference within the ClusterDefinition are not validated when using this approach.- If both 'cluster' and 'serviceDescriptor' are present, 'cluster' will take precedence.Deprecated since v0.9 since 'clusterDefinition.spec.connectionCredential' is deprecated,use 'clusterServiceSelector' instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.
+- `cluster_service_selector` (Attributes) References a service provided by another KubeBlocks Cluster.It specifies the ClusterService and the account credentials needed for access. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--service_refs--cluster_service_selector))
+- `namespace` (String) Specifies the namespace of the referenced Cluster or the namespace of the referenced ServiceDescriptor object.If not provided, the referenced Cluster and ServiceDescriptor will be searched in the namespace of the currentCluster by default.
+- `service_descriptor` (String) Specifies the name of the ServiceDescriptor object that describes a service provided by external sources.When referencing a service provided by external sources, a ServiceDescriptor object is required to establishthe service binding.The 'serviceDescriptor.spec.serviceKind' and 'serviceDescriptor.spec.serviceVersion' should match the serviceKindand serviceVersion declared in the definition.If both 'cluster' and 'serviceDescriptor' are specified, the 'cluster' takes precedence.
+
+
+### Nested Schema for `spec.sharding_specs.template.service_refs.cluster_service_selector`
+
+Required:
+
+- `cluster` (String) The name of the Cluster being referenced.
+
+Optional:
+
+- `credential` (Attributes) Specifies the SystemAccount to authenticate and establish a connection with the referenced Cluster.The SystemAccount should be defined in 'componentDefinition.spec.systemAccounts'of the Component providing the service in the referenced Cluster. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--service_refs--cluster_service_selector--credential))
+- `service` (Attributes) Identifies a ClusterService from the list of Services defined in 'cluster.spec.services' of the referenced Cluster. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--service_refs--cluster_service_selector--service))
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.projected.sources.secret.items`
+
+### Nested Schema for `spec.sharding_specs.template.service_refs.cluster_service_selector.credential`
Required:
-- `key` (String) key is the key to project.
-- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
+- `component` (String) The name of the Component where the credential resides in.
+- `name` (String) The name of the credential (SystemAccount) to reference.
+
+
+
+### Nested Schema for `spec.sharding_specs.template.service_refs.cluster_service_selector.service`
+
+Required:
+
+- `service` (String) The name of the Service to be referenced.Leave it empty to reference the default Service. Set it to 'headless' to reference the default headless Service.If the referenced Service is of pod-service type (a Service per Pod), there will be multiple Service objects matched,and the resolved value will be presented in the following format: service1.name,service2.name...
Optional:
-- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `component` (String) The name of the Component where the Service resides in.It is required when referencing a Component's Service.
+- `port` (String) The port name of the Service to be referenced.If there is a non-zero node-port exist for the matched Service port, the node-port will be selected first.If the referenced Service is of pod-service type (a Service per Pod), there will be multiple Service objects matched,and the resolved value will be presented in the following format: service1.name:port1,service2.name:port2...
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.projected.sources.service_account_token`
+
+
+### Nested Schema for `spec.sharding_specs.template.services`
Required:
-- `path` (String) path is the path relative to the mount point of the file to project thetoken into.
+- `name` (String) References the ComponentService name defined in the 'componentDefinition.spec.services[*].name'.
Optional:
-- `audience` (String) audience is the intended audience of the token. A recipient of a tokenmust identify itself with an identifier specified in the audience of thetoken, and otherwise should reject the token. The audience defaults to theidentifier of the apiserver.
-- `expiration_seconds` (Number) expirationSeconds is the requested duration of validity of the serviceaccount token. As the token approaches expiration, the kubelet volumeplugin will proactively rotate the service account token. The kubelet willstart trying to rotate the token if the token is older than 80 percent ofits time to live or if the token is older than 24 hours.Defaults to 1 hourand must be at least 10 minutes.
+- `annotations` (Map of String) If ServiceType is LoadBalancer, cloud provider related parameters can be put here.More info: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer.
+- `pod_service` (Boolean) Indicates whether to generate individual Services for each Pod.If set to true, a separate Service will be created for each Pod in the Cluster.
+- `service_type` (String) Determines how the Service is exposed. Valid options are 'ClusterIP', 'NodePort', and 'LoadBalancer'.- 'ClusterIP' allocates a Cluster-internal IP address for load-balancing to endpoints. Endpoints are determined by the selector or if that is not specified, they are determined by manual construction of an Endpoints object or EndpointSlice objects.- 'NodePort' builds on ClusterIP and allocates a port on every node which routes to the same endpoints as the ClusterIP.- 'LoadBalancer' builds on NodePort and creates an external load-balancer (if supported in the current cloud) which routes to the same endpoints as the ClusterIP.Note: although K8s Service type allows the 'ExternalName' type, it is not a valid option for ClusterComponentService.For more info, see:https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types.
+
+### Nested Schema for `spec.sharding_specs.template.switch_policy`
+Optional:
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.quobyte`
+- `type` (String) Type specifies the type of switch policy to be applied.
+
+
+
+### Nested Schema for `spec.sharding_specs.template.system_accounts`
Required:
-- `registry` (String) registry represents a single or multiple Quobyte Registry servicesspecified as a string as host:port pair (multiple entries are separated with commas)which acts as the central registry for volumes
-- `volume` (String) volume is a string that references an already created Quobyte volume by name.
+- `name` (String) The name of the system account.
Optional:
-- `group` (String) group to map volume access toDefault is no group
-- `read_only` (Boolean) readOnly here will force the Quobyte volume to be mounted with read-only permissions.Defaults to false.
-- `tenant` (String) tenant owning the given Quobyte volume in the BackendUsed with dynamically provisioned Quobyte volumes, value is set by the plugin
-- `user` (String) user to map volume access toDefaults to serivceaccount user
+- `password_config` (Attributes) Specifies the policy for generating the account's password.This field is immutable once set. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--system_accounts--password_config))
+- `secret_ref` (Attributes) Refers to the secret from which data will be copied to create the new account.This field is immutable once set. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--system_accounts--secret_ref))
+
+### Nested Schema for `spec.sharding_specs.template.system_accounts.password_config`
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.rbd`
+Optional:
+
+- `length` (Number) The length of the password.
+- `letter_case` (String) The case of the letters in the password.
+- `num_digits` (Number) The number of digits in the password.
+- `num_symbols` (Number) The number of symbols in the password.
+- `seed` (String) Seed to generate the account's password.Cannot be updated.
+
+
+
+### Nested Schema for `spec.sharding_specs.template.system_accounts.secret_ref`
Required:
-- `image` (String) image is the rados image name.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
-- `monitors` (List of String) monitors is a collection of Ceph monitors.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `name` (String) The unique identifier of the secret.
+- `namespace` (String) The namespace where the secret is located.
+
+
+
+
+### Nested Schema for `spec.sharding_specs.template.user_resource_refs`
Optional:
-- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#rbdTODO: how do we prevent errors in the filesystem from compromising the machine
-- `keyring` (String) keyring is the path to key ring for RBDUser.Default is /etc/ceph/keyring.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
-- `pool` (String) pool is the rados pool name.Default is rbd.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
-- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
-- `secret_ref` (Attributes) secretRef is name of the authentication secret for RBDUser. If providedoverrides keyring.Default is nil.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--rbd--secret_ref))
-- `user` (String) user is the rados user name.Default is admin.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `config_map_refs` (Attributes List) ConfigMapRefs defines the user-defined ConfigMaps. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--user_resource_refs--config_map_refs))
+- `secret_refs` (Attributes List) SecretRefs defines the user-defined Secrets. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--user_resource_refs--secret_refs))
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.rbd.secret_ref`
+
+### Nested Schema for `spec.sharding_specs.template.user_resource_refs.config_map_refs`
+
+Required:
+
+- `config_map` (Attributes) ConfigMap specifies the ConfigMap to be mounted as a volume. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--user_resource_refs--config_map_refs--config_map))
+- `mount_point` (String) MountPoint is the filesystem path where the volume will be mounted.
+- `name` (String) Name is the name of the referenced ConfigMap or Secret object. It must conform to DNS label standards.
Optional:
-- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+- `as_volume_from` (List of String) AsVolumeFrom lists the names of containers in which the volume should be mounted.
+- `sub_path` (String) SubPath specifies a path within the volume from which to mount.
+
+### Nested Schema for `spec.sharding_specs.template.user_resource_refs.config_map_refs.config_map`
+Optional:
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.scale_io`
+- `default_mode` (Number) defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--user_resource_refs--config_map_refs--config_map--items))
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+- `optional` (Boolean) optional specify whether the ConfigMap or its keys must be defined
+
+
+### Nested Schema for `spec.sharding_specs.template.user_resource_refs.config_map_refs.config_map.items`
Required:
-- `gateway` (String) gateway is the host address of the ScaleIO API Gateway.
-- `secret_ref` (Attributes) secretRef references to the secret for ScaleIO user and othersensitive information. If this is not provided, Login operation will fail. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--scale_io--secret_ref))
-- `system` (String) system is the name of the storage system as configured in ScaleIO.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
Optional:
-- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'.Default is 'xfs'.
-- `protection_domain` (String) protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.
-- `read_only` (Boolean) readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
-- `ssl_enabled` (Boolean) sslEnabled Flag enable/disable SSL communication with Gateway, default false
-- `storage_mode` (String) storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.Default is ThinProvisioned.
-- `storage_pool` (String) storagePool is the ScaleIO Storage Pool associated with the protection domain.
-- `volume_name` (String) volumeName is the name of a volume already created in the ScaleIO systemthat is associated with this volume source.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.scale_io.secret_ref`
-Optional:
-- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+
+### Nested Schema for `spec.sharding_specs.template.user_resource_refs.secret_refs`
+
+Required:
+
+- `mount_point` (String) MountPoint is the filesystem path where the volume will be mounted.
+- `name` (String) Name is the name of the referenced ConfigMap or Secret object. It must conform to DNS label standards.
+- `secret` (Attributes) Secret specifies the Secret to be mounted as a volume. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--user_resource_refs--secret_refs--secret))
+Optional:
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.secret`
+- `as_volume_from` (List of String) AsVolumeFrom lists the names of containers in which the volume should be mounted.
+- `sub_path` (String) SubPath specifies a path within the volume from which to mount.
+
+
+### Nested Schema for `spec.sharding_specs.template.user_resource_refs.secret_refs.secret`
Optional:
- `default_mode` (Number) defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
-- `items` (Attributes List) items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--secret--items))
+- `items` (Attributes List) items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--user_resource_refs--secret_refs--secret--items))
- `optional` (Boolean) optional field specify whether the Secret or its keys must be defined
- `secret_name` (String) secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.secret.items`
+
+### Nested Schema for `spec.sharding_specs.template.user_resource_refs.secret_refs.secret.items`
Required:
@@ -4181,298 +5822,368 @@ Optional:
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.storageos`
+
+
+
+### Nested Schema for `spec.sharding_specs.template.volume_claim_templates`
+
+Required:
+
+- `name` (String) Refers to the name of a volumeMount defined in either:- 'componentDefinition.spec.runtime.containers[*].volumeMounts'- 'clusterDefinition.spec.componentDefs[*].podSpec.containers[*].volumeMounts' (deprecated)The value of 'name' must match the 'name' field of a volumeMount specified in the corresponding 'volumeMounts' array.
Optional:
-- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
-- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
-- `secret_ref` (Attributes) secretRef specifies the secret to use for obtaining the StorageOS APIcredentials. If not specified, default values will be attempted. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--instances--volumes--storageos--secret_ref))
-- `volume_name` (String) volumeName is the human-readable name of the StorageOS volume. Volumenames are only unique within a namespace.
-- `volume_namespace` (String) volumeNamespace specifies the scope of the volume within StorageOS. If nonamespace is specified then the Pod's namespace will be used. This allows theKubernetes name scoping to be mirrored within StorageOS for tighter integration.Set VolumeName to any name to override the default behaviour.Set to 'default' if you are not using namespaces within StorageOS.Namespaces that do not pre-exist within StorageOS will be created.
+- `spec` (Attributes) Defines the desired characteristics of a PersistentVolumeClaim that will be created for the volumewith the mount name specified in the 'name' field.When a Pod is created for this ClusterComponent, a new PVC will be created based on the specificationdefined in the 'spec' field. The PVC will be associated with the volume mount specified by the 'name' field. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volume_claim_templates--spec))
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.storageos.secret_ref`
+
+### Nested Schema for `spec.sharding_specs.template.volume_claim_templates.spec`
Optional:
-- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+- `access_modes` (Map of String) Contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1.
+- `resources` (Attributes) Represents the minimum resources the volume should have.If the RecoverVolumeExpansionFailure feature is enabled, users are allowed to specify resource requirements thatare lower than the previous value but must still be higher than the capacity recorded in the status field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volume_claim_templates--spec--resources))
+- `storage_class_name` (String) The name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1.
+- `volume_mode` (String) Defines what type of volume is required by the claim, either Block or Filesystem.
+
+### Nested Schema for `spec.sharding_specs.template.volume_claim_templates.spec.resources`
+Optional:
-
-### Nested Schema for `spec.sharding_specs.template.instances.volumes.vsphere_volume`
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volume_claim_templates--spec--resources--claims))
+- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+### Nested Schema for `spec.sharding_specs.template.volume_claim_templates.spec.resources.claims`
Required:
-- `volume_path` (String) volumePath is the path that identifies vSphere volume vmdk
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.
-Optional:
-- `fs_type` (String) fsType is filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
-- `storage_policy_id` (String) storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.
-- `storage_policy_name` (String) storagePolicyName is the storage Policy Based Management (SPBM) profile name.
+
+### Nested Schema for `spec.sharding_specs.template.volumes`
-
-### Nested Schema for `spec.sharding_specs.template.issuer`
+Required:
+
+- `name` (String) name of the volume.Must be a DNS_LABEL and unique within the pod.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+
+Optional:
+
+- `aws_elastic_block_store` (Attributes) awsElasticBlockStore represents an AWS Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--aws_elastic_block_store))
+- `azure_disk` (Attributes) azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--azure_disk))
+- `azure_file` (Attributes) azureFile represents an Azure File Service mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--azure_file))
+- `cephfs` (Attributes) cephFS represents a Ceph FS mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--cephfs))
+- `cinder` (Attributes) cinder represents a cinder volume attached and mounted on kubelets host machine.More info: https://examples.k8s.io/mysql-cinder-pd/README.md (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--cinder))
+- `config_map` (Attributes) configMap represents a configMap that should populate this volume (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--config_map))
+- `csi` (Attributes) csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature). (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--csi))
+- `downward_api` (Attributes) downwardAPI represents downward API about the pod that should populate this volume (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--downward_api))
+- `empty_dir` (Attributes) emptyDir represents a temporary directory that shares a pod's lifetime.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--empty_dir))
+- `ephemeral` (Attributes) ephemeral represents a volume that is handled by a cluster storage driver.The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,and deleted when the pod is removed.Use this if:a) the volume is only needed while the pod runs,b) features of normal volumes like restoring from snapshot or capacity tracking are needed,c) the storage driver is specified through a storage class, andd) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim).Use PersistentVolumeClaim or one of the vendor-specificAPIs for volumes that persist for longer than the lifecycleof an individual pod.Use CSI for light-weight local ephemeral volumes if the CSI driver is meant tobe used that way - see the documentation of the driver formore information.A pod can use both types of ephemeral volumes andpersistent volumes at the same time. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--ephemeral))
+- `fc` (Attributes) fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--fc))
+- `flex_volume` (Attributes) flexVolume represents a generic volume resource that isprovisioned/attached using an exec based plugin. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--flex_volume))
+- `flocker` (Attributes) flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--flocker))
+- `gce_persistent_disk` (Attributes) gcePersistentDisk represents a GCE Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--gce_persistent_disk))
+- `git_repo` (Attributes) gitRepo represents a git repository at a particular revision.DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount anEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDirinto the Pod's container. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--git_repo))
+- `glusterfs` (Attributes) glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/glusterfs/README.md (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--glusterfs))
+- `host_path` (Attributes) hostPath represents a pre-existing file or directory on the hostmachine that is directly exposed to the container. This is generallyused for system agents or other privileged things that are allowedto see the host machine. Most containers will NOT need this.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath---TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can notmount host directories as read/write. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--host_path))
+- `iscsi` (Attributes) iscsi represents an ISCSI Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://examples.k8s.io/volumes/iscsi/README.md (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--iscsi))
+- `nfs` (Attributes) nfs represents an NFS mount on the host that shares a pod's lifetimeMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--nfs))
+- `persistent_volume_claim` (Attributes) persistentVolumeClaimVolumeSource represents a reference to aPersistentVolumeClaim in the same namespace.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--persistent_volume_claim))
+- `photon_persistent_disk` (Attributes) photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--photon_persistent_disk))
+- `portworx_volume` (Attributes) portworxVolume represents a portworx volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--portworx_volume))
+- `projected` (Attributes) projected items for all in one resources secrets, configmaps, and downward API (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--projected))
+- `quobyte` (Attributes) quobyte represents a Quobyte mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--quobyte))
+- `rbd` (Attributes) rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/rbd/README.md (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--rbd))
+- `scale_io` (Attributes) scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--scale_io))
+- `secret` (Attributes) secret represents a secret that should populate this volume.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--secret))
+- `storageos` (Attributes) storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--storageos))
+- `vsphere_volume` (Attributes) vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--vsphere_volume))
+
+
+### Nested Schema for `spec.sharding_specs.template.volumes.aws_elastic_block_store`
Required:
-- `name` (String) The issuer for TLS certificates.It only allows two enum values: 'KubeBlocks' and 'UserProvided'.- 'KubeBlocks' indicates that the self-signed TLS certificates generated by the KubeBlocks Operator will be used.- 'UserProvided' means that the user is responsible for providing their own CA, Cert, and Key. In this case, the user-provided CA certificate, server certificate, and private key will be used for TLS communication.
+- `volume_id` (String) volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
Optional:
-- `secret_ref` (Attributes) SecretRef is the reference to the secret that contains user-provided certificates.It is required when the issuer is set to 'UserProvided'. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--issuer--secret_ref))
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstoreTODO: how do we prevent errors in the filesystem from compromising the machine
+- `partition` (Number) partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).
+- `read_only` (Boolean) readOnly value true will force the readOnly setting in VolumeMounts.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
-
-### Nested Schema for `spec.sharding_specs.template.issuer.secret_ref`
+
+
+### Nested Schema for `spec.sharding_specs.template.volumes.azure_disk`
Required:
-- `ca` (String) Key of CA cert in Secret
-- `cert` (String) Key of Cert in Secret
-- `key` (String) Key of TLS private key in Secret
-- `name` (String) Name of the Secret that contains user-provided certificates.
+- `disk_name` (String) diskName is the Name of the data disk in the blob storage
+- `disk_uri` (String) diskURI is the URI of data disk in the blob storage
+
+Optional:
+
+- `caching_mode` (String) cachingMode is the Host Caching mode: None, Read Only, Read Write.
+- `fs_type` (String) fsType is Filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `kind` (String) kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared
+- `read_only` (Boolean) readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+
+### Nested Schema for `spec.sharding_specs.template.volumes.azure_file`
-
-### Nested Schema for `spec.sharding_specs.template.resources`
+Required:
+
+- `secret_name` (String) secretName is the name of secret that contains Azure Storage Account Name and Key
+- `share_name` (String) shareName is the azure share Name
Optional:
-- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--resources--claims))
-- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
-
-### Nested Schema for `spec.sharding_specs.template.resources.claims`
+
+
+### Nested Schema for `spec.sharding_specs.template.volumes.cephfs`
Required:
-- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.
+- `monitors` (List of String) monitors is Required: Monitors is a collection of Ceph monitorsMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+
+Optional:
+
+- `path` (String) path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /
+- `read_only` (Boolean) readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `secret_file` (String) secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secretMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `secret_ref` (Attributes) secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--cephfs--secret_ref))
+- `user` (String) user is optional: User is the rados user name, default is adminMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+
+
+### Nested Schema for `spec.sharding_specs.template.volumes.cephfs.secret_ref`
+
+Optional:
+
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+
+
+
+### Nested Schema for `spec.sharding_specs.template.volumes.cinder`
+Required:
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy`
+- `volume_id` (String) volumeID used to identify the volume in cinder.More info: https://examples.k8s.io/mysql-cinder-pd/README.md
Optional:
-- `affinity` (Attributes) Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity))
-- `node_name` (String) NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.
-- `node_selector` (Map of String) NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
-- `scheduler_name` (String) If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.
-- `tolerations` (Attributes List) Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--tolerations))
-- `topology_spread_constraints` (Attributes List) TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--topology_spread_constraints))
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+- `secret_ref` (Attributes) secretRef is optional: points to a secret object containing parameters used to connectto OpenStack. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--cinder--secret_ref))
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.cinder.secret_ref`
Optional:
-- `node_affinity` (Attributes) Describes node affinity scheduling rules for the pod. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--node_affinity))
-- `pod_affinity` (Attributes) Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)). (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity))
-- `pod_anti_affinity` (Attributes) Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)). (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity))
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.node_affinity`
+
+
+
+### Nested Schema for `spec.sharding_specs.template.volumes.config_map`
Optional:
-- `preferred_during_scheduling_ignored_during_execution` (Attributes List) The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution))
-- `required_during_scheduling_ignored_during_execution` (Attributes) If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution))
+- `default_mode` (Number) defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--config_map--items))
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+- `optional` (Boolean) optional specify whether the ConfigMap or its keys must be defined
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.config_map.items`
Required:
-- `preference` (Attributes) A node selector term, associated with the corresponding weight. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference))
-- `weight` (Number) Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.
-
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution.preference`
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
Optional:
-- `match_expressions` (Attributes List) A list of node selector requirements by node's labels. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference--match_expressions))
-- `match_fields` (Attributes List) A list of node selector requirements by node's fields. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference--match_fields))
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution.preference.match_expressions`
+
+
+### Nested Schema for `spec.sharding_specs.template.volumes.csi`
Required:
-- `key` (String) The label key that the selector applies to.
-- `operator` (String) Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+- `driver` (String) driver is the name of the CSI driver that handles this volume.Consult with your admin for the correct name as registered in the cluster.
Optional:
-- `values` (List of String) An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.
-
+- `fs_type` (String) fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'.If not provided, the empty value is passed to the associated CSI driverwhich will determine the default filesystem to apply.
+- `node_publish_secret_ref` (Attributes) nodePublishSecretRef is a reference to the secret object containingsensitive information to pass to the CSI driver to complete the CSINodePublishVolume and NodeUnpublishVolume calls.This field is optional, and may be empty if no secret is required. If thesecret object contains more than one secret, all secret references are passed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--csi--node_publish_secret_ref))
+- `read_only` (Boolean) readOnly specifies a read-only configuration for the volume.Defaults to false (read/write).
+- `volume_attributes` (Map of String) volumeAttributes stores driver-specific properties that are passed to the CSIdriver. Consult your driver's documentation for supported values.
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution.preference.match_fields`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.csi.node_publish_secret_ref`
-Required:
+Optional:
-- `key` (String) The label key that the selector applies to.
-- `operator` (String) Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
-Optional:
-- `values` (List of String) An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.
+
+### Nested Schema for `spec.sharding_specs.template.volumes.downward_api`
+Optional:
+- `default_mode` (Number) Optional: mode bits to use on created files by default. Must be aOptional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) Items is a list of downward API volume file (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--downward_api--items))
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.downward_api.items`
Required:
-- `node_selector_terms` (Attributes List) Required. A list of node selector terms. The terms are ORed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms))
-
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution.node_selector_terms`
+- `path` (String) Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'
Optional:
-- `match_expressions` (Attributes List) A list of node selector requirements by node's labels. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms--match_expressions))
-- `match_fields` (Attributes List) A list of node selector requirements by node's fields. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms--match_fields))
+- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name and namespace are supported. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--downward_api--items--field_ref))
+- `mode` (Number) Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--downward_api--items--resource_field_ref))
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution.node_selector_terms.match_expressions`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.downward_api.items.field_ref`
Required:
-- `key` (String) The label key that the selector applies to.
-- `operator` (String) Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+- `field_path` (String) Path of the field to select in the specified API version.
Optional:
-- `values` (List of String) An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.
+- `api_version` (String) Version of the schema the FieldPath is written in terms of, defaults to 'v1'.
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.node_affinity.required_during_scheduling_ignored_during_execution.node_selector_terms.match_fields`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.downward_api.items.resource_field_ref`
Required:
-- `key` (String) The label key that the selector applies to.
-- `operator` (String) Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
+- `resource` (String) Required: resource to select
Optional:
-- `values` (List of String) An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.
-
+- `container_name` (String) Container name: required for volumes, optional for env vars
+- `divisor` (String) Specifies the output format of the exposed resources, defaults to '1'
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.empty_dir`
Optional:
-- `preferred_during_scheduling_ignored_during_execution` (Attributes List) The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution))
-- `required_during_scheduling_ignored_during_execution` (Attributes List) If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution))
+- `medium` (String) medium represents what type of storage medium should back this directory.The default is '' which means to use the node's default medium.Must be an empty string (default) or Memory.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
+- `size_limit` (String) sizeLimit is the total amount of local storage required for this EmptyDir volume.The size limit is also applicable for memory medium.The maximum usage on memory medium EmptyDir would be the minimum value betweenthe SizeLimit specified here and the sum of memory limits of all containers in a pod.The default is nil which means that the limit is undefined.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution`
-Required:
+
+### Nested Schema for `spec.sharding_specs.template.volumes.ephemeral`
-- `pod_affinity_term` (Attributes) Required. A pod affinity term, associated with the corresponding weight. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term))
-- `weight` (Number) weight associated with matching the corresponding podAffinityTerm,in the range 1-100.
+Optional:
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term`
+- `volume_claim_template` (Attributes) Will be used to create a stand-alone PVC to provision the volume.The pod in which this EphemeralVolumeSource is embedded will be theowner of the PVC, i.e. the PVC will be deleted together with thepod. The name of the PVC will be '-' where'' is the name from the 'PodSpec.Volumes' arrayentry. Pod validation will reject the pod if the concatenated nameis not valid for a PVC (for example, too long).An existing PVC with that name that is not owned by the podwill *not* be used for the pod to avoid using an unrelatedvolume by mistake. Starting the pod is then blocked untilthe unrelated PVC is removed. If such a pre-created PVC ismeant to be used by the pod, the PVC has to updated with anowner reference to the pod once the pod exists. Normallythis should not be necessary, but it may be useful whenmanually reconstructing a broken cluster.This field is read-only and no changes will be made by Kubernetesto the PVC after it has been created.Required, must not be nil. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--ephemeral--volume_claim_template))
+
+
+### Nested Schema for `spec.sharding_specs.template.volumes.ephemeral.volume_claim_template`
Required:
-- `topology_key` (String) This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.
+- `spec` (Attributes) The specification for the PersistentVolumeClaim. The entire content iscopied unchanged into the PVC that gets created from thistemplate. The same fields as in a PersistentVolumeClaimare also valid here. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--ephemeral--volume_claim_template--spec))
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
+- `metadata` (Attributes) May contain labels and annotations that will be copied into the PVCwhen creating it. No other fields are allowed and will be rejected duringvalidation. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--ephemeral--volume_claim_template--metadata))
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.ephemeral.volume_claim_template.spec`
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector--match_expressions))
-- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+- `access_modes` (List of String) accessModes contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
+- `data_source` (Attributes) dataSource field can be used to specify either:* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)* An existing PVC (PersistentVolumeClaim)If the provisioner or an external controller can support the specified data source,it will create a new volume based on the contents of the specified data source.When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.If the namespace is specified, then dataSourceRef will not be copied to dataSource. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--ephemeral--volume_claim_template--spec--data_source))
+- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-emptyvolume is desired. This may be any object from a non-empty API group (noncore object) or a PersistentVolumeClaim object.When this field is specified, volume binding will only succeed if the type ofthe specified object matches some installed volume populator or dynamicprovisioner.This field will replace the functionality of the dataSource field and as suchif both fields are non-empty, they must have the same value. For backwardscompatibility, when namespace isn't specified in dataSourceRef,both fields (dataSource and dataSourceRef) will be set to the samevalue automatically if one of them is empty and the other is non-empty.When namespace is specified in dataSourceRef,dataSource isn't set to the same value and must be empty.There are three important differences between dataSource and dataSourceRef:* While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects.* While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified.* While dataSource only allows local objects, dataSourceRef allows objects in any namespaces.(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--ephemeral--volume_claim_template--spec--data_source_ref))
+- `resources` (Attributes) resources represents the minimum resources the volume should have.If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirementsthat are lower than previous value but must still be higher than capacity recorded in thestatus field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--ephemeral--volume_claim_template--spec--resources))
+- `selector` (Attributes) selector is a label query over volumes to consider for binding. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--ephemeral--volume_claim_template--spec--selector))
+- `storage_class_name` (String) storageClassName is the name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
+- `volume_mode` (String) volumeMode defines what type of volume is required by the claim.Value of Filesystem is implied when not included in claim spec.
+- `volume_name` (String) volumeName is the binding reference to the PersistentVolume backing this claim.
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector.match_expressions`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.ephemeral.volume_claim_template.spec.data_source`
Required:
-- `key` (String) key is the label key that the selector applies to.
-- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+- `kind` (String) Kind is the type of resource being referenced
+- `name` (String) Name is the name of resource being referenced
Optional:
-- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
-
-
-
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector`
-
-Optional:
+- `api_group` (String) APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector--match_expressions))
-- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector.match_expressions`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.ephemeral.volume_claim_template.spec.data_source_ref`
Required:
-- `key` (String) key is the label key that the selector applies to.
-- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+- `kind` (String) Kind is the type of resource being referenced
+- `name` (String) Name is the name of resource being referenced
Optional:
-- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+- `api_group` (String) APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.
+- `namespace` (String) Namespace is the namespace of resource being referencedNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.
+
+### Nested Schema for `spec.sharding_specs.template.volumes.ephemeral.volume_claim_template.spec.resources`
+Optional:
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--ephemeral--volume_claim_template--spec--resources--claims))
+- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.ephemeral.volume_claim_template.spec.resources.claims`
Required:
-- `topology_key` (String) This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.
-Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.label_selector`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.ephemeral.volume_claim_template.spec.selector`
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector--match_expressions))
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--ephemeral--volume_claim_template--spec--selector--match_expressions))
- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.label_selector.match_expressions`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.ephemeral.volume_claim_template.spec.selector.match_expressions`
Required:
@@ -4485,397 +6196,404 @@ Optional:
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.namespace_selector`
+
+
+### Nested Schema for `spec.sharding_specs.template.volumes.ephemeral.volume_claim_template.metadata`
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector--match_expressions))
-- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+- `annotations` (Map of String)
+- `finalizers` (List of String)
+- `labels` (Map of String)
+- `name` (String)
+- `namespace` (String)
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.namespace_selector.match_expressions`
-Required:
-- `key` (String) key is the label key that the selector applies to.
-- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
-Optional:
+
+### Nested Schema for `spec.sharding_specs.template.volumes.fc`
-- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+Optional:
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.TODO: how do we prevent errors in the filesystem from compromising the machine
+- `lun` (Number) lun is Optional: FC target lun number
+- `read_only` (Boolean) readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+- `target_ww_ns` (List of String) targetWWNs is Optional: FC target worldwide names (WWNs)
+- `wwids` (List of String) wwids Optional: FC volume world wide identifiers (wwids)Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.
+
+### Nested Schema for `spec.sharding_specs.template.volumes.flex_volume`
+Required:
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity`
+- `driver` (String) driver is the name of the driver to use for this volume.
Optional:
-- `preferred_during_scheduling_ignored_during_execution` (Attributes List) The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution))
-- `required_during_scheduling_ignored_during_execution` (Attributes List) If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution))
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.
+- `options` (Map of String) options is Optional: this field holds extra command options if any.
+- `read_only` (Boolean) readOnly is Optional: defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+- `secret_ref` (Attributes) secretRef is Optional: secretRef is reference to the secret object containingsensitive information to pass to the plugin scripts. This may beempty if no secret object is specified. If the secret objectcontains more than one secret, all secrets are passed to the pluginscripts. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--flex_volume--secret_ref))
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.flex_volume.secret_ref`
-Required:
+Optional:
-- `pod_affinity_term` (Attributes) Required. A pod affinity term, associated with the corresponding weight. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term))
-- `weight` (Number) weight associated with matching the corresponding podAffinityTerm,in the range 1-100.
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term`
-Required:
-- `topology_key` (String) This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.
+
+### Nested Schema for `spec.sharding_specs.template.volumes.flocker`
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
+- `dataset_name` (String) datasetName is Name of the dataset stored as metadata -> name on the dataset for Flockershould be considered as deprecated
+- `dataset_uuid` (String) datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector`
+
+
+### Nested Schema for `spec.sharding_specs.template.volumes.gce_persistent_disk`
+
+Required:
+
+- `pd_name` (String) pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector--match_expressions))
-- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+- `fs_type` (String) fsType is filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskTODO: how do we prevent errors in the filesystem from compromising the machine
+- `partition` (Number) partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector.match_expressions`
+
+
+### Nested Schema for `spec.sharding_specs.template.volumes.git_repo`
Required:
-- `key` (String) key is the label key that the selector applies to.
-- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+- `repository` (String) repository is the URL
Optional:
-- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+- `directory` (String) directory is the target directory name.Must not contain or start with '..'. If '.' is supplied, the volume directory will be thegit repository. Otherwise, if specified, the volume will contain the git repository inthe subdirectory with the given name.
+- `revision` (String) revision is the commit hash for the specified revision.
+
+### Nested Schema for `spec.sharding_specs.template.volumes.glusterfs`
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector`
+Required:
+
+- `endpoints` (String) endpoints is the endpoint name that details Glusterfs topology.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+- `path` (String) path is the Glusterfs volume path.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector--match_expressions))
-- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+- `read_only` (Boolean) readOnly here will force the Glusterfs volume to be mounted with read-only permissions.Defaults to false.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector.match_expressions`
+
+
+### Nested Schema for `spec.sharding_specs.template.volumes.host_path`
Required:
-- `key` (String) key is the label key that the selector applies to.
-- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+- `path` (String) path of the directory on the host.If the path is a symlink, it will follow the link to the real path.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
Optional:
-- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+- `type` (String) type for HostPath VolumeDefaults to ''More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+
+### Nested Schema for `spec.sharding_specs.template.volumes.iscsi`
+Required:
+- `iqn` (String) iqn is the target iSCSI Qualified Name.
+- `lun` (Number) lun represents iSCSI Target Lun number.
+- `target_portal` (String) targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution`
+Optional:
-Required:
+- `chap_auth_discovery` (Boolean) chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication
+- `chap_auth_session` (Boolean) chapAuthSession defines whether support iSCSI Session CHAP authentication
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsiTODO: how do we prevent errors in the filesystem from compromising the machine
+- `initiator_name` (String) initiatorName is the custom iSCSI Initiator Name.If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface: will be created for the connection.
+- `iscsi_interface` (String) iscsiInterface is the interface Name that uses an iSCSI transport.Defaults to 'default' (tcp).
+- `portals` (List of String) portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.
+- `secret_ref` (Attributes) secretRef is the CHAP Secret for iSCSI target and initiator authentication (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--iscsi--secret_ref))
-- `topology_key` (String) This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.
+
+### Nested Schema for `spec.sharding_specs.template.volumes.iscsi.secret_ref`
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
-
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.label_selector`
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
-Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector--match_expressions))
-- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.label_selector.match_expressions`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.nfs`
Required:
-- `key` (String) key is the label key that the selector applies to.
-- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+- `path` (String) path that is exported by the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+- `server` (String) server is the hostname or IP address of the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
Optional:
-- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+- `read_only` (Boolean) readOnly here will force the NFS export to be mounted with read-only permissions.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+
+### Nested Schema for `spec.sharding_specs.template.volumes.persistent_volume_claim`
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.namespace_selector`
+Required:
+
+- `claim_name` (String) claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector--match_expressions))
-- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+- `read_only` (Boolean) readOnly Will force the ReadOnly setting in VolumeMounts.Default false.
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.namespace_selector.match_expressions`
+
+
+### Nested Schema for `spec.sharding_specs.template.volumes.photon_persistent_disk`
Required:
-- `key` (String) key is the label key that the selector applies to.
-- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+- `pd_id` (String) pdID is the ID that identifies Photon Controller persistent disk
Optional:
-- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
-
-
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+
+### Nested Schema for `spec.sharding_specs.template.volumes.portworx_volume`
+Required:
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.tolerations`
+- `volume_id` (String) volumeID uniquely identifies a Portworx volume
Optional:
-- `effect` (String) Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.
-- `key` (String) Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.
-- `operator` (String) Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.
-- `toleration_seconds` (Number) TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.
-- `value` (String) Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.
+- `fs_type` (String) fSType represents the filesystem type to mountMust be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.topology_spread_constraints`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.projected`
-Required:
+Optional:
-- `max_skew` (Number) MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.
-- `topology_key` (String) TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.
-- `when_unsatisfiable` (String) WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.
+- `default_mode` (Number) defaultMode are the mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `sources` (Attributes List) sources is the list of volume projections (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--projected--sources))
+
+
+### Nested Schema for `spec.sharding_specs.template.volumes.projected.sources`
Optional:
-- `label_selector` (Attributes) LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--topology_spread_constraints--label_selector))
-- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).
-- `min_domains` (Number) MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).
-- `node_affinity_policy` (String) NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.
-- `node_taints_policy` (String) NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.
+- `config_map` (Attributes) configMap information about the configMap data to project (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--projected--sources--config_map))
+- `downward_api` (Attributes) downwardAPI information about the downwardAPI data to project (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--projected--sources--downward_api))
+- `secret` (Attributes) secret information about the secret data to project (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--projected--sources--secret))
+- `service_account_token` (Attributes) serviceAccountToken is information about the serviceAccountToken data to project (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--projected--sources--service_account_token))
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.topology_spread_constraints.label_selector`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.projected.sources.config_map`
Optional:
-- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--scheduling_policy--topology_spread_constraints--label_selector--match_expressions))
-- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--projected--sources--config_map--items))
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+- `optional` (Boolean) optional specify whether the ConfigMap or its keys must be defined
-
-### Nested Schema for `spec.sharding_specs.template.scheduling_policy.topology_spread_constraints.label_selector.match_expressions`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.projected.sources.config_map.items`
Required:
-- `key` (String) key is the label key that the selector applies to.
-- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
Optional:
-- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+
+### Nested Schema for `spec.sharding_specs.template.volumes.projected.sources.downward_api`
+Optional:
-
-### Nested Schema for `spec.sharding_specs.template.service_refs`
+- `items` (Attributes List) Items is a list of DownwardAPIVolume file (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--projected--sources--downward_api--items))
+
+
+### Nested Schema for `spec.sharding_specs.template.volumes.projected.sources.downward_api.items`
Required:
-- `name` (String) Specifies the identifier of the service reference declaration.It corresponds to the serviceRefDeclaration name defined in either:- 'componentDefinition.spec.serviceRefDeclarations[*].name'- 'clusterDefinition.spec.componentDefs[*].serviceRefDeclarations[*].name' (deprecated)
+- `path` (String) Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'
Optional:
-- `cluster` (String) Specifies the name of the KubeBlocks Cluster being referenced.This is used when services from another KubeBlocks Cluster are consumed.By default, the referenced KubeBlocks Cluster's 'clusterDefinition.spec.connectionCredential'will be utilized to bind to the current Component. This credential should include:'endpoint', 'port', 'username', and 'password'.Note:- The 'ServiceKind' and 'ServiceVersion' specified in the service reference within the ClusterDefinition are not validated when using this approach.- If both 'cluster' and 'serviceDescriptor' are present, 'cluster' will take precedence.Deprecated since v0.9 since 'clusterDefinition.spec.connectionCredential' is deprecated,use 'clusterServiceSelector' instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.
-- `cluster_service_selector` (Attributes) References a service provided by another KubeBlocks Cluster.It specifies the ClusterService and the account credentials needed for access. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--service_refs--cluster_service_selector))
-- `namespace` (String) Specifies the namespace of the referenced Cluster or the namespace of the referenced ServiceDescriptor object.If not provided, the referenced Cluster and ServiceDescriptor will be searched in the namespace of the currentCluster by default.
-- `service_descriptor` (String) Specifies the name of the ServiceDescriptor object that describes a service provided by external sources.When referencing a service provided by external sources, a ServiceDescriptor object is required to establishthe service binding.The 'serviceDescriptor.spec.serviceKind' and 'serviceDescriptor.spec.serviceVersion' should match the serviceKindand serviceVersion declared in the definition.If both 'cluster' and 'serviceDescriptor' are specified, the 'cluster' takes precedence.
+- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name and namespace are supported. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--projected--sources--downward_api--items--field_ref))
+- `mode` (Number) Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--projected--sources--downward_api--items--resource_field_ref))
-
-### Nested Schema for `spec.sharding_specs.template.service_refs.cluster_service_selector`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.projected.sources.downward_api.items.field_ref`
Required:
-- `cluster` (String) The name of the Cluster being referenced.
+- `field_path` (String) Path of the field to select in the specified API version.
Optional:
-- `credential` (Attributes) Specifies the SystemAccount to authenticate and establish a connection with the referenced Cluster.The SystemAccount should be defined in 'componentDefinition.spec.systemAccounts'of the Component providing the service in the referenced Cluster. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--service_refs--cluster_service_selector--credential))
-- `service` (Attributes) Identifies a ClusterService from the list of Services defined in 'cluster.spec.services' of the referenced Cluster. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--service_refs--cluster_service_selector--service))
-
-
-### Nested Schema for `spec.sharding_specs.template.service_refs.cluster_service_selector.credential`
-
-Required:
-
-- `component` (String) The name of the Component where the credential resides in.
-- `name` (String) The name of the credential (SystemAccount) to reference.
+- `api_version` (String) Version of the schema the FieldPath is written in terms of, defaults to 'v1'.
-
-### Nested Schema for `spec.sharding_specs.template.service_refs.cluster_service_selector.service`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.projected.sources.downward_api.items.resource_field_ref`
Required:
-- `service` (String) The name of the Service to be referenced.Leave it empty to reference the default Service. Set it to 'headless' to reference the default headless Service.If the referenced Service is of pod-service type (a Service per Pod), there will be multiple Service objects matched,and the resolved value will be presented in the following format: service1.name,service2.name...
+- `resource` (String) Required: resource to select
Optional:
-- `component` (String) The name of the Component where the Service resides in.It is required when referencing a Component's Service.
-- `port` (String) The port name of the Service to be referenced.If there is a non-zero node-port exist for the matched Service port, the node-port will be selected first.If the referenced Service is of pod-service type (a Service per Pod), there will be multiple Service objects matched,and the resolved value will be presented in the following format: service1.name:port1,service2.name:port2...
-
-
+- `container_name` (String) Container name: required for volumes, optional for env vars
+- `divisor` (String) Specifies the output format of the exposed resources, defaults to '1'
-
-### Nested Schema for `spec.sharding_specs.template.services`
-Required:
-- `name` (String) References the ComponentService name defined in the 'componentDefinition.spec.services[*].name'.
+
+### Nested Schema for `spec.sharding_specs.template.volumes.projected.sources.secret`
Optional:
-- `annotations` (Map of String) If ServiceType is LoadBalancer, cloud provider related parameters can be put here.More info: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer.
-- `pod_service` (Boolean) Indicates whether to generate individual Services for each Pod.If set to true, a separate Service will be created for each Pod in the Cluster.
-- `service_type` (String) Determines how the Service is exposed. Valid options are 'ClusterIP', 'NodePort', and 'LoadBalancer'.- 'ClusterIP' allocates a Cluster-internal IP address for load-balancing to endpoints. Endpoints are determined by the selector or if that is not specified, they are determined by manual construction of an Endpoints object or EndpointSlice objects.- 'NodePort' builds on ClusterIP and allocates a port on every node which routes to the same endpoints as the ClusterIP.- 'LoadBalancer' builds on NodePort and creates an external load-balancer (if supported in the current cloud) which routes to the same endpoints as the ClusterIP.Note: although K8s Service type allows the 'ExternalName' type, it is not a valid option for ClusterComponentService.For more info, see:https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types.
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--projected--sources--secret--items))
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+- `optional` (Boolean) optional field specify whether the Secret or its key must be defined
+
+### Nested Schema for `spec.sharding_specs.template.volumes.projected.sources.secret.items`
-
-### Nested Schema for `spec.sharding_specs.template.switch_policy`
+Required:
+
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
Optional:
-- `type` (String) Type specifies the type of switch policy to be applied.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
-
-### Nested Schema for `spec.sharding_specs.template.system_accounts`
+
+
+### Nested Schema for `spec.sharding_specs.template.volumes.projected.sources.service_account_token`
Required:
-- `name` (String) The name of the system account.
+- `path` (String) path is the path relative to the mount point of the file to project thetoken into.
Optional:
-- `password_config` (Attributes) Specifies the policy for generating the account's password.This field is immutable once set. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--system_accounts--password_config))
-- `secret_ref` (Attributes) Refers to the secret from which data will be copied to create the new account.This field is immutable once set. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--system_accounts--secret_ref))
-
-
-### Nested Schema for `spec.sharding_specs.template.system_accounts.password_config`
+- `audience` (String) audience is the intended audience of the token. A recipient of a tokenmust identify itself with an identifier specified in the audience of thetoken, and otherwise should reject the token. The audience defaults to theidentifier of the apiserver.
+- `expiration_seconds` (Number) expirationSeconds is the requested duration of validity of the serviceaccount token. As the token approaches expiration, the kubelet volumeplugin will proactively rotate the service account token. The kubelet willstart trying to rotate the token if the token is older than 80 percent ofits time to live or if the token is older than 24 hours.Defaults to 1 hourand must be at least 10 minutes.
-Optional:
-- `length` (Number) The length of the password.
-- `letter_case` (String) The case of the letters in the password.
-- `num_digits` (Number) The number of digits in the password.
-- `num_symbols` (Number) The number of symbols in the password.
-- `seed` (String) Seed to generate the account's password.Cannot be updated.
-
-### Nested Schema for `spec.sharding_specs.template.system_accounts.secret_ref`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.quobyte`
Required:
-- `name` (String) The unique identifier of the secret.
-- `namespace` (String) The namespace where the secret is located.
-
-
-
-
-### Nested Schema for `spec.sharding_specs.template.user_resource_refs`
+- `registry` (String) registry represents a single or multiple Quobyte Registry servicesspecified as a string as host:port pair (multiple entries are separated with commas)which acts as the central registry for volumes
+- `volume` (String) volume is a string that references an already created Quobyte volume by name.
Optional:
-- `config_map_refs` (Attributes List) ConfigMapRefs defines the user-defined ConfigMaps. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--user_resource_refs--config_map_refs))
-- `secret_refs` (Attributes List) SecretRefs defines the user-defined Secrets. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--user_resource_refs--secret_refs))
+- `group` (String) group to map volume access toDefault is no group
+- `read_only` (Boolean) readOnly here will force the Quobyte volume to be mounted with read-only permissions.Defaults to false.
+- `tenant` (String) tenant owning the given Quobyte volume in the BackendUsed with dynamically provisioned Quobyte volumes, value is set by the plugin
+- `user` (String) user to map volume access toDefaults to serivceaccount user
-
-### Nested Schema for `spec.sharding_specs.template.user_resource_refs.config_map_refs`
+
+
+### Nested Schema for `spec.sharding_specs.template.volumes.rbd`
Required:
-- `config_map` (Attributes) ConfigMap specifies the ConfigMap to be mounted as a volume. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--user_resource_refs--config_map_refs--config_map))
-- `mount_point` (String) MountPoint is the filesystem path where the volume will be mounted.
-- `name` (String) Name is the name of the referenced ConfigMap or Secret object. It must conform to DNS label standards.
+- `image` (String) image is the rados image name.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `monitors` (List of String) monitors is a collection of Ceph monitors.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
Optional:
-- `as_volume_from` (List of String) AsVolumeFrom lists the names of containers in which the volume should be mounted.
-- `sub_path` (String) SubPath specifies a path within the volume from which to mount.
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#rbdTODO: how do we prevent errors in the filesystem from compromising the machine
+- `keyring` (String) keyring is the path to key ring for RBDUser.Default is /etc/ceph/keyring.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `pool` (String) pool is the rados pool name.Default is rbd.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `secret_ref` (Attributes) secretRef is name of the authentication secret for RBDUser. If providedoverrides keyring.Default is nil.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--rbd--secret_ref))
+- `user` (String) user is the rados user name.Default is admin.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
-
-### Nested Schema for `spec.sharding_specs.template.user_resource_refs.config_map_refs.config_map`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.rbd.secret_ref`
Optional:
-- `default_mode` (Number) defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
-- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--user_resource_refs--config_map_refs--config_map--items))
- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
-- `optional` (Boolean) optional specify whether the ConfigMap or its keys must be defined
-
-
-### Nested Schema for `spec.sharding_specs.template.user_resource_refs.config_map_refs.config_map.items`
-Required:
-- `key` (String) key is the key to project.
-- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
-Optional:
+
+### Nested Schema for `spec.sharding_specs.template.volumes.scale_io`
-- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+Required:
+- `gateway` (String) gateway is the host address of the ScaleIO API Gateway.
+- `secret_ref` (Attributes) secretRef references to the secret for ScaleIO user and othersensitive information. If this is not provided, Login operation will fail. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--scale_io--secret_ref))
+- `system` (String) system is the name of the storage system as configured in ScaleIO.
+Optional:
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'.Default is 'xfs'.
+- `protection_domain` (String) protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.
+- `read_only` (Boolean) readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+- `ssl_enabled` (Boolean) sslEnabled Flag enable/disable SSL communication with Gateway, default false
+- `storage_mode` (String) storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.Default is ThinProvisioned.
+- `storage_pool` (String) storagePool is the ScaleIO Storage Pool associated with the protection domain.
+- `volume_name` (String) volumeName is the name of a volume already created in the ScaleIO systemthat is associated with this volume source.
-
-### Nested Schema for `spec.sharding_specs.template.user_resource_refs.secret_refs`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.scale_io.secret_ref`
-Required:
+Optional:
-- `mount_point` (String) MountPoint is the filesystem path where the volume will be mounted.
-- `name` (String) Name is the name of the referenced ConfigMap or Secret object. It must conform to DNS label standards.
-- `secret` (Attributes) Secret specifies the Secret to be mounted as a volume. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--user_resource_refs--secret_refs--secret))
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
-Optional:
-- `as_volume_from` (List of String) AsVolumeFrom lists the names of containers in which the volume should be mounted.
-- `sub_path` (String) SubPath specifies a path within the volume from which to mount.
-
-### Nested Schema for `spec.sharding_specs.template.user_resource_refs.secret_refs.secret`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.secret`
Optional:
- `default_mode` (Number) defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
-- `items` (Attributes List) items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--user_resource_refs--secret_refs--secret--items))
+- `items` (Attributes List) items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--secret--items))
- `optional` (Boolean) optional field specify whether the Secret or its keys must be defined
- `secret_name` (String) secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
-
-### Nested Schema for `spec.sharding_specs.template.user_resource_refs.secret_refs.secret.items`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.secret.items`
Required:
@@ -4888,46 +6606,38 @@ Optional:
-
-
-
-### Nested Schema for `spec.sharding_specs.template.volume_claim_templates`
-
-Required:
-
-- `name` (String) Refers to the name of a volumeMount defined in either:- 'componentDefinition.spec.runtime.containers[*].volumeMounts'- 'clusterDefinition.spec.componentDefs[*].podSpec.containers[*].volumeMounts' (deprecated)The value of 'name' must match the 'name' field of a volumeMount specified in the corresponding 'volumeMounts' array.
+
+### Nested Schema for `spec.sharding_specs.template.volumes.storageos`
Optional:
-- `spec` (Attributes) Defines the desired characteristics of a PersistentVolumeClaim that will be created for the volumewith the mount name specified in the 'name' field.When a Pod is created for this ClusterComponent, a new PVC will be created based on the specificationdefined in the 'spec' field. The PVC will be associated with the volume mount specified by the 'name' field. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volume_claim_templates--spec))
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+- `secret_ref` (Attributes) secretRef specifies the secret to use for obtaining the StorageOS APIcredentials. If not specified, default values will be attempted. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volumes--storageos--secret_ref))
+- `volume_name` (String) volumeName is the human-readable name of the StorageOS volume. Volumenames are only unique within a namespace.
+- `volume_namespace` (String) volumeNamespace specifies the scope of the volume within StorageOS. If nonamespace is specified then the Pod's namespace will be used. This allows theKubernetes name scoping to be mirrored within StorageOS for tighter integration.Set VolumeName to any name to override the default behaviour.Set to 'default' if you are not using namespaces within StorageOS.Namespaces that do not pre-exist within StorageOS will be created.
-
-### Nested Schema for `spec.sharding_specs.template.volume_claim_templates.spec`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.storageos.secret_ref`
Optional:
-- `access_modes` (Map of String) Contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1.
-- `resources` (Attributes) Represents the minimum resources the volume should have.If the RecoverVolumeExpansionFailure feature is enabled, users are allowed to specify resource requirements thatare lower than the previous value but must still be higher than the capacity recorded in the status field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volume_claim_templates--spec--resources))
-- `storage_class_name` (String) The name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1.
-- `volume_mode` (String) Defines what type of volume is required by the claim, either Block or Filesystem.
-
-
-### Nested Schema for `spec.sharding_specs.template.volume_claim_templates.spec.resources`
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
-Optional:
-- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--sharding_specs--template--volume_claim_templates--spec--resources--claims))
-- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-
-### Nested Schema for `spec.sharding_specs.template.volume_claim_templates.spec.resources.claims`
+
+### Nested Schema for `spec.sharding_specs.template.volumes.vsphere_volume`
Required:
-- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.
+- `volume_path` (String) volumePath is the path that identifies vSphere volume vmdk
+Optional:
+- `fs_type` (String) fsType is filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `storage_policy_id` (String) storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.
+- `storage_policy_name` (String) storagePolicyName is the storage Policy Based Management (SPBM) profile name.
diff --git a/docs/data-sources/apps_kubeblocks_io_component_definition_v1alpha1_manifest.md b/docs/data-sources/apps_kubeblocks_io_component_definition_v1alpha1_manifest.md
index e3f35ce67..eee25706e 100644
--- a/docs/data-sources/apps_kubeblocks_io_component_definition_v1alpha1_manifest.md
+++ b/docs/data-sources/apps_kubeblocks_io_component_definition_v1alpha1_manifest.md
@@ -68,6 +68,7 @@ Optional:
- `log_configs` (Attributes List) Defines the types of logs generated by instances of the Component and their corresponding file paths.These logs can be collected for further analysis and monitoring.The 'logConfigs' field is an optional list of LogConfig objects, where each object representsa specific log type and its configuration.It allows you to specify multiple log types and their respective file paths for the Component.Examples:'''yaml logConfigs: - filePathPattern: /data/mysql/log/mysqld-error.log name: error - filePathPattern: /data/mysql/log/mysqld.log name: general - filePathPattern: /data/mysql/log/mysqld-slowquery.log name: slow'''This field is immutable. (see [below for nested schema](#nestedatt--spec--log_configs))
- `min_ready_seconds` (Number) 'minReadySeconds' is the minimum duration in seconds that a new Pod should remain in the readystate without any of its containers crashing to be considered available.This ensures the Pod's stability and readiness to serve requests.A default value of 0 seconds means the Pod is considered available as soon as it enters the ready state.
- `monitor` (Attributes) Deprecated since v0.9monitor is monitoring config which provided by provider. (see [below for nested schema](#nestedatt--spec--monitor))
+- `pod_management_policy` (String) InstanceSet controls the creation of pods during initial scale up, replacement of pods on nodes, and scaling down.- 'OrderedReady': Creates pods in increasing order (pod-0, then pod-1, etc). The controller waits until each podis ready before continuing. Pods are removed in reverse order when scaling down.- 'Parallel': Creates pods in parallel to match the desired scale without waiting. All pods are deleted at oncewhen scaling down.
- `policy_rules` (Attributes List) Defines the namespaced policy rules required by the Component.The 'policyRules' field is an array of 'rbacv1.PolicyRule' objects that define the policy rulesneeded by the Component to operate within a namespace.These policy rules determine the permissions and verbs the Component is allowed to perform onKubernetes resources within the namespace.The purpose of this field is to automatically generate the necessary RBAC rolesfor the Component based on the specified policy rules.This ensures that the Pods in the Component has appropriate permissions to function.Note: This field is currently non-functional and is reserved for future implementation.This field is immutable. (see [below for nested schema](#nestedatt--spec--policy_rules))
- `provider` (String) Specifies the name of the Component provider, typically the vendor or developer name.It identifies the entity responsible for creating and maintaining the Component.When specifying the provider name, consider the following guidelines:- Keep the name concise and relevant to the Component.- Use a consistent naming convention across Components from the same provider.- Avoid using trademarked or copyrighted names without proper permission.
- `replicas_limit` (Attributes) Defines the upper limit of the number of replicas supported by the Component.It defines the maximum number of replicas that can be created for the Component.This field allows you to set a limit on the scalability of the Component, preventing it from exceeding a certain number of replicas.This field is immutable. (see [below for nested schema](#nestedatt--spec--replicas_limit))
@@ -5423,7 +5424,7 @@ Required:
Optional:
-- `init_account` (Boolean) Indicates if this account is the unique system initialization account (e.g., MySQL root).Only one system initialization account is permitted.This field is immutable once set.
+- `init_account` (Boolean) Indicates if this account is a system initialization account (e.g., MySQL root).This field is immutable once set.
- `password_generation_policy` (Attributes) Specifies the policy for generating the account's password.This field is immutable once set. (see [below for nested schema](#nestedatt--spec--system_accounts--password_generation_policy))
- `secret_ref` (Attributes) Refers to the secret from which data will be copied to create the new account.This field is immutable once set. (see [below for nested schema](#nestedatt--spec--system_accounts--secret_ref))
- `statement` (String) Defines the statement used to create the account with the necessary privileges.This field is immutable once set.
diff --git a/docs/data-sources/apps_kubeblocks_io_component_v1alpha1_manifest.md b/docs/data-sources/apps_kubeblocks_io_component_v1alpha1_manifest.md
index c0a8d664e..b20c3f9bc 100644
--- a/docs/data-sources/apps_kubeblocks_io_component_v1alpha1_manifest.md
+++ b/docs/data-sources/apps_kubeblocks_io_component_v1alpha1_manifest.md
@@ -61,10 +61,13 @@ Required:
Optional:
- `affinity` (Attributes) Specifies a group of affinity scheduling rules for the Component.It allows users to control how the Component's Pods are scheduled onto nodes in the Cluster.Deprecated since v0.10, replaced by the 'schedulingPolicy' field. (see [below for nested schema](#nestedatt--spec--affinity))
-- `configs` (Attributes List) (see [below for nested schema](#nestedatt--spec--configs))
+- `annotations` (Map of String) Specifies Annotations to override or add for underlying Pods.
+- `configs` (Attributes List) Specifies the configuration content of a config template. (see [below for nested schema](#nestedatt--spec--configs))
- `disable_exporter` (Boolean) Determines whether metrics exporter information is annotated on the Component's headless Service.If set to true, the following annotations will not be patched into the Service:- 'monitor.kubeblocks.io/path'- 'monitor.kubeblocks.io/port'- 'monitor.kubeblocks.io/scheme'These annotations allow the Prometheus installed by KubeBlocks to discover and scrape metrics from the exporter.
- `enabled_logs` (List of String) Specifies which types of logs should be collected for the Cluster.The log types are defined in the 'componentDefinition.spec.logConfigs' field with the LogConfig entries.The elements in the 'enabledLogs' array correspond to the names of the LogConfig entries.For example, if the 'componentDefinition.spec.logConfigs' defines LogConfig entries withnames 'slow_query_log' and 'error_log',you can enable the collection of these logs by including their names in the 'enabledLogs' array:'''yamlenabledLogs:- slow_query_log- error_log'''
+- `env` (Attributes List) List of environment variables to add. (see [below for nested schema](#nestedatt--spec--env))
- `instances` (Attributes List) Allows for the customization of configuration values for each instance within a Component.An Instance represent a single replica (Pod and associated K8s resources like PVCs, Services, and ConfigMaps).While instances typically share a common configuration as defined in the ClusterComponentSpec,they can require unique settings in various scenarios:For example:- A database Component might require different resource allocations for primary and secondary instances, with primaries needing more resources.- During a rolling upgrade, a Component may first update the image for one or a few instances, and then update the remaining instances after verifying that the updated instances are functioning correctly.InstanceTemplate allows for specifying these unique configurations per instance.Each instance's name is constructed using the pattern: $(component.name)-$(template.name)-$(ordinal),starting with an ordinal of 0.It is crucial to maintain unique names for each InstanceTemplate to avoid conflicts.The sum of replicas across all InstanceTemplates should not exceed the total number of Replicas specified for the Component.Any remaining replicas will be generated using the default template and will follow the default naming rules. (see [below for nested schema](#nestedatt--spec--instances))
+- `labels` (Map of String) Specifies Labels to override or add for underlying Pods.
- `offline_instances` (List of String) Specifies the names of instances to be transitioned to offline status.Marking an instance as offline results in the following:1. The associated Pod is stopped, and its PersistentVolumeClaim (PVC) is retained for potential future reuse or data recovery, but it is no longer actively used.2. The ordinal number assigned to this instance is preserved, ensuring it remains unique and avoiding conflicts with new instances.Setting instances to offline allows for a controlled scale-in process, preserving their data and maintainingordinal consistency within the Cluster.Note that offline instances and their associated resources, such as PVCs, are not automatically deleted.The administrator must manually manage the cleanup and removal of these resources when they are no longer needed.
- `resources` (Attributes) Specifies the resources required by the Component.It allows defining the CPU, memory requirements and limits for the Component's containers. (see [below for nested schema](#nestedatt--spec--resources))
- `runtime_class_name` (String) Defines runtimeClassName for all Pods managed by this Component.
@@ -77,6 +80,7 @@ Optional:
- `tls_config` (Attributes) Specifies the TLS configuration for the Component, including:- A boolean flag that indicates whether the Component should use Transport Layer Security (TLS) for secure communication.- An optional field that specifies the configuration for the TLS certificates issuer when TLS is enabled. It allows defining the issuer name and the reference to the secret containing the TLS certificates and key. The secret should contain the CA certificate, TLS certificate, and private key in the specified keys. (see [below for nested schema](#nestedatt--spec--tls_config))
- `tolerations` (Attributes List) Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.Deprecated since v0.10, replaced by the 'schedulingPolicy' field. (see [below for nested schema](#nestedatt--spec--tolerations))
- `volume_claim_templates` (Attributes List) Specifies a list of PersistentVolumeClaim templates that define the storage requirements for the Component.Each template specifies the desired characteristics of a persistent volume, such as storage class,size, and access modes.These templates are used to dynamically provision persistent volumes for the Component. (see [below for nested schema](#nestedatt--spec--volume_claim_templates))
+- `volumes` (Attributes List) List of volumes to override. (see [below for nested schema](#nestedatt--spec--volumes))
### Nested Schema for `spec.affinity`
@@ -122,6 +126,81 @@ Optional:
+
+### Nested Schema for `spec.env`
+
+Required:
+
+- `name` (String) Name of the environment variable. Must be a C_IDENTIFIER.
+
+Optional:
+
+- `value` (String) Variable references $(VAR_NAME) are expandedusing the previously defined environment variables in the container andany service environment variables. If a variable cannot be resolved,the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.'$$(VAR_NAME)' will produce the string literal '$(VAR_NAME)'.Escaped references will never be expanded, regardless of whether the variableexists or not.Defaults to ''.
+- `value_from` (Attributes) Source for the environment variable's value. Cannot be used if value is not empty. (see [below for nested schema](#nestedatt--spec--env--value_from))
+
+
+### Nested Schema for `spec.env.value_from`
+
+Optional:
+
+- `config_map_key_ref` (Attributes) Selects a key of a ConfigMap. (see [below for nested schema](#nestedatt--spec--env--value_from--config_map_key_ref))
+- `field_ref` (Attributes) Selects a field of the pod: supports metadata.name, metadata.namespace, 'metadata.labels['']', 'metadata.annotations['']',spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs. (see [below for nested schema](#nestedatt--spec--env--value_from--field_ref))
+- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported. (see [below for nested schema](#nestedatt--spec--env--value_from--resource_field_ref))
+- `secret_key_ref` (Attributes) Selects a key of a secret in the pod's namespace (see [below for nested schema](#nestedatt--spec--env--value_from--secret_key_ref))
+
+
+### Nested Schema for `spec.env.value_from.config_map_key_ref`
+
+Required:
+
+- `key` (String) The key to select.
+
+Optional:
+
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+- `optional` (Boolean) Specify whether the ConfigMap or its key must be defined
+
+
+
+### Nested Schema for `spec.env.value_from.field_ref`
+
+Required:
+
+- `field_path` (String) Path of the field to select in the specified API version.
+
+Optional:
+
+- `api_version` (String) Version of the schema the FieldPath is written in terms of, defaults to 'v1'.
+
+
+
+### Nested Schema for `spec.env.value_from.resource_field_ref`
+
+Required:
+
+- `resource` (String) Required: resource to select
+
+Optional:
+
+- `container_name` (String) Container name: required for volumes, optional for env vars
+- `divisor` (String) Specifies the output format of the exposed resources, defaults to '1'
+
+
+
+### Nested Schema for `spec.env.value_from.secret_key_ref`
+
+Required:
+
+- `key` (String) The key of the secret to select from. Must be a valid secret key.
+
+Optional:
+
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+- `optional` (Boolean) Specify whether the Secret or its key must be defined
+
+
+
+
### Nested Schema for `spec.instances`
@@ -2204,3 +2283,781 @@ Optional:
Required:
- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.
+
+
+
+
+
+
+### Nested Schema for `spec.volumes`
+
+Required:
+
+- `name` (String) name of the volume.Must be a DNS_LABEL and unique within the pod.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+
+Optional:
+
+- `aws_elastic_block_store` (Attributes) awsElasticBlockStore represents an AWS Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore (see [below for nested schema](#nestedatt--spec--volumes--aws_elastic_block_store))
+- `azure_disk` (Attributes) azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--volumes--azure_disk))
+- `azure_file` (Attributes) azureFile represents an Azure File Service mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--volumes--azure_file))
+- `cephfs` (Attributes) cephFS represents a Ceph FS mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--volumes--cephfs))
+- `cinder` (Attributes) cinder represents a cinder volume attached and mounted on kubelets host machine.More info: https://examples.k8s.io/mysql-cinder-pd/README.md (see [below for nested schema](#nestedatt--spec--volumes--cinder))
+- `config_map` (Attributes) configMap represents a configMap that should populate this volume (see [below for nested schema](#nestedatt--spec--volumes--config_map))
+- `csi` (Attributes) csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature). (see [below for nested schema](#nestedatt--spec--volumes--csi))
+- `downward_api` (Attributes) downwardAPI represents downward API about the pod that should populate this volume (see [below for nested schema](#nestedatt--spec--volumes--downward_api))
+- `empty_dir` (Attributes) emptyDir represents a temporary directory that shares a pod's lifetime.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir (see [below for nested schema](#nestedatt--spec--volumes--empty_dir))
+- `ephemeral` (Attributes) ephemeral represents a volume that is handled by a cluster storage driver.The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,and deleted when the pod is removed.Use this if:a) the volume is only needed while the pod runs,b) features of normal volumes like restoring from snapshot or capacity tracking are needed,c) the storage driver is specified through a storage class, andd) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim).Use PersistentVolumeClaim or one of the vendor-specificAPIs for volumes that persist for longer than the lifecycleof an individual pod.Use CSI for light-weight local ephemeral volumes if the CSI driver is meant tobe used that way - see the documentation of the driver formore information.A pod can use both types of ephemeral volumes andpersistent volumes at the same time. (see [below for nested schema](#nestedatt--spec--volumes--ephemeral))
+- `fc` (Attributes) fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod. (see [below for nested schema](#nestedatt--spec--volumes--fc))
+- `flex_volume` (Attributes) flexVolume represents a generic volume resource that isprovisioned/attached using an exec based plugin. (see [below for nested schema](#nestedatt--spec--volumes--flex_volume))
+- `flocker` (Attributes) flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running (see [below for nested schema](#nestedatt--spec--volumes--flocker))
+- `gce_persistent_disk` (Attributes) gcePersistentDisk represents a GCE Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk (see [below for nested schema](#nestedatt--spec--volumes--gce_persistent_disk))
+- `git_repo` (Attributes) gitRepo represents a git repository at a particular revision.DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount anEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDirinto the Pod's container. (see [below for nested schema](#nestedatt--spec--volumes--git_repo))
+- `glusterfs` (Attributes) glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/glusterfs/README.md (see [below for nested schema](#nestedatt--spec--volumes--glusterfs))
+- `host_path` (Attributes) hostPath represents a pre-existing file or directory on the hostmachine that is directly exposed to the container. This is generallyused for system agents or other privileged things that are allowedto see the host machine. Most containers will NOT need this.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath---TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can notmount host directories as read/write. (see [below for nested schema](#nestedatt--spec--volumes--host_path))
+- `iscsi` (Attributes) iscsi represents an ISCSI Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://examples.k8s.io/volumes/iscsi/README.md (see [below for nested schema](#nestedatt--spec--volumes--iscsi))
+- `nfs` (Attributes) nfs represents an NFS mount on the host that shares a pod's lifetimeMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs (see [below for nested schema](#nestedatt--spec--volumes--nfs))
+- `persistent_volume_claim` (Attributes) persistentVolumeClaimVolumeSource represents a reference to aPersistentVolumeClaim in the same namespace.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims (see [below for nested schema](#nestedatt--spec--volumes--persistent_volume_claim))
+- `photon_persistent_disk` (Attributes) photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--volumes--photon_persistent_disk))
+- `portworx_volume` (Attributes) portworxVolume represents a portworx volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--volumes--portworx_volume))
+- `projected` (Attributes) projected items for all in one resources secrets, configmaps, and downward API (see [below for nested schema](#nestedatt--spec--volumes--projected))
+- `quobyte` (Attributes) quobyte represents a Quobyte mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--volumes--quobyte))
+- `rbd` (Attributes) rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/rbd/README.md (see [below for nested schema](#nestedatt--spec--volumes--rbd))
+- `scale_io` (Attributes) scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--volumes--scale_io))
+- `secret` (Attributes) secret represents a secret that should populate this volume.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret (see [below for nested schema](#nestedatt--spec--volumes--secret))
+- `storageos` (Attributes) storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--volumes--storageos))
+- `vsphere_volume` (Attributes) vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--volumes--vsphere_volume))
+
+
+### Nested Schema for `spec.volumes.aws_elastic_block_store`
+
+Required:
+
+- `volume_id` (String) volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+
+Optional:
+
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstoreTODO: how do we prevent errors in the filesystem from compromising the machine
+- `partition` (Number) partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).
+- `read_only` (Boolean) readOnly value true will force the readOnly setting in VolumeMounts.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+
+
+
+### Nested Schema for `spec.volumes.azure_disk`
+
+Required:
+
+- `disk_name` (String) diskName is the Name of the data disk in the blob storage
+- `disk_uri` (String) diskURI is the URI of data disk in the blob storage
+
+Optional:
+
+- `caching_mode` (String) cachingMode is the Host Caching mode: None, Read Only, Read Write.
+- `fs_type` (String) fsType is Filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `kind` (String) kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared
+- `read_only` (Boolean) readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+
+
+
+### Nested Schema for `spec.volumes.azure_file`
+
+Required:
+
+- `secret_name` (String) secretName is the name of secret that contains Azure Storage Account Name and Key
+- `share_name` (String) shareName is the azure share Name
+
+Optional:
+
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+
+
+
+### Nested Schema for `spec.volumes.cephfs`
+
+Required:
+
+- `monitors` (List of String) monitors is Required: Monitors is a collection of Ceph monitorsMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+
+Optional:
+
+- `path` (String) path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /
+- `read_only` (Boolean) readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `secret_file` (String) secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secretMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `secret_ref` (Attributes) secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--volumes--cephfs--secret_ref))
+- `user` (String) user is optional: User is the rados user name, default is adminMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+
+
+### Nested Schema for `spec.volumes.cephfs.secret_ref`
+
+Optional:
+
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+
+
+
+
+### Nested Schema for `spec.volumes.cinder`
+
+Required:
+
+- `volume_id` (String) volumeID used to identify the volume in cinder.More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+
+Optional:
+
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+- `secret_ref` (Attributes) secretRef is optional: points to a secret object containing parameters used to connectto OpenStack. (see [below for nested schema](#nestedatt--spec--volumes--cinder--secret_ref))
+
+
+### Nested Schema for `spec.volumes.cinder.secret_ref`
+
+Optional:
+
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+
+
+
+
+### Nested Schema for `spec.volumes.config_map`
+
+Optional:
+
+- `default_mode` (Number) defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--volumes--config_map--items))
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+- `optional` (Boolean) optional specify whether the ConfigMap or its keys must be defined
+
+
+### Nested Schema for `spec.volumes.config_map.items`
+
+Required:
+
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
+
+Optional:
+
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+
+
+
+
+### Nested Schema for `spec.volumes.csi`
+
+Required:
+
+- `driver` (String) driver is the name of the CSI driver that handles this volume.Consult with your admin for the correct name as registered in the cluster.
+
+Optional:
+
+- `fs_type` (String) fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'.If not provided, the empty value is passed to the associated CSI driverwhich will determine the default filesystem to apply.
+- `node_publish_secret_ref` (Attributes) nodePublishSecretRef is a reference to the secret object containingsensitive information to pass to the CSI driver to complete the CSINodePublishVolume and NodeUnpublishVolume calls.This field is optional, and may be empty if no secret is required. If thesecret object contains more than one secret, all secret references are passed. (see [below for nested schema](#nestedatt--spec--volumes--csi--node_publish_secret_ref))
+- `read_only` (Boolean) readOnly specifies a read-only configuration for the volume.Defaults to false (read/write).
+- `volume_attributes` (Map of String) volumeAttributes stores driver-specific properties that are passed to the CSIdriver. Consult your driver's documentation for supported values.
+
+
+### Nested Schema for `spec.volumes.csi.node_publish_secret_ref`
+
+Optional:
+
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+
+
+
+
+### Nested Schema for `spec.volumes.downward_api`
+
+Optional:
+
+- `default_mode` (Number) Optional: mode bits to use on created files by default. Must be aOptional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) Items is a list of downward API volume file (see [below for nested schema](#nestedatt--spec--volumes--downward_api--items))
+
+
+### Nested Schema for `spec.volumes.downward_api.items`
+
+Required:
+
+- `path` (String) Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'
+
+Optional:
+
+- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name and namespace are supported. (see [below for nested schema](#nestedatt--spec--volumes--downward_api--items--field_ref))
+- `mode` (Number) Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported. (see [below for nested schema](#nestedatt--spec--volumes--downward_api--items--resource_field_ref))
+
+
+### Nested Schema for `spec.volumes.downward_api.items.field_ref`
+
+Required:
+
+- `field_path` (String) Path of the field to select in the specified API version.
+
+Optional:
+
+- `api_version` (String) Version of the schema the FieldPath is written in terms of, defaults to 'v1'.
+
+
+
+### Nested Schema for `spec.volumes.downward_api.items.resource_field_ref`
+
+Required:
+
+- `resource` (String) Required: resource to select
+
+Optional:
+
+- `container_name` (String) Container name: required for volumes, optional for env vars
+- `divisor` (String) Specifies the output format of the exposed resources, defaults to '1'
+
+
+
+
+
+### Nested Schema for `spec.volumes.empty_dir`
+
+Optional:
+
+- `medium` (String) medium represents what type of storage medium should back this directory.The default is '' which means to use the node's default medium.Must be an empty string (default) or Memory.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
+- `size_limit` (String) sizeLimit is the total amount of local storage required for this EmptyDir volume.The size limit is also applicable for memory medium.The maximum usage on memory medium EmptyDir would be the minimum value betweenthe SizeLimit specified here and the sum of memory limits of all containers in a pod.The default is nil which means that the limit is undefined.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
+
+
+
+### Nested Schema for `spec.volumes.ephemeral`
+
+Optional:
+
+- `volume_claim_template` (Attributes) Will be used to create a stand-alone PVC to provision the volume.The pod in which this EphemeralVolumeSource is embedded will be theowner of the PVC, i.e. the PVC will be deleted together with thepod. The name of the PVC will be '-' where'' is the name from the 'PodSpec.Volumes' arrayentry. Pod validation will reject the pod if the concatenated nameis not valid for a PVC (for example, too long).An existing PVC with that name that is not owned by the podwill *not* be used for the pod to avoid using an unrelatedvolume by mistake. Starting the pod is then blocked untilthe unrelated PVC is removed. If such a pre-created PVC ismeant to be used by the pod, the PVC has to updated with anowner reference to the pod once the pod exists. Normallythis should not be necessary, but it may be useful whenmanually reconstructing a broken cluster.This field is read-only and no changes will be made by Kubernetesto the PVC after it has been created.Required, must not be nil. (see [below for nested schema](#nestedatt--spec--volumes--ephemeral--volume_claim_template))
+
+
+### Nested Schema for `spec.volumes.ephemeral.volume_claim_template`
+
+Required:
+
+- `spec` (Attributes) The specification for the PersistentVolumeClaim. The entire content iscopied unchanged into the PVC that gets created from thistemplate. The same fields as in a PersistentVolumeClaimare also valid here. (see [below for nested schema](#nestedatt--spec--volumes--ephemeral--volume_claim_template--spec))
+
+Optional:
+
+- `metadata` (Attributes) May contain labels and annotations that will be copied into the PVCwhen creating it. No other fields are allowed and will be rejected duringvalidation. (see [below for nested schema](#nestedatt--spec--volumes--ephemeral--volume_claim_template--metadata))
+
+
+### Nested Schema for `spec.volumes.ephemeral.volume_claim_template.spec`
+
+Optional:
+
+- `access_modes` (List of String) accessModes contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
+- `data_source` (Attributes) dataSource field can be used to specify either:* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)* An existing PVC (PersistentVolumeClaim)If the provisioner or an external controller can support the specified data source,it will create a new volume based on the contents of the specified data source.When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.If the namespace is specified, then dataSourceRef will not be copied to dataSource. (see [below for nested schema](#nestedatt--spec--volumes--ephemeral--volume_claim_template--spec--data_source))
+- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-emptyvolume is desired. This may be any object from a non-empty API group (noncore object) or a PersistentVolumeClaim object.When this field is specified, volume binding will only succeed if the type ofthe specified object matches some installed volume populator or dynamicprovisioner.This field will replace the functionality of the dataSource field and as suchif both fields are non-empty, they must have the same value. For backwardscompatibility, when namespace isn't specified in dataSourceRef,both fields (dataSource and dataSourceRef) will be set to the samevalue automatically if one of them is empty and the other is non-empty.When namespace is specified in dataSourceRef,dataSource isn't set to the same value and must be empty.There are three important differences between dataSource and dataSourceRef:* While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects.* While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified.* While dataSource only allows local objects, dataSourceRef allows objects in any namespaces.(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--volumes--ephemeral--volume_claim_template--spec--data_source_ref))
+- `resources` (Attributes) resources represents the minimum resources the volume should have.If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirementsthat are lower than previous value but must still be higher than capacity recorded in thestatus field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources (see [below for nested schema](#nestedatt--spec--volumes--ephemeral--volume_claim_template--spec--resources))
+- `selector` (Attributes) selector is a label query over volumes to consider for binding. (see [below for nested schema](#nestedatt--spec--volumes--ephemeral--volume_claim_template--spec--selector))
+- `storage_class_name` (String) storageClassName is the name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
+- `volume_mode` (String) volumeMode defines what type of volume is required by the claim.Value of Filesystem is implied when not included in claim spec.
+- `volume_name` (String) volumeName is the binding reference to the PersistentVolume backing this claim.
+
+
+### Nested Schema for `spec.volumes.ephemeral.volume_claim_template.spec.data_source`
+
+Required:
+
+- `kind` (String) Kind is the type of resource being referenced
+- `name` (String) Name is the name of resource being referenced
+
+Optional:
+
+- `api_group` (String) APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.
+
+
+
+### Nested Schema for `spec.volumes.ephemeral.volume_claim_template.spec.data_source_ref`
+
+Required:
+
+- `kind` (String) Kind is the type of resource being referenced
+- `name` (String) Name is the name of resource being referenced
+
+Optional:
+
+- `api_group` (String) APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.
+- `namespace` (String) Namespace is the namespace of resource being referencedNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.
+
+
+
+### Nested Schema for `spec.volumes.ephemeral.volume_claim_template.spec.resources`
+
+Optional:
+
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--volumes--ephemeral--volume_claim_template--spec--resources--claims))
+- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+### Nested Schema for `spec.volumes.ephemeral.volume_claim_template.spec.resources.claims`
+
+Required:
+
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.
+
+
+
+
+### Nested Schema for `spec.volumes.ephemeral.volume_claim_template.spec.selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--volumes--ephemeral--volume_claim_template--spec--selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.volumes.ephemeral.volume_claim_template.spec.selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+
+
+
+
+
+### Nested Schema for `spec.volumes.ephemeral.volume_claim_template.metadata`
+
+Optional:
+
+- `annotations` (Map of String)
+- `finalizers` (List of String)
+- `labels` (Map of String)
+- `name` (String)
+- `namespace` (String)
+
+
+
+
+
+### Nested Schema for `spec.volumes.fc`
+
+Optional:
+
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.TODO: how do we prevent errors in the filesystem from compromising the machine
+- `lun` (Number) lun is Optional: FC target lun number
+- `read_only` (Boolean) readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+- `target_ww_ns` (List of String) targetWWNs is Optional: FC target worldwide names (WWNs)
+- `wwids` (List of String) wwids Optional: FC volume world wide identifiers (wwids)Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.
+
+
+
+### Nested Schema for `spec.volumes.flex_volume`
+
+Required:
+
+- `driver` (String) driver is the name of the driver to use for this volume.
+
+Optional:
+
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.
+- `options` (Map of String) options is Optional: this field holds extra command options if any.
+- `read_only` (Boolean) readOnly is Optional: defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+- `secret_ref` (Attributes) secretRef is Optional: secretRef is reference to the secret object containingsensitive information to pass to the plugin scripts. This may beempty if no secret object is specified. If the secret objectcontains more than one secret, all secrets are passed to the pluginscripts. (see [below for nested schema](#nestedatt--spec--volumes--flex_volume--secret_ref))
+
+
+### Nested Schema for `spec.volumes.flex_volume.secret_ref`
+
+Optional:
+
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+
+
+
+
+### Nested Schema for `spec.volumes.flocker`
+
+Optional:
+
+- `dataset_name` (String) datasetName is Name of the dataset stored as metadata -> name on the dataset for Flockershould be considered as deprecated
+- `dataset_uuid` (String) datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset
+
+
+
+### Nested Schema for `spec.volumes.gce_persistent_disk`
+
+Required:
+
+- `pd_name` (String) pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+
+Optional:
+
+- `fs_type` (String) fsType is filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskTODO: how do we prevent errors in the filesystem from compromising the machine
+- `partition` (Number) partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+
+
+
+### Nested Schema for `spec.volumes.git_repo`
+
+Required:
+
+- `repository` (String) repository is the URL
+
+Optional:
+
+- `directory` (String) directory is the target directory name.Must not contain or start with '..'. If '.' is supplied, the volume directory will be thegit repository. Otherwise, if specified, the volume will contain the git repository inthe subdirectory with the given name.
+- `revision` (String) revision is the commit hash for the specified revision.
+
+
+
+### Nested Schema for `spec.volumes.glusterfs`
+
+Required:
+
+- `endpoints` (String) endpoints is the endpoint name that details Glusterfs topology.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+- `path` (String) path is the Glusterfs volume path.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+
+Optional:
+
+- `read_only` (Boolean) readOnly here will force the Glusterfs volume to be mounted with read-only permissions.Defaults to false.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+
+
+
+### Nested Schema for `spec.volumes.host_path`
+
+Required:
+
+- `path` (String) path of the directory on the host.If the path is a symlink, it will follow the link to the real path.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+
+Optional:
+
+- `type` (String) type for HostPath VolumeDefaults to ''More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+
+
+
+### Nested Schema for `spec.volumes.iscsi`
+
+Required:
+
+- `iqn` (String) iqn is the target iSCSI Qualified Name.
+- `lun` (Number) lun represents iSCSI Target Lun number.
+- `target_portal` (String) targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).
+
+Optional:
+
+- `chap_auth_discovery` (Boolean) chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication
+- `chap_auth_session` (Boolean) chapAuthSession defines whether support iSCSI Session CHAP authentication
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsiTODO: how do we prevent errors in the filesystem from compromising the machine
+- `initiator_name` (String) initiatorName is the custom iSCSI Initiator Name.If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface: will be created for the connection.
+- `iscsi_interface` (String) iscsiInterface is the interface Name that uses an iSCSI transport.Defaults to 'default' (tcp).
+- `portals` (List of String) portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.
+- `secret_ref` (Attributes) secretRef is the CHAP Secret for iSCSI target and initiator authentication (see [below for nested schema](#nestedatt--spec--volumes--iscsi--secret_ref))
+
+
+### Nested Schema for `spec.volumes.iscsi.secret_ref`
+
+Optional:
+
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+
+
+
+
+### Nested Schema for `spec.volumes.nfs`
+
+Required:
+
+- `path` (String) path that is exported by the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+- `server` (String) server is the hostname or IP address of the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+
+Optional:
+
+- `read_only` (Boolean) readOnly here will force the NFS export to be mounted with read-only permissions.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+
+
+
+### Nested Schema for `spec.volumes.persistent_volume_claim`
+
+Required:
+
+- `claim_name` (String) claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+
+Optional:
+
+- `read_only` (Boolean) readOnly Will force the ReadOnly setting in VolumeMounts.Default false.
+
+
+
+### Nested Schema for `spec.volumes.photon_persistent_disk`
+
+Required:
+
+- `pd_id` (String) pdID is the ID that identifies Photon Controller persistent disk
+
+Optional:
+
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+
+
+
+### Nested Schema for `spec.volumes.portworx_volume`
+
+Required:
+
+- `volume_id` (String) volumeID uniquely identifies a Portworx volume
+
+Optional:
+
+- `fs_type` (String) fSType represents the filesystem type to mountMust be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+
+
+
+### Nested Schema for `spec.volumes.projected`
+
+Optional:
+
+- `default_mode` (Number) defaultMode are the mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `sources` (Attributes List) sources is the list of volume projections (see [below for nested schema](#nestedatt--spec--volumes--projected--sources))
+
+
+### Nested Schema for `spec.volumes.projected.sources`
+
+Optional:
+
+- `config_map` (Attributes) configMap information about the configMap data to project (see [below for nested schema](#nestedatt--spec--volumes--projected--sources--config_map))
+- `downward_api` (Attributes) downwardAPI information about the downwardAPI data to project (see [below for nested schema](#nestedatt--spec--volumes--projected--sources--downward_api))
+- `secret` (Attributes) secret information about the secret data to project (see [below for nested schema](#nestedatt--spec--volumes--projected--sources--secret))
+- `service_account_token` (Attributes) serviceAccountToken is information about the serviceAccountToken data to project (see [below for nested schema](#nestedatt--spec--volumes--projected--sources--service_account_token))
+
+
+### Nested Schema for `spec.volumes.projected.sources.config_map`
+
+Optional:
+
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--volumes--projected--sources--config_map--items))
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+- `optional` (Boolean) optional specify whether the ConfigMap or its keys must be defined
+
+
+### Nested Schema for `spec.volumes.projected.sources.config_map.items`
+
+Required:
+
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
+
+Optional:
+
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+
+
+
+
+### Nested Schema for `spec.volumes.projected.sources.downward_api`
+
+Optional:
+
+- `items` (Attributes List) Items is a list of DownwardAPIVolume file (see [below for nested schema](#nestedatt--spec--volumes--projected--sources--downward_api--items))
+
+
+### Nested Schema for `spec.volumes.projected.sources.downward_api.items`
+
+Required:
+
+- `path` (String) Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'
+
+Optional:
+
+- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name and namespace are supported. (see [below for nested schema](#nestedatt--spec--volumes--projected--sources--downward_api--items--field_ref))
+- `mode` (Number) Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported. (see [below for nested schema](#nestedatt--spec--volumes--projected--sources--downward_api--items--resource_field_ref))
+
+
+### Nested Schema for `spec.volumes.projected.sources.downward_api.items.field_ref`
+
+Required:
+
+- `field_path` (String) Path of the field to select in the specified API version.
+
+Optional:
+
+- `api_version` (String) Version of the schema the FieldPath is written in terms of, defaults to 'v1'.
+
+
+
+### Nested Schema for `spec.volumes.projected.sources.downward_api.items.resource_field_ref`
+
+Required:
+
+- `resource` (String) Required: resource to select
+
+Optional:
+
+- `container_name` (String) Container name: required for volumes, optional for env vars
+- `divisor` (String) Specifies the output format of the exposed resources, defaults to '1'
+
+
+
+
+
+### Nested Schema for `spec.volumes.projected.sources.secret`
+
+Optional:
+
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--volumes--projected--sources--secret--items))
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+- `optional` (Boolean) optional field specify whether the Secret or its key must be defined
+
+
+### Nested Schema for `spec.volumes.projected.sources.secret.items`
+
+Required:
+
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
+
+Optional:
+
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+
+
+
+
+### Nested Schema for `spec.volumes.projected.sources.service_account_token`
+
+Required:
+
+- `path` (String) path is the path relative to the mount point of the file to project thetoken into.
+
+Optional:
+
+- `audience` (String) audience is the intended audience of the token. A recipient of a tokenmust identify itself with an identifier specified in the audience of thetoken, and otherwise should reject the token. The audience defaults to theidentifier of the apiserver.
+- `expiration_seconds` (Number) expirationSeconds is the requested duration of validity of the serviceaccount token. As the token approaches expiration, the kubelet volumeplugin will proactively rotate the service account token. The kubelet willstart trying to rotate the token if the token is older than 80 percent ofits time to live or if the token is older than 24 hours.Defaults to 1 hourand must be at least 10 minutes.
+
+
+
+
+
+### Nested Schema for `spec.volumes.quobyte`
+
+Required:
+
+- `registry` (String) registry represents a single or multiple Quobyte Registry servicesspecified as a string as host:port pair (multiple entries are separated with commas)which acts as the central registry for volumes
+- `volume` (String) volume is a string that references an already created Quobyte volume by name.
+
+Optional:
+
+- `group` (String) group to map volume access toDefault is no group
+- `read_only` (Boolean) readOnly here will force the Quobyte volume to be mounted with read-only permissions.Defaults to false.
+- `tenant` (String) tenant owning the given Quobyte volume in the BackendUsed with dynamically provisioned Quobyte volumes, value is set by the plugin
+- `user` (String) user to map volume access toDefaults to serivceaccount user
+
+
+
+### Nested Schema for `spec.volumes.rbd`
+
+Required:
+
+- `image` (String) image is the rados image name.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `monitors` (List of String) monitors is a collection of Ceph monitors.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+
+Optional:
+
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#rbdTODO: how do we prevent errors in the filesystem from compromising the machine
+- `keyring` (String) keyring is the path to key ring for RBDUser.Default is /etc/ceph/keyring.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `pool` (String) pool is the rados pool name.Default is rbd.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `secret_ref` (Attributes) secretRef is name of the authentication secret for RBDUser. If providedoverrides keyring.Default is nil.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--volumes--rbd--secret_ref))
+- `user` (String) user is the rados user name.Default is admin.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+
+
+### Nested Schema for `spec.volumes.rbd.secret_ref`
+
+Optional:
+
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+
+
+
+
+### Nested Schema for `spec.volumes.scale_io`
+
+Required:
+
+- `gateway` (String) gateway is the host address of the ScaleIO API Gateway.
+- `secret_ref` (Attributes) secretRef references to the secret for ScaleIO user and othersensitive information. If this is not provided, Login operation will fail. (see [below for nested schema](#nestedatt--spec--volumes--scale_io--secret_ref))
+- `system` (String) system is the name of the storage system as configured in ScaleIO.
+
+Optional:
+
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'.Default is 'xfs'.
+- `protection_domain` (String) protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.
+- `read_only` (Boolean) readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+- `ssl_enabled` (Boolean) sslEnabled Flag enable/disable SSL communication with Gateway, default false
+- `storage_mode` (String) storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.Default is ThinProvisioned.
+- `storage_pool` (String) storagePool is the ScaleIO Storage Pool associated with the protection domain.
+- `volume_name` (String) volumeName is the name of a volume already created in the ScaleIO systemthat is associated with this volume source.
+
+
+### Nested Schema for `spec.volumes.scale_io.secret_ref`
+
+Optional:
+
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+
+
+
+
+### Nested Schema for `spec.volumes.secret`
+
+Optional:
+
+- `default_mode` (Number) defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--volumes--secret--items))
+- `optional` (Boolean) optional field specify whether the Secret or its keys must be defined
+- `secret_name` (String) secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
+
+
+### Nested Schema for `spec.volumes.secret.items`
+
+Required:
+
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
+
+Optional:
+
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+
+
+
+
+### Nested Schema for `spec.volumes.storageos`
+
+Optional:
+
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+- `secret_ref` (Attributes) secretRef specifies the secret to use for obtaining the StorageOS APIcredentials. If not specified, default values will be attempted. (see [below for nested schema](#nestedatt--spec--volumes--storageos--secret_ref))
+- `volume_name` (String) volumeName is the human-readable name of the StorageOS volume. Volumenames are only unique within a namespace.
+- `volume_namespace` (String) volumeNamespace specifies the scope of the volume within StorageOS. If nonamespace is specified then the Pod's namespace will be used. This allows theKubernetes name scoping to be mirrored within StorageOS for tighter integration.Set VolumeName to any name to override the default behaviour.Set to 'default' if you are not using namespaces within StorageOS.Namespaces that do not pre-exist within StorageOS will be created.
+
+
+### Nested Schema for `spec.volumes.storageos.secret_ref`
+
+Optional:
+
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?
+
+
+
+
+### Nested Schema for `spec.volumes.vsphere_volume`
+
+Required:
+
+- `volume_path` (String) volumePath is the path that identifies vSphere volume vmdk
+
+Optional:
+
+- `fs_type` (String) fsType is filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `storage_policy_id` (String) storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.
+- `storage_policy_name` (String) storagePolicyName is the storage Policy Based Management (SPBM) profile name.
diff --git a/docs/data-sources/apps_stateful_set_v1_manifest.md b/docs/data-sources/apps_stateful_set_v1_manifest.md
index 9ada66342..91edbe179 100644
--- a/docs/data-sources/apps_stateful_set_v1_manifest.md
+++ b/docs/data-sources/apps_stateful_set_v1_manifest.md
@@ -3580,7 +3580,63 @@ Optional:
Optional:
+- `api_version` (String) APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
+- `kind` (String) Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+- `metadata` (Attributes) ObjectMeta is metadata that all persisted resources must have, which includes all objects users must create. (see [below for nested schema](#nestedatt--spec--volume_claim_templates--metadata))
- `spec` (Attributes) PersistentVolumeClaimSpec describes the common attributes of storage devices and allows a Source for provider-specific attributes (see [below for nested schema](#nestedatt--spec--volume_claim_templates--spec))
+- `status` (Attributes) PersistentVolumeClaimStatus is the current status of a persistent volume claim. (see [below for nested schema](#nestedatt--spec--volume_claim_templates--status))
+
+
+### Nested Schema for `spec.volume_claim_templates.metadata`
+
+Optional:
+
+- `annotations` (Map of String) Annotations is an unstructured key value map stored with a resource that may be set by external tools to store and retrieve arbitrary metadata. They are not queryable and should be preserved when modifying objects. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations
+- `creation_timestamp` (String) Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON. Wrappers are provided for many of the factory methods that the time package offers.
+- `deletion_grace_period_seconds` (Number) Number of seconds allowed for this object to gracefully terminate before it will be removed from the system. Only set when deletionTimestamp is also set. May only be shortened. Read-only.
+- `deletion_timestamp` (String) Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON. Wrappers are provided for many of the factory methods that the time package offers.
+- `finalizers` (List of String) Must be empty before the object is deleted from the registry. Each entry is an identifier for the responsible component that will remove the entry from the list. If the deletionTimestamp of the object is non-nil, entries in this list can only be removed. Finalizers may be processed and removed in any order. Order is NOT enforced because it introduces significant risk of stuck finalizers. finalizers is a shared field, any actor with permission can reorder it. If the finalizer list is processed in order, then this can lead to a situation in which the component responsible for the first finalizer in the list is waiting for a signal (field value, external system, or other) produced by a component responsible for a finalizer later in the list, resulting in a deadlock. Without enforced ordering finalizers are free to order amongst themselves and are not vulnerable to ordering changes in the list.
+- `generate_name` (String) GenerateName is an optional prefix, used by the server, to generate a unique name ONLY IF the Name field has not been provided. If this field is used, the name returned to the client will be different than the name passed. This value will also be combined with a unique suffix. The provided value has the same validation rules as the Name field, and may be truncated by the length of the suffix required to make the value unique on the server.If this field is specified and the generated name exists, the server will return a 409.Applied only if Name is not specified. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#idempotency
+- `generation` (Number) A sequence number representing a specific generation of the desired state. Populated by the system. Read-only.
+- `labels` (Map of String) Map of string keys and values that can be used to organize and categorize (scope and select) objects. May match selectors of replication controllers and services. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels
+- `managed_fields` (Attributes List) ManagedFields maps workflow-id and version to the set of fields that are managed by that workflow. This is mostly for internal housekeeping, and users typically shouldn't need to set or understand this field. A workflow can be the user's name, a controller's name, or the name of a specific apply path like 'ci-cd'. The set of fields is always in the version that the workflow used when modifying the object. (see [below for nested schema](#nestedatt--spec--volume_claim_templates--metadata--managed_fields))
+- `name` (String) Name must be unique within a namespace. Is required when creating resources, although some resources may allow a client to request the generation of an appropriate name automatically. Name is primarily intended for creation idempotence and configuration definition. Cannot be updated. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names#names
+- `namespace` (String) Namespace defines the space within which each name must be unique. An empty namespace is equivalent to the 'default' namespace, but 'default' is the canonical representation. Not all objects are required to be scoped to a namespace - the value of this field for those objects will be empty.Must be a DNS_LABEL. Cannot be updated. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces
+- `owner_references` (Attributes List) List of objects depended by this object. If ALL objects in the list have been deleted, this object will be garbage collected. If this object is managed by a controller, then an entry in this list will point to this controller, with the controller field set to true. There cannot be more than one managing controller. (see [below for nested schema](#nestedatt--spec--volume_claim_templates--metadata--owner_references))
+- `resource_version` (String) An opaque value that represents the internal version of this object that can be used by clients to determine when objects have changed. May be used for optimistic concurrency, change detection, and the watch operation on a resource or set of resources. Clients must treat these values as opaque and passed unmodified back to the server. They may only be valid for a particular resource or set of resources.Populated by the system. Read-only. Value must be treated as opaque by clients and . More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency
+- `self_link` (String) Deprecated: selfLink is a legacy read-only field that is no longer populated by the system.
+- `uid` (String) UID is the unique in time and space value for this object. It is typically generated by the server on successful creation of a resource and is not allowed to change on PUT operations.Populated by the system. Read-only. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names#uids
+
+
+### Nested Schema for `spec.volume_claim_templates.metadata.managed_fields`
+
+Optional:
+
+- `api_version` (String) APIVersion defines the version of this resource that this field set applies to. The format is 'group/version' just like the top-level APIVersion field. It is necessary to track the version of a field set because it cannot be automatically converted.
+- `fields_type` (String) FieldsType is the discriminator for the different fields format and version. There is currently only one possible value: 'FieldsV1'
+- `fields_v1` (Map of String) FieldsV1 stores a set of fields in a data structure like a Trie, in JSON format.Each key is either a '.' representing the field itself, and will always map to an empty set, or a string representing a sub-field or item. The string will follow one of these four formats: 'f:', where is the name of a field in a struct, or key in a map 'v:', where is the exact json formatted value of a list item 'i:', where is position of a item in a list 'k:', where is a map of a list item's key fields to their unique values If a key maps to an empty Fields value, the field that key represents is part of the set.The exact format is defined in sigs.k8s.io/structured-merge-diff
+- `manager` (String) Manager is an identifier of the workflow managing these fields.
+- `operation` (String) Operation is the type of operation which lead to this ManagedFieldsEntry being created. The only valid values for this field are 'Apply' and 'Update'.
+- `subresource` (String) Subresource is the name of the subresource used to update that object, or empty string if the object was updated through the main resource. The value of this field is used to distinguish between managers, even if they share the same name. For example, a status update will be distinct from a regular update using the same manager name. Note that the APIVersion field is not related to the Subresource field and it always corresponds to the version of the main resource.
+- `time` (String) Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON. Wrappers are provided for many of the factory methods that the time package offers.
+
+
+
+### Nested Schema for `spec.volume_claim_templates.metadata.owner_references`
+
+Required:
+
+- `api_version` (String) API version of the referent.
+- `kind` (String) Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+- `name` (String) Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names#names
+- `uid` (String) UID of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names#uids
+
+Optional:
+
+- `block_owner_deletion` (Boolean) If true, AND if the owner has the 'foregroundDeletion' finalizer, then the owner cannot be deleted from the key-value store until this reference is removed. See https://kubernetes.io/docs/concepts/architecture/garbage-collection/#foreground-deletion for how the garbage collector interacts with this field and enforces the foreground deletion. Defaults to false. To set this field, a user needs 'delete' permission of the owner, otherwise 422 (Unprocessable Entity) will be returned.
+- `controller` (Boolean) If true, this reference points to the managing controller.
+
+
### Nested Schema for `spec.volume_claim_templates.spec`
@@ -3652,3 +3708,47 @@ Required:
Optional:
- `values` (List of String) values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.
+
+
+
+
+
+### Nested Schema for `spec.volume_claim_templates.status`
+
+Optional:
+
+- `access_modes` (List of String) accessModes contains the actual access modes the volume backing the PVC has. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
+- `allocated_resource_statuses` (Map of String) allocatedResourceStatuses stores status of resource being resized for the given PVC. Key names follow standard Kubernetes label syntax. Valid values are either: * Un-prefixed keys: - storage - the capacity of the volume. * Custom resources must use implementation-defined prefixed names such as 'example.com/my-custom-resource'Apart from above values - keys that are unprefixed or have kubernetes.io prefix are considered reserved and hence may not be used.ClaimResourceStatus can be in any of following states: - ControllerResizeInProgress: State set when resize controller starts resizing the volume in control-plane. - ControllerResizeFailed: State set when resize has failed in resize controller with a terminal error. - NodeResizePending: State set when resize controller has finished resizing the volume but further resizing of volume is needed on the node. - NodeResizeInProgress: State set when kubelet starts resizing the volume. - NodeResizeFailed: State set when resizing has failed in kubelet with a terminal error. Transient errors don't set NodeResizeFailed.For example: if expanding a PVC for more capacity - this field can be one of the following states: - pvc.status.allocatedResourceStatus['storage'] = 'ControllerResizeInProgress' - pvc.status.allocatedResourceStatus['storage'] = 'ControllerResizeFailed' - pvc.status.allocatedResourceStatus['storage'] = 'NodeResizePending' - pvc.status.allocatedResourceStatus['storage'] = 'NodeResizeInProgress' - pvc.status.allocatedResourceStatus['storage'] = 'NodeResizeFailed'When this field is not set, it means that no resize operation is in progress for the given PVC.A controller that receives PVC update with previously unknown resourceName or ClaimResourceStatus should ignore the update for the purpose it was designed. For example - a controller that only is responsible for resizing capacity of the volume, should ignore PVC updates that change other valid resources associated with PVC.This is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.
+- `allocated_resources` (Map of String) allocatedResources tracks the resources allocated to a PVC including its capacity. Key names follow standard Kubernetes label syntax. Valid values are either: * Un-prefixed keys: - storage - the capacity of the volume. * Custom resources must use implementation-defined prefixed names such as 'example.com/my-custom-resource'Apart from above values - keys that are unprefixed or have kubernetes.io prefix are considered reserved and hence may not be used.Capacity reported here may be larger than the actual capacity when a volume expansion operation is requested. For storage quota, the larger value from allocatedResources and PVC.spec.resources is used. If allocatedResources is not set, PVC.spec.resources alone is used for quota calculation. If a volume expansion capacity request is lowered, allocatedResources is only lowered if there are no expansion operations in progress and if the actual volume capacity is equal or lower than the requested capacity.A controller that receives PVC update with previously unknown resourceName should ignore the update for the purpose it was designed. For example - a controller that only is responsible for resizing capacity of the volume, should ignore PVC updates that change other valid resources associated with PVC.This is an alpha field and requires enabling RecoverVolumeExpansionFailure feature.
+- `capacity` (Map of String) capacity represents the actual resources of the underlying volume.
+- `conditions` (Attributes List) conditions is the current Condition of persistent volume claim. If underlying persistent volume is being resized then the Condition will be set to 'Resizing'. (see [below for nested schema](#nestedatt--spec--volume_claim_templates--status--conditions))
+- `current_volume_attributes_class_name` (String) currentVolumeAttributesClassName is the current name of the VolumeAttributesClass the PVC is using. When unset, there is no VolumeAttributeClass applied to this PersistentVolumeClaim This is an alpha field and requires enabling VolumeAttributesClass feature.
+- `modify_volume_status` (Attributes) ModifyVolumeStatus represents the status object of ControllerModifyVolume operation (see [below for nested schema](#nestedatt--spec--volume_claim_templates--status--modify_volume_status))
+- `phase` (String) phase represents the current phase of PersistentVolumeClaim.
+
+
+### Nested Schema for `spec.volume_claim_templates.status.conditions`
+
+Required:
+
+- `status` (String)
+- `type` (String)
+
+Optional:
+
+- `last_probe_time` (String) Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON. Wrappers are provided for many of the factory methods that the time package offers.
+- `last_transition_time` (String) Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON. Wrappers are provided for many of the factory methods that the time package offers.
+- `message` (String) message is the human-readable message indicating details about last transition.
+- `reason` (String) reason is a unique, this should be a short, machine understandable string that gives the reason for condition's last transition. If it reports 'Resizing' that means the underlying persistent volume is being resized.
+
+
+
+### Nested Schema for `spec.volume_claim_templates.status.modify_volume_status`
+
+Required:
+
+- `status` (String) status is the status of the ControllerModifyVolume operation. It can be in any of following states: - Pending Pending indicates that the PersistentVolumeClaim cannot be modified due to unmet requirements, such as the specified VolumeAttributesClass not existing. - InProgress InProgress indicates that the volume is being modified. - Infeasible Infeasible indicates that the request has been rejected as invalid by the CSI driver. To resolve the error, a valid VolumeAttributesClass needs to be specified.Note: New statuses can be added in the future. Consumers should check for unknown statuses and fail appropriately.
+
+Optional:
+
+- `target_volume_attributes_class_name` (String) targetVolumeAttributesClassName is the name of the VolumeAttributesClass the PVC currently being reconciled
diff --git a/docs/data-sources/camel_apache_org_integration_platform_v1_manifest.md b/docs/data-sources/camel_apache_org_integration_platform_v1_manifest.md
index 54c1449e4..6da59e131 100644
--- a/docs/data-sources/camel_apache_org_integration_platform_v1_manifest.md
+++ b/docs/data-sources/camel_apache_org_integration_platform_v1_manifest.md
@@ -539,6 +539,8 @@ Optional:
- `host` (String) To configure the host exposed by the ingress.
- `path` (String) To configure the path exposed by the ingress (default '/').
- `path_type` (String) To configure the path type exposed by the ingress. One of 'Exact', 'Prefix', 'ImplementationSpecific' (default to 'Prefix').
+- `tls_hosts` (List of String) To configure tls hosts
+- `tls_secret_name` (String) To configure tls secret name
@@ -645,6 +647,7 @@ Optional:
- `max_scale` (Number) An upper bound for the number of Pods that can be running in parallel for the integration. Knative has its own cap value that depends on the installation. Refer to the Knative documentation for more information.
- `min_scale` (Number) The minimum number of Pods that should be running at any time for the integration. It's **zero** by default, meaning that the integration is scaled down to zero when not used for a configured amount of time. Refer to the Knative documentation for more information.
- `rollout_duration` (String) Enables to gradually shift traffic to the latest Revision and sets the rollout duration. It's disabled by default and must be expressed as a Golang 'time.Duration' string representation, rounded to a second precision.
+- `timeout_seconds` (Number) The maximum duration in seconds that the request instance is allowed to respond to a request. This field propagates to the integration pod's terminationGracePeriodSeconds Refer to the Knative documentation for more information.
- `visibility` (String) Setting 'cluster-local', Knative service becomes a private service. Specifically, this option applies the 'networking.knative.dev/visibility' label to Knative service. Refer to the Knative documentation for more information.
diff --git a/docs/data-sources/camel_apache_org_integration_profile_v1_manifest.md b/docs/data-sources/camel_apache_org_integration_profile_v1_manifest.md
index 78a1e94db..bcd6d2181 100644
--- a/docs/data-sources/camel_apache_org_integration_profile_v1_manifest.md
+++ b/docs/data-sources/camel_apache_org_integration_profile_v1_manifest.md
@@ -504,6 +504,8 @@ Optional:
- `host` (String) To configure the host exposed by the ingress.
- `path` (String) To configure the path exposed by the ingress (default '/').
- `path_type` (String) To configure the path type exposed by the ingress. One of 'Exact', 'Prefix', 'ImplementationSpecific' (default to 'Prefix').
+- `tls_hosts` (List of String) To configure tls hosts
+- `tls_secret_name` (String) To configure tls secret name
@@ -610,6 +612,7 @@ Optional:
- `max_scale` (Number) An upper bound for the number of Pods that can be running in parallel for the integration. Knative has its own cap value that depends on the installation. Refer to the Knative documentation for more information.
- `min_scale` (Number) The minimum number of Pods that should be running at any time for the integration. It's **zero** by default, meaning that the integration is scaled down to zero when not used for a configured amount of time. Refer to the Knative documentation for more information.
- `rollout_duration` (String) Enables to gradually shift traffic to the latest Revision and sets the rollout duration. It's disabled by default and must be expressed as a Golang 'time.Duration' string representation, rounded to a second precision.
+- `timeout_seconds` (Number) The maximum duration in seconds that the request instance is allowed to respond to a request. This field propagates to the integration pod's terminationGracePeriodSeconds Refer to the Knative documentation for more information.
- `visibility` (String) Setting 'cluster-local', Knative service becomes a private service. Specifically, this option applies the 'networking.knative.dev/visibility' label to Knative service. Refer to the Knative documentation for more information.
diff --git a/docs/data-sources/camel_apache_org_integration_v1_manifest.md b/docs/data-sources/camel_apache_org_integration_v1_manifest.md
index 94bde49f6..35f15c633 100644
--- a/docs/data-sources/camel_apache_org_integration_v1_manifest.md
+++ b/docs/data-sources/camel_apache_org_integration_v1_manifest.md
@@ -3065,6 +3065,8 @@ Optional:
- `host` (String) To configure the host exposed by the ingress.
- `path` (String) To configure the path exposed by the ingress (default '/').
- `path_type` (String) To configure the path type exposed by the ingress. One of 'Exact', 'Prefix', 'ImplementationSpecific' (default to 'Prefix').
+- `tls_hosts` (List of String) To configure tls hosts
+- `tls_secret_name` (String) To configure tls secret name
@@ -3171,6 +3173,7 @@ Optional:
- `max_scale` (Number) An upper bound for the number of Pods that can be running in parallel for the integration. Knative has its own cap value that depends on the installation. Refer to the Knative documentation for more information.
- `min_scale` (Number) The minimum number of Pods that should be running at any time for the integration. It's **zero** by default, meaning that the integration is scaled down to zero when not used for a configured amount of time. Refer to the Knative documentation for more information.
- `rollout_duration` (String) Enables to gradually shift traffic to the latest Revision and sets the rollout duration. It's disabled by default and must be expressed as a Golang 'time.Duration' string representation, rounded to a second precision.
+- `timeout_seconds` (Number) The maximum duration in seconds that the request instance is allowed to respond to a request. This field propagates to the integration pod's terminationGracePeriodSeconds Refer to the Knative documentation for more information.
- `visibility` (String) Setting 'cluster-local', Knative service becomes a private service. Specifically, this option applies the 'networking.knative.dev/visibility' label to Knative service. Refer to the Knative documentation for more information.
diff --git a/docs/data-sources/camel_apache_org_kamelet_binding_v1alpha1_manifest.md b/docs/data-sources/camel_apache_org_kamelet_binding_v1alpha1_manifest.md
index cb79ba83a..6cf4d3db6 100644
--- a/docs/data-sources/camel_apache_org_kamelet_binding_v1alpha1_manifest.md
+++ b/docs/data-sources/camel_apache_org_kamelet_binding_v1alpha1_manifest.md
@@ -3078,6 +3078,8 @@ Optional:
- `host` (String) To configure the host exposed by the ingress.
- `path` (String) To configure the path exposed by the ingress (default '/').
- `path_type` (String) To configure the path type exposed by the ingress. One of 'Exact', 'Prefix', 'ImplementationSpecific' (default to 'Prefix').
+- `tls_hosts` (List of String) To configure tls hosts
+- `tls_secret_name` (String) To configure tls secret name
@@ -3184,6 +3186,7 @@ Optional:
- `max_scale` (Number) An upper bound for the number of Pods that can be running in parallel for the integration. Knative has its own cap value that depends on the installation. Refer to the Knative documentation for more information.
- `min_scale` (Number) The minimum number of Pods that should be running at any time for the integration. It's **zero** by default, meaning that the integration is scaled down to zero when not used for a configured amount of time. Refer to the Knative documentation for more information.
- `rollout_duration` (String) Enables to gradually shift traffic to the latest Revision and sets the rollout duration. It's disabled by default and must be expressed as a Golang 'time.Duration' string representation, rounded to a second precision.
+- `timeout_seconds` (Number) The maximum duration in seconds that the request instance is allowed to respond to a request. This field propagates to the integration pod's terminationGracePeriodSeconds Refer to the Knative documentation for more information.
- `visibility` (String) Setting 'cluster-local', Knative service becomes a private service. Specifically, this option applies the 'networking.knative.dev/visibility' label to Knative service. Refer to the Knative documentation for more information.
diff --git a/docs/data-sources/camel_apache_org_pipe_v1_manifest.md b/docs/data-sources/camel_apache_org_pipe_v1_manifest.md
index 4e4b94267..0f595dade 100644
--- a/docs/data-sources/camel_apache_org_pipe_v1_manifest.md
+++ b/docs/data-sources/camel_apache_org_pipe_v1_manifest.md
@@ -3078,6 +3078,8 @@ Optional:
- `host` (String) To configure the host exposed by the ingress.
- `path` (String) To configure the path exposed by the ingress (default '/').
- `path_type` (String) To configure the path type exposed by the ingress. One of 'Exact', 'Prefix', 'ImplementationSpecific' (default to 'Prefix').
+- `tls_hosts` (List of String) To configure tls hosts
+- `tls_secret_name` (String) To configure tls secret name
@@ -3184,6 +3186,7 @@ Optional:
- `max_scale` (Number) An upper bound for the number of Pods that can be running in parallel for the integration. Knative has its own cap value that depends on the installation. Refer to the Knative documentation for more information.
- `min_scale` (Number) The minimum number of Pods that should be running at any time for the integration. It's **zero** by default, meaning that the integration is scaled down to zero when not used for a configured amount of time. Refer to the Knative documentation for more information.
- `rollout_duration` (String) Enables to gradually shift traffic to the latest Revision and sets the rollout duration. It's disabled by default and must be expressed as a Golang 'time.Duration' string representation, rounded to a second precision.
+- `timeout_seconds` (Number) The maximum duration in seconds that the request instance is allowed to respond to a request. This field propagates to the integration pod's terminationGracePeriodSeconds Refer to the Knative documentation for more information.
- `visibility` (String) Setting 'cluster-local', Knative service becomes a private service. Specifically, this option applies the 'networking.knative.dev/visibility' label to Knative service. Refer to the Knative documentation for more information.
diff --git a/docs/data-sources/canaries_flanksource_com_canary_v1_manifest.md b/docs/data-sources/canaries_flanksource_com_canary_v1_manifest.md
index ed689b1bd..8019563c5 100644
--- a/docs/data-sources/canaries_flanksource_com_canary_v1_manifest.md
+++ b/docs/data-sources/canaries_flanksource_com_canary_v1_manifest.md
@@ -5150,6 +5150,7 @@ Optional:
- `template_body` (Boolean) Template the request body
- `test` (Attributes) (see [below for nested schema](#nestedatt--spec--http--test))
- `threshold_millis` (Number) Maximum duration in milliseconds for the HTTP request. It will fail the check if it takes longer.
+- `tls_config` (Attributes) TLS Config (see [below for nested schema](#nestedatt--spec--http--tls_config))
- `transform` (Attributes) (see [below for nested schema](#nestedatt--spec--http--transform))
- `transform_delete_strategy` (String) Transformed checks have a delete strategy on deletion they can either be marked healthy, unhealthy or left as is
- `url` (String) Connection url, interpolated with username,password
@@ -5574,6 +5575,189 @@ Optional:
- `template` (String)
+
+### Nested Schema for `spec.http.tls_config`
+
+Optional:
+
+- `ca` (Attributes) PEM encoded certificate of the CA to verify the server certificate (see [below for nested schema](#nestedatt--spec--http--tls_config--ca))
+- `cert` (Attributes) PEM encoded client certificate (see [below for nested schema](#nestedatt--spec--http--tls_config--cert))
+- `handshake_timeout` (Number) HandshakeTimeout defaults to 10 seconds
+- `insecure_skip_verify` (Boolean) InsecureSkipVerify controls whether a client verifies the server'scertificate chain and host name
+- `key` (Attributes) PEM encoded client private key (see [below for nested schema](#nestedatt--spec--http--tls_config--key))
+
+
+### Nested Schema for `spec.http.tls_config.ca`
+
+Optional:
+
+- `name` (String)
+- `value` (String)
+- `value_from` (Attributes) (see [below for nested schema](#nestedatt--spec--http--tls_config--ca--value_from))
+
+
+### Nested Schema for `spec.http.tls_config.ca.value_from`
+
+Optional:
+
+- `config_map_key_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--http--tls_config--ca--value_from--config_map_key_ref))
+- `helm_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--http--tls_config--ca--value_from--helm_ref))
+- `secret_key_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--http--tls_config--ca--value_from--secret_key_ref))
+- `service_account` (String) ServiceAccount specifies the service account whose token should be fetched
+
+
+### Nested Schema for `spec.http.tls_config.ca.value_from.config_map_key_ref`
+
+Required:
+
+- `key` (String)
+
+Optional:
+
+- `name` (String)
+
+
+
+### Nested Schema for `spec.http.tls_config.ca.value_from.helm_ref`
+
+Required:
+
+- `key` (String) Key is a JSONPath expression used to fetch the key from the merged JSON.
+
+Optional:
+
+- `name` (String)
+
+
+
+### Nested Schema for `spec.http.tls_config.ca.value_from.secret_key_ref`
+
+Required:
+
+- `key` (String)
+
+Optional:
+
+- `name` (String)
+
+
+
+
+
+### Nested Schema for `spec.http.tls_config.cert`
+
+Optional:
+
+- `name` (String)
+- `value` (String)
+- `value_from` (Attributes) (see [below for nested schema](#nestedatt--spec--http--tls_config--cert--value_from))
+
+
+### Nested Schema for `spec.http.tls_config.cert.value_from`
+
+Optional:
+
+- `config_map_key_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--http--tls_config--cert--value_from--config_map_key_ref))
+- `helm_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--http--tls_config--cert--value_from--helm_ref))
+- `secret_key_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--http--tls_config--cert--value_from--secret_key_ref))
+- `service_account` (String) ServiceAccount specifies the service account whose token should be fetched
+
+
+### Nested Schema for `spec.http.tls_config.cert.value_from.config_map_key_ref`
+
+Required:
+
+- `key` (String)
+
+Optional:
+
+- `name` (String)
+
+
+
+### Nested Schema for `spec.http.tls_config.cert.value_from.helm_ref`
+
+Required:
+
+- `key` (String) Key is a JSONPath expression used to fetch the key from the merged JSON.
+
+Optional:
+
+- `name` (String)
+
+
+
+### Nested Schema for `spec.http.tls_config.cert.value_from.secret_key_ref`
+
+Required:
+
+- `key` (String)
+
+Optional:
+
+- `name` (String)
+
+
+
+
+
+### Nested Schema for `spec.http.tls_config.key`
+
+Optional:
+
+- `name` (String)
+- `value` (String)
+- `value_from` (Attributes) (see [below for nested schema](#nestedatt--spec--http--tls_config--key--value_from))
+
+
+### Nested Schema for `spec.http.tls_config.key.value_from`
+
+Optional:
+
+- `config_map_key_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--http--tls_config--key--value_from--config_map_key_ref))
+- `helm_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--http--tls_config--key--value_from--helm_ref))
+- `secret_key_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--http--tls_config--key--value_from--secret_key_ref))
+- `service_account` (String) ServiceAccount specifies the service account whose token should be fetched
+
+
+### Nested Schema for `spec.http.tls_config.key.value_from.config_map_key_ref`
+
+Required:
+
+- `key` (String)
+
+Optional:
+
+- `name` (String)
+
+
+
+### Nested Schema for `spec.http.tls_config.key.value_from.helm_ref`
+
+Required:
+
+- `key` (String) Key is a JSONPath expression used to fetch the key from the merged JSON.
+
+Optional:
+
+- `name` (String)
+
+
+
+### Nested Schema for `spec.http.tls_config.key.value_from.secret_key_ref`
+
+Required:
+
+- `key` (String)
+
+Optional:
+
+- `name` (String)
+
+
+
+
+
### Nested Schema for `spec.http.transform`
diff --git a/docs/data-sources/ceph_rook_io_ceph_block_pool_v1_manifest.md b/docs/data-sources/ceph_rook_io_ceph_block_pool_v1_manifest.md
index a55abd98d..f0e1dfa99 100644
--- a/docs/data-sources/ceph_rook_io_ceph_block_pool_v1_manifest.md
+++ b/docs/data-sources/ceph_rook_io_ceph_block_pool_v1_manifest.md
@@ -57,6 +57,7 @@ Optional:
- `compression_mode` (String) DEPRECATED: use Parameters instead, e.g., Parameters['compression_mode'] = 'force'The inline compression mode in Bluestore OSD to set to (options are: none, passive, aggressive, force)Do NOT set a default value for kubebuilder as this will override the Parameters
- `crush_root` (String) The root of the crush hierarchy utilized by the pool
- `device_class` (String) The device class the OSD should set to for use in the pool
+- `enable_crush_updates` (Boolean) Allow rook operator to change the pool CRUSH tunables once the pool is created
- `enable_rbd_stats` (Boolean) EnableRBDStats is used to enable gathering of statistics for all RBD images in the pool
- `erasure_coded` (Attributes) The erasure code settings (see [below for nested schema](#nestedatt--spec--erasure_coded))
- `failure_domain` (String) The failure domain: osd/host/(region or zone if available) - technically also any type in the crush map
diff --git a/docs/data-sources/ceph_rook_io_ceph_filesystem_v1_manifest.md b/docs/data-sources/ceph_rook_io_ceph_filesystem_v1_manifest.md
index 2ea494634..a51abe18d 100644
--- a/docs/data-sources/ceph_rook_io_ceph_filesystem_v1_manifest.md
+++ b/docs/data-sources/ceph_rook_io_ceph_filesystem_v1_manifest.md
@@ -79,6 +79,7 @@ Optional:
- `compression_mode` (String) DEPRECATED: use Parameters instead, e.g., Parameters['compression_mode'] = 'force'The inline compression mode in Bluestore OSD to set to (options are: none, passive, aggressive, force)Do NOT set a default value for kubebuilder as this will override the Parameters
- `crush_root` (String) The root of the crush hierarchy utilized by the pool
- `device_class` (String) The device class the OSD should set to for use in the pool
+- `enable_crush_updates` (Boolean) Allow rook operator to change the pool CRUSH tunables once the pool is created
- `enable_rbd_stats` (Boolean) EnableRBDStats is used to enable gathering of statistics for all RBD images in the pool
- `erasure_coded` (Attributes) The erasure code settings (see [below for nested schema](#nestedatt--spec--data_pools--erasure_coded))
- `failure_domain` (String) The failure domain: osd/host/(region or zone if available) - technically also any type in the crush map
@@ -194,6 +195,7 @@ Optional:
- `compression_mode` (String) DEPRECATED: use Parameters instead, e.g., Parameters['compression_mode'] = 'force'The inline compression mode in Bluestore OSD to set to (options are: none, passive, aggressive, force)Do NOT set a default value for kubebuilder as this will override the Parameters
- `crush_root` (String) The root of the crush hierarchy utilized by the pool
- `device_class` (String) The device class the OSD should set to for use in the pool
+- `enable_crush_updates` (Boolean) Allow rook operator to change the pool CRUSH tunables once the pool is created
- `enable_rbd_stats` (Boolean) EnableRBDStats is used to enable gathering of statistics for all RBD images in the pool
- `erasure_coded` (Attributes) The erasure code settings (see [below for nested schema](#nestedatt--spec--metadata_pool--erasure_coded))
- `failure_domain` (String) The failure domain: osd/host/(region or zone if available) - technically also any type in the crush map
diff --git a/docs/data-sources/ceph_rook_io_ceph_object_store_v1_manifest.md b/docs/data-sources/ceph_rook_io_ceph_object_store_v1_manifest.md
index 54d00af85..0dee96554 100644
--- a/docs/data-sources/ceph_rook_io_ceph_object_store_v1_manifest.md
+++ b/docs/data-sources/ceph_rook_io_ceph_object_store_v1_manifest.md
@@ -73,6 +73,7 @@ Optional:
- `compression_mode` (String) DEPRECATED: use Parameters instead, e.g., Parameters['compression_mode'] = 'force'The inline compression mode in Bluestore OSD to set to (options are: none, passive, aggressive, force)Do NOT set a default value for kubebuilder as this will override the Parameters
- `crush_root` (String) The root of the crush hierarchy utilized by the pool
- `device_class` (String) The device class the OSD should set to for use in the pool
+- `enable_crush_updates` (Boolean) Allow rook operator to change the pool CRUSH tunables once the pool is created
- `enable_rbd_stats` (Boolean) EnableRBDStats is used to enable gathering of statistics for all RBD images in the pool
- `erasure_coded` (Attributes) The erasure code settings (see [below for nested schema](#nestedatt--spec--data_pool--erasure_coded))
- `failure_domain` (String) The failure domain: osd/host/(region or zone if available) - technically also any type in the crush map
@@ -861,6 +862,7 @@ Optional:
- `compression_mode` (String) DEPRECATED: use Parameters instead, e.g., Parameters['compression_mode'] = 'force'The inline compression mode in Bluestore OSD to set to (options are: none, passive, aggressive, force)Do NOT set a default value for kubebuilder as this will override the Parameters
- `crush_root` (String) The root of the crush hierarchy utilized by the pool
- `device_class` (String) The device class the OSD should set to for use in the pool
+- `enable_crush_updates` (Boolean) Allow rook operator to change the pool CRUSH tunables once the pool is created
- `enable_rbd_stats` (Boolean) EnableRBDStats is used to enable gathering of statistics for all RBD images in the pool
- `erasure_coded` (Attributes) The erasure code settings (see [below for nested schema](#nestedatt--spec--metadata_pool--erasure_coded))
- `failure_domain` (String) The failure domain: osd/host/(region or zone if available) - technically also any type in the crush map
diff --git a/docs/data-sources/ceph_rook_io_ceph_object_zone_v1_manifest.md b/docs/data-sources/ceph_rook_io_ceph_object_zone_v1_manifest.md
index 360a72fe6..195993f79 100644
--- a/docs/data-sources/ceph_rook_io_ceph_object_zone_v1_manifest.md
+++ b/docs/data-sources/ceph_rook_io_ceph_object_zone_v1_manifest.md
@@ -76,6 +76,7 @@ Optional:
- `compression_mode` (String) DEPRECATED: use Parameters instead, e.g., Parameters['compression_mode'] = 'force'The inline compression mode in Bluestore OSD to set to (options are: none, passive, aggressive, force)Do NOT set a default value for kubebuilder as this will override the Parameters
- `crush_root` (String) The root of the crush hierarchy utilized by the pool
- `device_class` (String) The device class the OSD should set to for use in the pool
+- `enable_crush_updates` (Boolean) Allow rook operator to change the pool CRUSH tunables once the pool is created
- `enable_rbd_stats` (Boolean) EnableRBDStats is used to enable gathering of statistics for all RBD images in the pool
- `erasure_coded` (Attributes) The erasure code settings (see [below for nested schema](#nestedatt--spec--data_pool--erasure_coded))
- `failure_domain` (String) The failure domain: osd/host/(region or zone if available) - technically also any type in the crush map
@@ -190,6 +191,7 @@ Optional:
- `compression_mode` (String) DEPRECATED: use Parameters instead, e.g., Parameters['compression_mode'] = 'force'The inline compression mode in Bluestore OSD to set to (options are: none, passive, aggressive, force)Do NOT set a default value for kubebuilder as this will override the Parameters
- `crush_root` (String) The root of the crush hierarchy utilized by the pool
- `device_class` (String) The device class the OSD should set to for use in the pool
+- `enable_crush_updates` (Boolean) Allow rook operator to change the pool CRUSH tunables once the pool is created
- `enable_rbd_stats` (Boolean) EnableRBDStats is used to enable gathering of statistics for all RBD images in the pool
- `erasure_coded` (Attributes) The erasure code settings (see [below for nested schema](#nestedatt--spec--metadata_pool--erasure_coded))
- `failure_domain` (String) The failure domain: osd/host/(region or zone if available) - technically also any type in the crush map
diff --git a/docs/data-sources/cert_manager_io_cluster_issuer_v1_manifest.md b/docs/data-sources/cert_manager_io_cluster_issuer_v1_manifest.md
index ae0bc1314..bd5513f6a 100644
--- a/docs/data-sources/cert_manager_io_cluster_issuer_v1_manifest.md
+++ b/docs/data-sources/cert_manager_io_cluster_issuer_v1_manifest.md
@@ -988,6 +988,7 @@ Optional:
Optional:
- `app_role` (Attributes) AppRole authenticates with Vault using the App Role auth mechanism,with the role and secret stored in a Kubernetes Secret resource. (see [below for nested schema](#nestedatt--spec--vault--auth--app_role))
+- `client_certificate` (Attributes) ClientCertificate authenticates with Vault by presenting a clientcertificate during the request's TLS handshake.Works only when using HTTPS protocol. (see [below for nested schema](#nestedatt--spec--vault--auth--client_certificate))
- `kubernetes` (Attributes) Kubernetes authenticates with Vault by passing the ServiceAccounttoken stored in the named Secret resource to the Vault server. (see [below for nested schema](#nestedatt--spec--vault--auth--kubernetes))
- `token_secret_ref` (Attributes) TokenSecretRef authenticates with Vault by presenting a token. (see [below for nested schema](#nestedatt--spec--vault--auth--token_secret_ref))
@@ -1013,6 +1014,16 @@ Optional:
+
+### Nested Schema for `spec.vault.auth.client_certificate`
+
+Optional:
+
+- `mount_path` (String) The Vault mountPath here is the mount path to use when authenticating withVault. For example, setting a value to '/v1/auth/foo', will use the path'/v1/auth/foo/login' to authenticate with Vault. If unspecified, thedefault value '/v1/auth/cert' will be used.
+- `name` (String) Name of the certificate role to authenticate against.If not set, matching any certificate role, if available.
+- `secret_name` (String) Reference to Kubernetes Secret of type 'kubernetes.io/tls' (hence containingtls.crt and tls.key) used to authenticate to Vault using TLS clientauthentication.
+
+
### Nested Schema for `spec.vault.auth.kubernetes`
diff --git a/docs/data-sources/cert_manager_io_issuer_v1_manifest.md b/docs/data-sources/cert_manager_io_issuer_v1_manifest.md
index b1d8c2643..3e1c1023a 100644
--- a/docs/data-sources/cert_manager_io_issuer_v1_manifest.md
+++ b/docs/data-sources/cert_manager_io_issuer_v1_manifest.md
@@ -990,6 +990,7 @@ Optional:
Optional:
- `app_role` (Attributes) AppRole authenticates with Vault using the App Role auth mechanism,with the role and secret stored in a Kubernetes Secret resource. (see [below for nested schema](#nestedatt--spec--vault--auth--app_role))
+- `client_certificate` (Attributes) ClientCertificate authenticates with Vault by presenting a clientcertificate during the request's TLS handshake.Works only when using HTTPS protocol. (see [below for nested schema](#nestedatt--spec--vault--auth--client_certificate))
- `kubernetes` (Attributes) Kubernetes authenticates with Vault by passing the ServiceAccounttoken stored in the named Secret resource to the Vault server. (see [below for nested schema](#nestedatt--spec--vault--auth--kubernetes))
- `token_secret_ref` (Attributes) TokenSecretRef authenticates with Vault by presenting a token. (see [below for nested schema](#nestedatt--spec--vault--auth--token_secret_ref))
@@ -1015,6 +1016,16 @@ Optional:
+
+### Nested Schema for `spec.vault.auth.client_certificate`
+
+Optional:
+
+- `mount_path` (String) The Vault mountPath here is the mount path to use when authenticating withVault. For example, setting a value to '/v1/auth/foo', will use the path'/v1/auth/foo/login' to authenticate with Vault. If unspecified, thedefault value '/v1/auth/cert' will be used.
+- `name` (String) Name of the certificate role to authenticate against.If not set, matching any certificate role, if available.
+- `secret_name` (String) Reference to Kubernetes Secret of type 'kubernetes.io/tls' (hence containingtls.crt and tls.key) used to authenticate to Vault using TLS clientauthentication.
+
+
### Nested Schema for `spec.vault.auth.kubernetes`
diff --git a/docs/data-sources/chainsaw_kyverno_io_configuration_v1alpha2_manifest.md b/docs/data-sources/chainsaw_kyverno_io_configuration_v1alpha2_manifest.md
index 7077c0bc7..650a36756 100644
--- a/docs/data-sources/chainsaw_kyverno_io_configuration_v1alpha2_manifest.md
+++ b/docs/data-sources/chainsaw_kyverno_io_configuration_v1alpha2_manifest.md
@@ -114,38 +114,65 @@ Optional:
Optional:
+- `apply` (Attributes) Apply represents resources that should be applied for this test step. This can include thingslike configuration settings or any other resources that need to be available during the test. (see [below for nested schema](#nestedatt--spec--error--catch--apply))
+- `assert` (Attributes) Assert represents an assertion to be made. It checks whether the conditions specified in the assertion hold true. (see [below for nested schema](#nestedatt--spec--error--catch--assert))
+- `bindings` (Attributes List) Bindings defines additional binding key/values. (see [below for nested schema](#nestedatt--spec--error--catch--bindings))
+- `cluster` (String) Cluster defines the target cluster (default cluster will be used if not specified and/or overridden).
+- `clusters` (Attributes) Clusters holds a registry to clusters to support multi-cluster tests. (see [below for nested schema](#nestedatt--spec--error--catch--clusters))
- `command` (Attributes) Command defines a command to run. (see [below for nested schema](#nestedatt--spec--error--catch--command))
+- `create` (Attributes) Create represents a creation operation. (see [below for nested schema](#nestedatt--spec--error--catch--create))
- `delete` (Attributes) Delete represents a deletion operation. (see [below for nested schema](#nestedatt--spec--error--catch--delete))
- `describe` (Attributes) Describe determines the resource describe collector to execute. (see [below for nested schema](#nestedatt--spec--error--catch--describe))
- `description` (String) Description contains a description of the operation.
+- `error` (Attributes) Error represents the expected errors for this test step. If any of these errors occur, the testwill consider them as expected; otherwise, they will be treated as test failures. (see [below for nested schema](#nestedatt--spec--error--catch--error))
- `events` (Attributes) Events determines the events collector to execute. (see [below for nested schema](#nestedatt--spec--error--catch--events))
- `get` (Attributes) Get determines the resource get collector to execute. (see [below for nested schema](#nestedatt--spec--error--catch--get))
+- `outputs` (Attributes List) Outputs defines output bindings. (see [below for nested schema](#nestedatt--spec--error--catch--outputs))
+- `patch` (Attributes) Patch represents a patch operation. (see [below for nested schema](#nestedatt--spec--error--catch--patch))
- `pod_logs` (Attributes) PodLogs determines the pod logs collector to execute. (see [below for nested schema](#nestedatt--spec--error--catch--pod_logs))
- `script` (Attributes) Script defines a script to run. (see [below for nested schema](#nestedatt--spec--error--catch--script))
- `sleep` (Attributes) Sleep defines zzzz. (see [below for nested schema](#nestedatt--spec--error--catch--sleep))
+- `update` (Attributes) Update represents an update operation. (see [below for nested schema](#nestedatt--spec--error--catch--update))
- `wait` (Attributes) Wait determines the resource wait collector to execute. (see [below for nested schema](#nestedatt--spec--error--catch--wait))
-
-### Nested Schema for `spec.error.catch.command`
+
+### Nested Schema for `spec.error.catch.apply`
+
+Optional:
+
+- `dry_run` (Boolean) DryRun determines whether the file should be applied in dry run mode.
+- `expect` (Attributes List) Expect defines a list of matched checks to validate the operation outcome. (see [below for nested schema](#nestedatt--spec--error--catch--apply--expect))
+- `file` (String) File is the path to the referenced file. This can be a direct path to a fileor an expression that matches multiple files, such as 'manifest/*.yaml' for all YAMLfiles within the 'manifest' directory.
+- `resource` (Map of String) Resource provides a resource to be applied.
+- `template` (Boolean) Template determines whether resources should be considered for templating.
+- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
+
+
+### Nested Schema for `spec.error.catch.apply.expect`
Required:
-- `entrypoint` (String) Entrypoint is the command entry point to run.
+- `check` (Map of String) Check defines the verification statement.
Optional:
-- `args` (List of String) Args is the command arguments.
-- `bindings` (Attributes List) Bindings defines additional binding key/values. (see [below for nested schema](#nestedatt--spec--error--catch--command--bindings))
-- `check` (Map of String) Check is an assertion tree to validate the operation outcome.
-- `cluster` (String) Cluster defines the target cluster (default cluster will be used if not specified and/or overridden).
-- `clusters` (Attributes) Clusters holds a registry to clusters to support multi-cluster tests. (see [below for nested schema](#nestedatt--spec--error--catch--command--clusters))
-- `env` (Attributes List) Env defines additional environment variables. (see [below for nested schema](#nestedatt--spec--error--catch--command--env))
-- `outputs` (Attributes List) Outputs defines output bindings. (see [below for nested schema](#nestedatt--spec--error--catch--command--outputs))
-- `skip_log_output` (Boolean) SkipLogOutput removes the output from the command. Useful for sensitive logs or to reduce noise.
+- `match` (Map of String) Match defines the matching statement.
+
+
+
+
+### Nested Schema for `spec.error.catch.assert`
+
+Optional:
+
+- `file` (String) File is the path to the referenced file. This can be a direct path to a fileor an expression that matches multiple files, such as 'manifest/*.yaml' for all YAMLfiles within the 'manifest' directory.
+- `resource` (Map of String) Check provides a check used in assertions.
+- `template` (Boolean) Template determines whether resources should be considered for templating.
- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
-
-### Nested Schema for `spec.error.catch.command.bindings`
+
+
+### Nested Schema for `spec.error.catch.bindings`
Required:
@@ -153,8 +180,8 @@ Required:
- `value` (Map of String) Value value of the binding.
-
-### Nested Schema for `spec.error.catch.command.clusters`
+
+### Nested Schema for `spec.error.catch.clusters`
Required:
@@ -165,64 +192,67 @@ Optional:
- `context` (String) Context is the name of the context to use.
-
-### Nested Schema for `spec.error.catch.command.env`
+
+### Nested Schema for `spec.error.catch.command`
Required:
-- `name` (String) Name the name of the binding.
-- `value` (Map of String) Value value of the binding.
+- `entrypoint` (String) Entrypoint is the command entry point to run.
+Optional:
-
-### Nested Schema for `spec.error.catch.command.outputs`
+- `args` (List of String) Args is the command arguments.
+- `check` (Map of String) Check is an assertion tree to validate the operation outcome.
+- `env` (Attributes List) Env defines additional environment variables. (see [below for nested schema](#nestedatt--spec--error--catch--command--env))
+- `skip_log_output` (Boolean) SkipLogOutput removes the output from the command. Useful for sensitive logs or to reduce noise.
+- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
+
+
+### Nested Schema for `spec.error.catch.command.env`
Required:
- `name` (String) Name the name of the binding.
- `value` (Map of String) Value value of the binding.
-Optional:
-
-- `match` (Map of String) Match defines the matching statement.
-
-
-### Nested Schema for `spec.error.catch.delete`
+
+### Nested Schema for `spec.error.catch.create`
Optional:
-- `bindings` (Attributes List) Bindings defines additional binding key/values. (see [below for nested schema](#nestedatt--spec--error--catch--delete--bindings))
-- `cluster` (String) Cluster defines the target cluster (default cluster will be used if not specified and/or overridden).
-- `clusters` (Attributes) Clusters holds a registry to clusters to support multi-cluster tests. (see [below for nested schema](#nestedatt--spec--error--catch--delete--clusters))
-- `deletion_propagation_policy` (String) DeletionPropagationPolicy decides if a deletion will propagate to the dependents ofthe object, and how the garbage collector will handle the propagation.Overrides the deletion propagation policy set in the Configuration, the Test and the TestStep.
-- `expect` (Attributes List) Expect defines a list of matched checks to validate the operation outcome. (see [below for nested schema](#nestedatt--spec--error--catch--delete--expect))
+- `dry_run` (Boolean) DryRun determines whether the file should be applied in dry run mode.
+- `expect` (Attributes List) Expect defines a list of matched checks to validate the operation outcome. (see [below for nested schema](#nestedatt--spec--error--catch--create--expect))
- `file` (String) File is the path to the referenced file. This can be a direct path to a fileor an expression that matches multiple files, such as 'manifest/*.yaml' for all YAMLfiles within the 'manifest' directory.
-- `ref` (Attributes) Ref determines objects to be deleted. (see [below for nested schema](#nestedatt--spec--error--catch--delete--ref))
+- `resource` (Map of String) Resource provides a resource to be applied.
- `template` (Boolean) Template determines whether resources should be considered for templating.
- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
-
-### Nested Schema for `spec.error.catch.delete.bindings`
+
+### Nested Schema for `spec.error.catch.create.expect`
Required:
-- `name` (String) Name the name of the binding.
-- `value` (Map of String) Value value of the binding.
+- `check` (Map of String) Check defines the verification statement.
+Optional:
-
-### Nested Schema for `spec.error.catch.delete.clusters`
+- `match` (Map of String) Match defines the matching statement.
-Required:
-- `kubeconfig` (String) Kubeconfig is the path to the referenced file.
-Optional:
+
+### Nested Schema for `spec.error.catch.delete`
-- `context` (String) Context is the name of the context to use.
+Optional:
+- `deletion_propagation_policy` (String) DeletionPropagationPolicy decides if a deletion will propagate to the dependents ofthe object, and how the garbage collector will handle the propagation.Overrides the deletion propagation policy set in the Configuration, the Test and the TestStep.
+- `expect` (Attributes List) Expect defines a list of matched checks to validate the operation outcome. (see [below for nested schema](#nestedatt--spec--error--catch--delete--expect))
+- `file` (String) File is the path to the referenced file. This can be a direct path to a fileor an expression that matches multiple files, such as 'manifest/*.yaml' for all YAMLfiles within the 'manifest' directory.
+- `ref` (Attributes) Ref determines objects to be deleted. (see [below for nested schema](#nestedatt--spec--error--catch--delete--ref))
+- `template` (Boolean) Template determines whether resources should be considered for templating.
+- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
### Nested Schema for `spec.error.catch.delete.expect`
@@ -246,10 +276,32 @@ Required:
Optional:
-- `labels` (Map of String) Label selector to match objects to delete
+- `label_selector` (Attributes) Label selector to match objects to delete (see [below for nested schema](#nestedatt--spec--error--catch--delete--ref--label_selector))
- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
- `namespace` (String) Namespace of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
+
+### Nested Schema for `spec.error.catch.delete.ref.label_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--error--catch--delete--ref--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.error.catch.delete.ref.label_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+
+
+
@@ -262,25 +314,22 @@ Required:
Optional:
-- `cluster` (String) Cluster defines the target cluster (default cluster will be used if not specified and/or overridden).
-- `clusters` (Attributes) Clusters holds a registry to clusters to support multi-cluster tests. (see [below for nested schema](#nestedatt--spec--error--catch--describe--clusters))
- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
- `namespace` (String) Namespace of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
- `selector` (String) Selector defines labels selector.
- `show_events` (Boolean) Show Events indicates whether to include related events.
- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
-
-### Nested Schema for `spec.error.catch.describe.clusters`
-Required:
-
-- `kubeconfig` (String) Kubeconfig is the path to the referenced file.
+
+### Nested Schema for `spec.error.catch.error`
Optional:
-- `context` (String) Context is the name of the context to use.
-
+- `file` (String) File is the path to the referenced file. This can be a direct path to a fileor an expression that matches multiple files, such as 'manifest/*.yaml' for all YAMLfiles within the 'manifest' directory.
+- `resource` (Map of String) Check provides a check used in assertions.
+- `template` (Boolean) Template determines whether resources should be considered for templating.
+- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
@@ -288,26 +337,12 @@ Optional:
Optional:
-- `cluster` (String) Cluster defines the target cluster (default cluster will be used if not specified and/or overridden).
-- `clusters` (Attributes) Clusters holds a registry to clusters to support multi-cluster tests. (see [below for nested schema](#nestedatt--spec--error--catch--events--clusters))
- `format` (String) Format determines the output format (json or yaml).
- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
- `namespace` (String) Namespace of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
- `selector` (String) Selector defines labels selector.
- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
-
-### Nested Schema for `spec.error.catch.events.clusters`
-
-Required:
-
-- `kubeconfig` (String) Kubeconfig is the path to the referenced file.
-
-Optional:
-
-- `context` (String) Context is the name of the context to use.
-
-
### Nested Schema for `spec.error.catch.get`
@@ -319,71 +354,77 @@ Required:
Optional:
-- `cluster` (String) Cluster defines the target cluster (default cluster will be used if not specified and/or overridden).
-- `clusters` (Attributes) Clusters holds a registry to clusters to support multi-cluster tests. (see [below for nested schema](#nestedatt--spec--error--catch--get--clusters))
- `format` (String) Format determines the output format (json or yaml).
- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
- `namespace` (String) Namespace of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
- `selector` (String) Selector defines labels selector.
- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
-
-### Nested Schema for `spec.error.catch.get.clusters`
+
+
+### Nested Schema for `spec.error.catch.outputs`
Required:
-- `kubeconfig` (String) Kubeconfig is the path to the referenced file.
+- `name` (String) Name the name of the binding.
+- `value` (Map of String) Value value of the binding.
Optional:
-- `context` (String) Context is the name of the context to use.
+- `match` (Map of String) Match defines the matching statement.
-
-
-### Nested Schema for `spec.error.catch.pod_logs`
+
+### Nested Schema for `spec.error.catch.patch`
Optional:
-- `cluster` (String) Cluster defines the target cluster (default cluster will be used if not specified and/or overridden).
-- `clusters` (Attributes) Clusters holds a registry to clusters to support multi-cluster tests. (see [below for nested schema](#nestedatt--spec--error--catch--pod_logs--clusters))
-- `container` (String) Container in pod to get logs from else --all-containers is used.
-- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
-- `namespace` (String) Namespace of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
-- `selector` (String) Selector defines labels selector.
-- `tail` (Number) Tail is the number of last lines to collect from pods. If omitted or zero,then the default is 10 if you use a selector, or -1 (all) if you use a pod name.This matches default behavior of 'kubectl logs'.
+- `dry_run` (Boolean) DryRun determines whether the file should be applied in dry run mode.
+- `expect` (Attributes List) Expect defines a list of matched checks to validate the operation outcome. (see [below for nested schema](#nestedatt--spec--error--catch--patch--expect))
+- `file` (String) File is the path to the referenced file. This can be a direct path to a fileor an expression that matches multiple files, such as 'manifest/*.yaml' for all YAMLfiles within the 'manifest' directory.
+- `resource` (Map of String) Resource provides a resource to be applied.
+- `template` (Boolean) Template determines whether resources should be considered for templating.
- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
-
-### Nested Schema for `spec.error.catch.pod_logs.clusters`
+
+### Nested Schema for `spec.error.catch.patch.expect`
Required:
-- `kubeconfig` (String) Kubeconfig is the path to the referenced file.
+- `check` (Map of String) Check defines the verification statement.
Optional:
-- `context` (String) Context is the name of the context to use.
+- `match` (Map of String) Match defines the matching statement.
+
+
+### Nested Schema for `spec.error.catch.pod_logs`
+
+Optional:
+
+- `container` (String) Container in pod to get logs from else --all-containers is used.
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+- `namespace` (String) Namespace of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
+- `selector` (String) Selector defines labels selector.
+- `tail` (Number) Tail is the number of last lines to collect from pods. If omitted or zero,then the default is 10 if you use a selector, or -1 (all) if you use a pod name.This matches default behavior of 'kubectl logs'.
+- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
+
### Nested Schema for `spec.error.catch.script`
Optional:
-- `bindings` (Attributes List) Bindings defines additional binding key/values. (see [below for nested schema](#nestedatt--spec--error--catch--script--bindings))
- `check` (Map of String) Check is an assertion tree to validate the operation outcome.
-- `cluster` (String) Cluster defines the target cluster (default cluster will be used if not specified and/or overridden).
-- `clusters` (Attributes) Clusters holds a registry to clusters to support multi-cluster tests. (see [below for nested schema](#nestedatt--spec--error--catch--script--clusters))
- `content` (String) Content defines a shell script (run with 'sh -c ...').
- `env` (Attributes List) Env defines additional environment variables. (see [below for nested schema](#nestedatt--spec--error--catch--script--env))
-- `outputs` (Attributes List) Outputs defines output bindings. (see [below for nested schema](#nestedatt--spec--error--catch--script--outputs))
- `skip_log_output` (Boolean) SkipLogOutput removes the output from the command. Useful for sensitive logs or to reduce noise.
- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
-
-### Nested Schema for `spec.error.catch.script.bindings`
+
+### Nested Schema for `spec.error.catch.script.env`
Required:
@@ -391,34 +432,33 @@ Required:
- `value` (Map of String) Value value of the binding.
-
-### Nested Schema for `spec.error.catch.script.clusters`
-
-Required:
-
-- `kubeconfig` (String) Kubeconfig is the path to the referenced file.
-Optional:
+
+### Nested Schema for `spec.error.catch.sleep`
-- `context` (String) Context is the name of the context to use.
+Required:
+- `duration` (String) Duration is the delay used for sleeping.
-
-### Nested Schema for `spec.error.catch.script.env`
-Required:
+
+### Nested Schema for `spec.error.catch.update`
-- `name` (String) Name the name of the binding.
-- `value` (Map of String) Value value of the binding.
+Optional:
+- `dry_run` (Boolean) DryRun determines whether the file should be applied in dry run mode.
+- `expect` (Attributes List) Expect defines a list of matched checks to validate the operation outcome. (see [below for nested schema](#nestedatt--spec--error--catch--update--expect))
+- `file` (String) File is the path to the referenced file. This can be a direct path to a fileor an expression that matches multiple files, such as 'manifest/*.yaml' for all YAMLfiles within the 'manifest' directory.
+- `resource` (Map of String) Resource provides a resource to be applied.
+- `template` (Boolean) Template determines whether resources should be considered for templating.
+- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
-
-### Nested Schema for `spec.error.catch.script.outputs`
+
+### Nested Schema for `spec.error.catch.update.expect`
Required:
-- `name` (String) Name the name of the binding.
-- `value` (Map of String) Value value of the binding.
+- `check` (Map of String) Check defines the verification statement.
Optional:
@@ -426,14 +466,6 @@ Optional:
-
-### Nested Schema for `spec.error.catch.sleep`
-
-Required:
-
-- `duration` (String) Duration is the delay used for sleeping.
-
-
### Nested Schema for `spec.error.catch.wait`
@@ -445,8 +477,6 @@ Required:
Optional:
-- `cluster` (String) Cluster defines the target cluster (default cluster will be used if not specified and/or overridden).
-- `clusters` (Attributes) Clusters holds a registry to clusters to support multi-cluster tests. (see [below for nested schema](#nestedatt--spec--error--catch--wait--clusters))
- `format` (String) Format determines the output format (json or yaml).
- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
- `namespace` (String) Namespace of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
@@ -484,18 +514,6 @@ Required:
-
-### Nested Schema for `spec.error.catch.wait.clusters`
-
-Required:
-
-- `kubeconfig` (String) Kubeconfig is the path to the referenced file.
-
-Optional:
-
-- `context` (String) Context is the name of the context to use.
-
-
diff --git a/docs/data-sources/chainsaw_kyverno_io_test_v1alpha2_manifest.md b/docs/data-sources/chainsaw_kyverno_io_test_v1alpha2_manifest.md
index 1c37c4f52..4521daa0f 100644
--- a/docs/data-sources/chainsaw_kyverno_io_test_v1alpha2_manifest.md
+++ b/docs/data-sources/chainsaw_kyverno_io_test_v1alpha2_manifest.md
@@ -259,10 +259,32 @@ Required:
Optional:
-- `labels` (Map of String) Label selector to match objects to delete
+- `label_selector` (Attributes) Label selector to match objects to delete (see [below for nested schema](#nestedatt--spec--steps--try--delete--ref--label_selector))
- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
- `namespace` (String) Namespace of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
+
+### Nested Schema for `spec.steps.try.delete.ref.label_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--steps--try--delete--ref--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.steps.try.delete.ref.label_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+
+
+
@@ -653,10 +675,32 @@ Required:
Optional:
-- `labels` (Map of String) Label selector to match objects to delete
+- `label_selector` (Attributes) Label selector to match objects to delete (see [below for nested schema](#nestedatt--spec--steps--catch--delete--ref--label_selector))
- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
- `namespace` (String) Namespace of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
+
+### Nested Schema for `spec.steps.catch.delete.ref.label_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--steps--catch--delete--ref--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.steps.catch.delete.ref.label_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+
+
+
@@ -1038,10 +1082,32 @@ Required:
Optional:
-- `labels` (Map of String) Label selector to match objects to delete
+- `label_selector` (Attributes) Label selector to match objects to delete (see [below for nested schema](#nestedatt--spec--steps--cleanup--delete--ref--label_selector))
- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
- `namespace` (String) Namespace of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
+
+### Nested Schema for `spec.steps.cleanup.delete.ref.label_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--steps--cleanup--delete--ref--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.steps.cleanup.delete.ref.label_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+
+
+
@@ -1435,10 +1501,32 @@ Required:
Optional:
-- `labels` (Map of String) Label selector to match objects to delete
+- `label_selector` (Attributes) Label selector to match objects to delete (see [below for nested schema](#nestedatt--spec--steps--finally--delete--ref--label_selector))
- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
- `namespace` (String) Namespace of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
+
+### Nested Schema for `spec.steps.finally.delete.ref.label_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--steps--finally--delete--ref--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.steps.finally.delete.ref.label_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+
+
+
@@ -1717,38 +1805,65 @@ Optional:
Optional:
+- `apply` (Attributes) Apply represents resources that should be applied for this test step. This can include thingslike configuration settings or any other resources that need to be available during the test. (see [below for nested schema](#nestedatt--spec--error--catch--apply))
+- `assert` (Attributes) Assert represents an assertion to be made. It checks whether the conditions specified in the assertion hold true. (see [below for nested schema](#nestedatt--spec--error--catch--assert))
+- `bindings` (Attributes List) Bindings defines additional binding key/values. (see [below for nested schema](#nestedatt--spec--error--catch--bindings))
+- `cluster` (String) Cluster defines the target cluster (default cluster will be used if not specified and/or overridden).
+- `clusters` (Attributes) Clusters holds a registry to clusters to support multi-cluster tests. (see [below for nested schema](#nestedatt--spec--error--catch--clusters))
- `command` (Attributes) Command defines a command to run. (see [below for nested schema](#nestedatt--spec--error--catch--command))
+- `create` (Attributes) Create represents a creation operation. (see [below for nested schema](#nestedatt--spec--error--catch--create))
- `delete` (Attributes) Delete represents a deletion operation. (see [below for nested schema](#nestedatt--spec--error--catch--delete))
- `describe` (Attributes) Describe determines the resource describe collector to execute. (see [below for nested schema](#nestedatt--spec--error--catch--describe))
- `description` (String) Description contains a description of the operation.
+- `error` (Attributes) Error represents the expected errors for this test step. If any of these errors occur, the testwill consider them as expected; otherwise, they will be treated as test failures. (see [below for nested schema](#nestedatt--spec--error--catch--error))
- `events` (Attributes) Events determines the events collector to execute. (see [below for nested schema](#nestedatt--spec--error--catch--events))
- `get` (Attributes) Get determines the resource get collector to execute. (see [below for nested schema](#nestedatt--spec--error--catch--get))
+- `outputs` (Attributes List) Outputs defines output bindings. (see [below for nested schema](#nestedatt--spec--error--catch--outputs))
+- `patch` (Attributes) Patch represents a patch operation. (see [below for nested schema](#nestedatt--spec--error--catch--patch))
- `pod_logs` (Attributes) PodLogs determines the pod logs collector to execute. (see [below for nested schema](#nestedatt--spec--error--catch--pod_logs))
- `script` (Attributes) Script defines a script to run. (see [below for nested schema](#nestedatt--spec--error--catch--script))
- `sleep` (Attributes) Sleep defines zzzz. (see [below for nested schema](#nestedatt--spec--error--catch--sleep))
+- `update` (Attributes) Update represents an update operation. (see [below for nested schema](#nestedatt--spec--error--catch--update))
- `wait` (Attributes) Wait determines the resource wait collector to execute. (see [below for nested schema](#nestedatt--spec--error--catch--wait))
-
-### Nested Schema for `spec.error.catch.command`
+
+### Nested Schema for `spec.error.catch.apply`
+
+Optional:
+
+- `dry_run` (Boolean) DryRun determines whether the file should be applied in dry run mode.
+- `expect` (Attributes List) Expect defines a list of matched checks to validate the operation outcome. (see [below for nested schema](#nestedatt--spec--error--catch--apply--expect))
+- `file` (String) File is the path to the referenced file. This can be a direct path to a fileor an expression that matches multiple files, such as 'manifest/*.yaml' for all YAMLfiles within the 'manifest' directory.
+- `resource` (Map of String) Resource provides a resource to be applied.
+- `template` (Boolean) Template determines whether resources should be considered for templating.
+- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
+
+
+### Nested Schema for `spec.error.catch.apply.expect`
Required:
-- `entrypoint` (String) Entrypoint is the command entry point to run.
+- `check` (Map of String) Check defines the verification statement.
Optional:
-- `args` (List of String) Args is the command arguments.
-- `bindings` (Attributes List) Bindings defines additional binding key/values. (see [below for nested schema](#nestedatt--spec--error--catch--command--bindings))
-- `check` (Map of String) Check is an assertion tree to validate the operation outcome.
-- `cluster` (String) Cluster defines the target cluster (default cluster will be used if not specified and/or overridden).
-- `clusters` (Attributes) Clusters holds a registry to clusters to support multi-cluster tests. (see [below for nested schema](#nestedatt--spec--error--catch--command--clusters))
-- `env` (Attributes List) Env defines additional environment variables. (see [below for nested schema](#nestedatt--spec--error--catch--command--env))
-- `outputs` (Attributes List) Outputs defines output bindings. (see [below for nested schema](#nestedatt--spec--error--catch--command--outputs))
-- `skip_log_output` (Boolean) SkipLogOutput removes the output from the command. Useful for sensitive logs or to reduce noise.
+- `match` (Map of String) Match defines the matching statement.
+
+
+
+
+### Nested Schema for `spec.error.catch.assert`
+
+Optional:
+
+- `file` (String) File is the path to the referenced file. This can be a direct path to a fileor an expression that matches multiple files, such as 'manifest/*.yaml' for all YAMLfiles within the 'manifest' directory.
+- `resource` (Map of String) Check provides a check used in assertions.
+- `template` (Boolean) Template determines whether resources should be considered for templating.
- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
-
-### Nested Schema for `spec.error.catch.command.bindings`
+
+
+### Nested Schema for `spec.error.catch.bindings`
Required:
@@ -1756,8 +1871,8 @@ Required:
- `value` (Map of String) Value value of the binding.
-
-### Nested Schema for `spec.error.catch.command.clusters`
+
+### Nested Schema for `spec.error.catch.clusters`
Required:
@@ -1768,64 +1883,67 @@ Optional:
- `context` (String) Context is the name of the context to use.
-
-### Nested Schema for `spec.error.catch.command.env`
+
+### Nested Schema for `spec.error.catch.command`
Required:
-- `name` (String) Name the name of the binding.
-- `value` (Map of String) Value value of the binding.
+- `entrypoint` (String) Entrypoint is the command entry point to run.
+Optional:
-
-### Nested Schema for `spec.error.catch.command.outputs`
+- `args` (List of String) Args is the command arguments.
+- `check` (Map of String) Check is an assertion tree to validate the operation outcome.
+- `env` (Attributes List) Env defines additional environment variables. (see [below for nested schema](#nestedatt--spec--error--catch--command--env))
+- `skip_log_output` (Boolean) SkipLogOutput removes the output from the command. Useful for sensitive logs or to reduce noise.
+- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
+
+
+### Nested Schema for `spec.error.catch.command.env`
Required:
- `name` (String) Name the name of the binding.
- `value` (Map of String) Value value of the binding.
-Optional:
-
-- `match` (Map of String) Match defines the matching statement.
-
-
-### Nested Schema for `spec.error.catch.delete`
+
+### Nested Schema for `spec.error.catch.create`
Optional:
-- `bindings` (Attributes List) Bindings defines additional binding key/values. (see [below for nested schema](#nestedatt--spec--error--catch--delete--bindings))
-- `cluster` (String) Cluster defines the target cluster (default cluster will be used if not specified and/or overridden).
-- `clusters` (Attributes) Clusters holds a registry to clusters to support multi-cluster tests. (see [below for nested schema](#nestedatt--spec--error--catch--delete--clusters))
-- `deletion_propagation_policy` (String) DeletionPropagationPolicy decides if a deletion will propagate to the dependents ofthe object, and how the garbage collector will handle the propagation.Overrides the deletion propagation policy set in the Configuration, the Test and the TestStep.
-- `expect` (Attributes List) Expect defines a list of matched checks to validate the operation outcome. (see [below for nested schema](#nestedatt--spec--error--catch--delete--expect))
+- `dry_run` (Boolean) DryRun determines whether the file should be applied in dry run mode.
+- `expect` (Attributes List) Expect defines a list of matched checks to validate the operation outcome. (see [below for nested schema](#nestedatt--spec--error--catch--create--expect))
- `file` (String) File is the path to the referenced file. This can be a direct path to a fileor an expression that matches multiple files, such as 'manifest/*.yaml' for all YAMLfiles within the 'manifest' directory.
-- `ref` (Attributes) Ref determines objects to be deleted. (see [below for nested schema](#nestedatt--spec--error--catch--delete--ref))
+- `resource` (Map of String) Resource provides a resource to be applied.
- `template` (Boolean) Template determines whether resources should be considered for templating.
- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
-
-### Nested Schema for `spec.error.catch.delete.bindings`
+
+### Nested Schema for `spec.error.catch.create.expect`
Required:
-- `name` (String) Name the name of the binding.
-- `value` (Map of String) Value value of the binding.
+- `check` (Map of String) Check defines the verification statement.
+Optional:
-
-### Nested Schema for `spec.error.catch.delete.clusters`
+- `match` (Map of String) Match defines the matching statement.
-Required:
-- `kubeconfig` (String) Kubeconfig is the path to the referenced file.
-Optional:
+
+### Nested Schema for `spec.error.catch.delete`
-- `context` (String) Context is the name of the context to use.
+Optional:
+- `deletion_propagation_policy` (String) DeletionPropagationPolicy decides if a deletion will propagate to the dependents ofthe object, and how the garbage collector will handle the propagation.Overrides the deletion propagation policy set in the Configuration, the Test and the TestStep.
+- `expect` (Attributes List) Expect defines a list of matched checks to validate the operation outcome. (see [below for nested schema](#nestedatt--spec--error--catch--delete--expect))
+- `file` (String) File is the path to the referenced file. This can be a direct path to a fileor an expression that matches multiple files, such as 'manifest/*.yaml' for all YAMLfiles within the 'manifest' directory.
+- `ref` (Attributes) Ref determines objects to be deleted. (see [below for nested schema](#nestedatt--spec--error--catch--delete--ref))
+- `template` (Boolean) Template determines whether resources should be considered for templating.
+- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
### Nested Schema for `spec.error.catch.delete.expect`
@@ -1849,10 +1967,32 @@ Required:
Optional:
-- `labels` (Map of String) Label selector to match objects to delete
+- `label_selector` (Attributes) Label selector to match objects to delete (see [below for nested schema](#nestedatt--spec--error--catch--delete--ref--label_selector))
- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
- `namespace` (String) Namespace of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
+
+### Nested Schema for `spec.error.catch.delete.ref.label_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--error--catch--delete--ref--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.error.catch.delete.ref.label_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
+
+
+
@@ -1865,25 +2005,22 @@ Required:
Optional:
-- `cluster` (String) Cluster defines the target cluster (default cluster will be used if not specified and/or overridden).
-- `clusters` (Attributes) Clusters holds a registry to clusters to support multi-cluster tests. (see [below for nested schema](#nestedatt--spec--error--catch--describe--clusters))
- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
- `namespace` (String) Namespace of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
- `selector` (String) Selector defines labels selector.
- `show_events` (Boolean) Show Events indicates whether to include related events.
- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
-
-### Nested Schema for `spec.error.catch.describe.clusters`
-
-Required:
-- `kubeconfig` (String) Kubeconfig is the path to the referenced file.
+
+### Nested Schema for `spec.error.catch.error`
Optional:
-- `context` (String) Context is the name of the context to use.
-
+- `file` (String) File is the path to the referenced file. This can be a direct path to a fileor an expression that matches multiple files, such as 'manifest/*.yaml' for all YAMLfiles within the 'manifest' directory.
+- `resource` (Map of String) Check provides a check used in assertions.
+- `template` (Boolean) Template determines whether resources should be considered for templating.
+- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
@@ -1891,26 +2028,12 @@ Optional:
Optional:
-- `cluster` (String) Cluster defines the target cluster (default cluster will be used if not specified and/or overridden).
-- `clusters` (Attributes) Clusters holds a registry to clusters to support multi-cluster tests. (see [below for nested schema](#nestedatt--spec--error--catch--events--clusters))
- `format` (String) Format determines the output format (json or yaml).
- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
- `namespace` (String) Namespace of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
- `selector` (String) Selector defines labels selector.
- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
-
-### Nested Schema for `spec.error.catch.events.clusters`
-
-Required:
-
-- `kubeconfig` (String) Kubeconfig is the path to the referenced file.
-
-Optional:
-
-- `context` (String) Context is the name of the context to use.
-
-
### Nested Schema for `spec.error.catch.get`
@@ -1922,52 +2045,62 @@ Required:
Optional:
-- `cluster` (String) Cluster defines the target cluster (default cluster will be used if not specified and/or overridden).
-- `clusters` (Attributes) Clusters holds a registry to clusters to support multi-cluster tests. (see [below for nested schema](#nestedatt--spec--error--catch--get--clusters))
- `format` (String) Format determines the output format (json or yaml).
- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
- `namespace` (String) Namespace of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
- `selector` (String) Selector defines labels selector.
- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
-
-### Nested Schema for `spec.error.catch.get.clusters`
+
+
+### Nested Schema for `spec.error.catch.outputs`
Required:
-- `kubeconfig` (String) Kubeconfig is the path to the referenced file.
+- `name` (String) Name the name of the binding.
+- `value` (Map of String) Value value of the binding.
Optional:
-- `context` (String) Context is the name of the context to use.
-
+- `match` (Map of String) Match defines the matching statement.
-
-### Nested Schema for `spec.error.catch.pod_logs`
+
+### Nested Schema for `spec.error.catch.patch`
Optional:
-- `cluster` (String) Cluster defines the target cluster (default cluster will be used if not specified and/or overridden).
-- `clusters` (Attributes) Clusters holds a registry to clusters to support multi-cluster tests. (see [below for nested schema](#nestedatt--spec--error--catch--pod_logs--clusters))
-- `container` (String) Container in pod to get logs from else --all-containers is used.
-- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
-- `namespace` (String) Namespace of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
-- `selector` (String) Selector defines labels selector.
-- `tail` (Number) Tail is the number of last lines to collect from pods. If omitted or zero,then the default is 10 if you use a selector, or -1 (all) if you use a pod name.This matches default behavior of 'kubectl logs'.
+- `dry_run` (Boolean) DryRun determines whether the file should be applied in dry run mode.
+- `expect` (Attributes List) Expect defines a list of matched checks to validate the operation outcome. (see [below for nested schema](#nestedatt--spec--error--catch--patch--expect))
+- `file` (String) File is the path to the referenced file. This can be a direct path to a fileor an expression that matches multiple files, such as 'manifest/*.yaml' for all YAMLfiles within the 'manifest' directory.
+- `resource` (Map of String) Resource provides a resource to be applied.
+- `template` (Boolean) Template determines whether resources should be considered for templating.
- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
-
-### Nested Schema for `spec.error.catch.pod_logs.clusters`
+
+### Nested Schema for `spec.error.catch.patch.expect`
Required:
-- `kubeconfig` (String) Kubeconfig is the path to the referenced file.
+- `check` (Map of String) Check defines the verification statement.
Optional:
-- `context` (String) Context is the name of the context to use.
+- `match` (Map of String) Match defines the matching statement.
+
+
+
+
+### Nested Schema for `spec.error.catch.pod_logs`
+
+Optional:
+- `container` (String) Container in pod to get logs from else --all-containers is used.
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+- `namespace` (String) Namespace of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
+- `selector` (String) Selector defines labels selector.
+- `tail` (Number) Tail is the number of last lines to collect from pods. If omitted or zero,then the default is 10 if you use a selector, or -1 (all) if you use a pod name.This matches default behavior of 'kubectl logs'.
+- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
@@ -1975,18 +2108,14 @@ Optional:
Optional:
-- `bindings` (Attributes List) Bindings defines additional binding key/values. (see [below for nested schema](#nestedatt--spec--error--catch--script--bindings))
- `check` (Map of String) Check is an assertion tree to validate the operation outcome.
-- `cluster` (String) Cluster defines the target cluster (default cluster will be used if not specified and/or overridden).
-- `clusters` (Attributes) Clusters holds a registry to clusters to support multi-cluster tests. (see [below for nested schema](#nestedatt--spec--error--catch--script--clusters))
- `content` (String) Content defines a shell script (run with 'sh -c ...').
- `env` (Attributes List) Env defines additional environment variables. (see [below for nested schema](#nestedatt--spec--error--catch--script--env))
-- `outputs` (Attributes List) Outputs defines output bindings. (see [below for nested schema](#nestedatt--spec--error--catch--script--outputs))
- `skip_log_output` (Boolean) SkipLogOutput removes the output from the command. Useful for sensitive logs or to reduce noise.
- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
-
-### Nested Schema for `spec.error.catch.script.bindings`
+
+### Nested Schema for `spec.error.catch.script.env`
Required:
@@ -1994,34 +2123,33 @@ Required:
- `value` (Map of String) Value value of the binding.
-
-### Nested Schema for `spec.error.catch.script.clusters`
-
-Required:
-
-- `kubeconfig` (String) Kubeconfig is the path to the referenced file.
-Optional:
+
+### Nested Schema for `spec.error.catch.sleep`
-- `context` (String) Context is the name of the context to use.
+Required:
+- `duration` (String) Duration is the delay used for sleeping.
-
-### Nested Schema for `spec.error.catch.script.env`
-Required:
+
+### Nested Schema for `spec.error.catch.update`
-- `name` (String) Name the name of the binding.
-- `value` (Map of String) Value value of the binding.
+Optional:
+- `dry_run` (Boolean) DryRun determines whether the file should be applied in dry run mode.
+- `expect` (Attributes List) Expect defines a list of matched checks to validate the operation outcome. (see [below for nested schema](#nestedatt--spec--error--catch--update--expect))
+- `file` (String) File is the path to the referenced file. This can be a direct path to a fileor an expression that matches multiple files, such as 'manifest/*.yaml' for all YAMLfiles within the 'manifest' directory.
+- `resource` (Map of String) Resource provides a resource to be applied.
+- `template` (Boolean) Template determines whether resources should be considered for templating.
+- `timeout` (String) Timeout for the operation. Overrides the global timeout set in the Configuration.
-
-### Nested Schema for `spec.error.catch.script.outputs`
+
+### Nested Schema for `spec.error.catch.update.expect`
Required:
-- `name` (String) Name the name of the binding.
-- `value` (Map of String) Value value of the binding.
+- `check` (Map of String) Check defines the verification statement.
Optional:
@@ -2029,14 +2157,6 @@ Optional:
-
-### Nested Schema for `spec.error.catch.sleep`
-
-Required:
-
-- `duration` (String) Duration is the delay used for sleeping.
-
-
### Nested Schema for `spec.error.catch.wait`
@@ -2048,8 +2168,6 @@ Required:
Optional:
-- `cluster` (String) Cluster defines the target cluster (default cluster will be used if not specified and/or overridden).
-- `clusters` (Attributes) Clusters holds a registry to clusters to support multi-cluster tests. (see [below for nested schema](#nestedatt--spec--error--catch--wait--clusters))
- `format` (String) Format determines the output format (json or yaml).
- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
- `namespace` (String) Namespace of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
@@ -2087,18 +2205,6 @@ Required:
-
-### Nested Schema for `spec.error.catch.wait.clusters`
-
-Required:
-
-- `kubeconfig` (String) Kubeconfig is the path to the referenced file.
-
-Optional:
-
-- `context` (String) Context is the name of the context to use.
-
-
diff --git a/docs/data-sources/cilium_io_cilium_load_balancer_ip_pool_v2alpha1_manifest.md b/docs/data-sources/cilium_io_cilium_load_balancer_ip_pool_v2alpha1_manifest.md
index 7c09c5a00..3374b935f 100644
--- a/docs/data-sources/cilium_io_cilium_load_balancer_ip_pool_v2alpha1_manifest.md
+++ b/docs/data-sources/cilium_io_cilium_load_balancer_ip_pool_v2alpha1_manifest.md
@@ -56,7 +56,6 @@ Optional:
- `allow_first_last_i_ps` (String) AllowFirstLastIPs, if set to 'yes' means that the first and last IPs of each CIDR will be allocatable. If 'no' or undefined, these IPs will be reserved. This field is ignored for /{31,32} and /{127,128} CIDRs since reserving the first and last IPs would make the CIDRs unusable.
- `blocks` (Attributes List) Blocks is a list of CIDRs comprising this IP Pool (see [below for nested schema](#nestedatt--spec--blocks))
-- `cidrs` (Attributes List) Cidrs is a list of CIDRs comprising this IP Pool Deprecated: please use the 'blocks' field instead. This field will be removed in a future release. https://github.com/cilium/cilium/issues/28590 (see [below for nested schema](#nestedatt--spec--cidrs))
- `disabled` (Boolean) Disabled, if set to true means that no new IPs will be allocated from this pool. Existing allocations will not be removed from services.
- `service_selector` (Attributes) ServiceSelector selects a set of services which are eligible to receive IPs from this (see [below for nested schema](#nestedatt--spec--service_selector))
@@ -70,16 +69,6 @@ Optional:
- `stop` (String)
-
-### Nested Schema for `spec.cidrs`
-
-Optional:
-
-- `cidr` (String)
-- `start` (String)
-- `stop` (String)
-
-
### Nested Schema for `spec.service_selector`
diff --git a/docs/data-sources/crd_projectcalico_org_felix_configuration_v1_manifest.md b/docs/data-sources/crd_projectcalico_org_felix_configuration_v1_manifest.md
index 05cea5b9c..81f01c501 100644
--- a/docs/data-sources/crd_projectcalico_org_felix_configuration_v1_manifest.md
+++ b/docs/data-sources/crd_projectcalico_org_felix_configuration_v1_manifest.md
@@ -112,6 +112,8 @@ Optional:
- `feature_gates` (String) FeatureGates is used to enable or disable tech-preview Calico features. Values are specified in a comma separated list with no spaces, example; 'BPFConnectTimeLoadBalancingWorkaround=enabled,XyZ=false'. This is used to enable features that are not fully production ready.
- `floating_i_ps` (String) FloatingIPs configures whether or not Felix will program non-OpenStack floating IP addresses. (OpenStack-derived floating IPs are always programmed, regardless of this setting.)
- `generic_xdp_enabled` (Boolean) GenericXDPEnabled enables Generic XDP so network cards that don't support XDP offload or driver modes can use XDP. This is not recommended since it doesn't provide better performance than iptables. [Default: false]
+- `go_gc_threshold` (Number) GoGCThreshold Sets the Go runtime's garbage collection threshold. I.e. the percentage that the heap is allowed to grow before garbage collection is triggered. In general, doubling the value halves the CPU time spent doing GC, but it also doubles peak GC memory overhead. A special value of -1 can be used to disable GC entirely; this should only be used in conjunction with the GoMemoryLimitMB setting. This setting is overridden by the GOGC environment variable. [Default: 40]
+- `go_memory_limit_mb` (Number) GoMemoryLimitMB sets a (soft) memory limit for the Go runtime in MB. The Go runtime will try to keep its memory usage under the limit by triggering GC as needed. To avoid thrashing, it will exceed the limit if GC starts to take more than 50% of the process's CPU time. A value of -1 disables the memory limit. Note that the memory limit, if used, must be considerably less than any hard resource limit set at the container or pod level. This is because felix is not the only process that must run in the container or pod. This setting is overridden by the GOMEMLIMIT environment variable. [Default: -1]
- `health_enabled` (Boolean)
- `health_host` (String)
- `health_port` (Number)
diff --git a/docs/data-sources/datadoghq_com_datadog_agent_v1alpha1_manifest.md b/docs/data-sources/datadoghq_com_datadog_agent_v1alpha1_manifest.md
index 1fdb6425c..48bda44be 100644
--- a/docs/data-sources/datadoghq_com_datadog_agent_v1alpha1_manifest.md
+++ b/docs/data-sources/datadoghq_com_datadog_agent_v1alpha1_manifest.md
@@ -228,8 +228,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--agent--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. This field is beta-level and is only honored when PodAffinityNamespaceSelector feature is enabled. (see [below for nested schema](#nestedatt--spec--agent--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--agent--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
### Nested Schema for `spec.agent.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector`
@@ -287,8 +287,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--agent--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. This field is beta-level and is only honored when PodAffinityNamespaceSelector feature is enabled. (see [below for nested schema](#nestedatt--spec--agent--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--agent--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
### Nested Schema for `spec.agent.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.label_selector`
@@ -362,8 +362,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--agent--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. This field is beta-level and is only honored when PodAffinityNamespaceSelector feature is enabled. (see [below for nested schema](#nestedatt--spec--agent--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--agent--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
### Nested Schema for `spec.agent.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector`
@@ -421,8 +421,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--agent--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. This field is beta-level and is only honored when PodAffinityNamespaceSelector feature is enabled. (see [below for nested schema](#nestedatt--spec--agent--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--agent--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
### Nested Schema for `spec.agent.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.label_selector`
@@ -568,7 +568,7 @@ Optional:
- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--agent--apm--liveness_probe--exec))
- `failure_threshold` (Number) Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
-- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. This is an alpha field and requires enabling GRPCContainerProbe feature gate. (see [below for nested schema](#nestedatt--spec--agent--apm--liveness_probe--grpc))
+- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. This is a beta field and requires enabling GRPCContainerProbe feature gate. (see [below for nested schema](#nestedatt--spec--agent--apm--liveness_probe--grpc))
- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--agent--apm--liveness_probe--http_get))
- `initial_delay_seconds` (Number) Number of seconds after the container has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
- `period_seconds` (Number) How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
@@ -714,12 +714,12 @@ Optional:
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -736,12 +736,12 @@ Optional:
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -946,7 +946,7 @@ Optional:
- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--agent--config--liveness_probe--exec))
- `failure_threshold` (Number) Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
-- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. This is an alpha field and requires enabling GRPCContainerProbe feature gate. (see [below for nested schema](#nestedatt--spec--agent--config--liveness_probe--grpc))
+- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. This is a beta field and requires enabling GRPCContainerProbe feature gate. (see [below for nested schema](#nestedatt--spec--agent--config--liveness_probe--grpc))
- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--agent--config--liveness_probe--http_get))
- `initial_delay_seconds` (Number) Number of seconds after the container has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
- `period_seconds` (Number) How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
@@ -1019,7 +1019,7 @@ Optional:
- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--agent--config--readiness_probe--exec))
- `failure_threshold` (Number) Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
-- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. This is an alpha field and requires enabling GRPCContainerProbe feature gate. (see [below for nested schema](#nestedatt--spec--agent--config--readiness_probe--grpc))
+- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. This is a beta field and requires enabling GRPCContainerProbe feature gate. (see [below for nested schema](#nestedatt--spec--agent--config--readiness_probe--grpc))
- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--agent--config--readiness_probe--http_get))
- `initial_delay_seconds` (Number) Number of seconds after the container has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
- `period_seconds` (Number) How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
@@ -1187,52 +1187,52 @@ Optional:
Required:
-- `name` (String) Volume's name. Must be a DNS_LABEL and unique within the pod. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
-
-Optional:
-
-- `aws_elastic_block_store` (Attributes) AWSElasticBlockStore represents an AWS Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore (see [below for nested schema](#nestedatt--spec--agent--config--volumes--aws_elastic_block_store))
-- `azure_disk` (Attributes) AzureDisk represents an Azure Data Disk mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--azure_disk))
-- `azure_file` (Attributes) AzureFile represents an Azure File Service mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--azure_file))
-- `cephfs` (Attributes) CephFS represents a Ceph FS mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--agent--config--volumes--cephfs))
-- `cinder` (Attributes) Cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md (see [below for nested schema](#nestedatt--spec--agent--config--volumes--cinder))
-- `config_map` (Attributes) ConfigMap represents a configMap that should populate this volume (see [below for nested schema](#nestedatt--spec--agent--config--volumes--config_map))
-- `csi` (Attributes) CSI (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature). (see [below for nested schema](#nestedatt--spec--agent--config--volumes--csi))
-- `downward_api` (Attributes) DownwardAPI represents downward API about the pod that should populate this volume (see [below for nested schema](#nestedatt--spec--agent--config--volumes--downward_api))
-- `empty_dir` (Attributes) EmptyDir represents a temporary directory that shares a pod's lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir (see [below for nested schema](#nestedatt--spec--agent--config--volumes--empty_dir))
-- `ephemeral` (Attributes) Ephemeral represents a volume that is handled by a cluster storage driver. The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts, and deleted when the pod is removed. Use this if: a) the volume is only needed while the pod runs, b) features of normal volumes like restoring from snapshot or capacity tracking are needed, c) the storage driver is specified through a storage class, and d) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim). Use PersistentVolumeClaim or one of the vendor-specific APIs for volumes that persist for longer than the lifecycle of an individual pod. Use CSI for light-weight local ephemeral volumes if the CSI driver is meant to be used that way - see the documentation of the driver for more information. A pod can use both types of ephemeral volumes and persistent volumes at the same time. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--ephemeral))
-- `fc` (Attributes) FC represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--fc))
-- `flex_volume` (Attributes) FlexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--flex_volume))
-- `flocker` (Attributes) Flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running (see [below for nested schema](#nestedatt--spec--agent--config--volumes--flocker))
-- `gce_persistent_disk` (Attributes) GCEPersistentDisk represents a GCE Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk (see [below for nested schema](#nestedatt--spec--agent--config--volumes--gce_persistent_disk))
-- `git_repo` (Attributes) GitRepo represents a git repository at a particular revision. DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir into the Pod's container. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--git_repo))
-- `glusterfs` (Attributes) Glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/glusterfs/README.md (see [below for nested schema](#nestedatt--spec--agent--config--volumes--glusterfs))
-- `host_path` (Attributes) HostPath represents a pre-existing file or directory on the host machine that is directly exposed to the container. This is generally used for system agents or other privileged things that are allowed to see the host machine. Most containers will NOT need this. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath --- TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can not mount host directories as read/write. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--host_path))
-- `iscsi` (Attributes) ISCSI represents an ISCSI Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://examples.k8s.io/volumes/iscsi/README.md (see [below for nested schema](#nestedatt--spec--agent--config--volumes--iscsi))
-- `nfs` (Attributes) NFS represents an NFS mount on the host that shares a pod's lifetime More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs (see [below for nested schema](#nestedatt--spec--agent--config--volumes--nfs))
-- `persistent_volume_claim` (Attributes) PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims (see [below for nested schema](#nestedatt--spec--agent--config--volumes--persistent_volume_claim))
-- `photon_persistent_disk` (Attributes) PhotonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--agent--config--volumes--photon_persistent_disk))
-- `portworx_volume` (Attributes) PortworxVolume represents a portworx volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--agent--config--volumes--portworx_volume))
-- `projected` (Attributes) Items for all in one resources secrets, configmaps, and downward API (see [below for nested schema](#nestedatt--spec--agent--config--volumes--projected))
-- `quobyte` (Attributes) Quobyte represents a Quobyte mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--agent--config--volumes--quobyte))
-- `rbd` (Attributes) RBD represents a Rados Block Device mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md (see [below for nested schema](#nestedatt--spec--agent--config--volumes--rbd))
-- `scale_io` (Attributes) ScaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--scale_io))
-- `secret` (Attributes) Secret represents a secret that should populate this volume. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret (see [below for nested schema](#nestedatt--spec--agent--config--volumes--secret))
-- `storageos` (Attributes) StorageOS represents a StorageOS volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--storageos))
-- `vsphere_volume` (Attributes) VsphereVolume represents a vSphere volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--agent--config--volumes--vsphere_volume))
+- `name` (String) name of the volume. Must be a DNS_LABEL and unique within the pod. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+
+Optional:
+
+- `aws_elastic_block_store` (Attributes) awsElasticBlockStore represents an AWS Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore (see [below for nested schema](#nestedatt--spec--agent--config--volumes--aws_elastic_block_store))
+- `azure_disk` (Attributes) azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--azure_disk))
+- `azure_file` (Attributes) azureFile represents an Azure File Service mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--azure_file))
+- `cephfs` (Attributes) cephFS represents a Ceph FS mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--agent--config--volumes--cephfs))
+- `cinder` (Attributes) cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md (see [below for nested schema](#nestedatt--spec--agent--config--volumes--cinder))
+- `config_map` (Attributes) configMap represents a configMap that should populate this volume (see [below for nested schema](#nestedatt--spec--agent--config--volumes--config_map))
+- `csi` (Attributes) csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature). (see [below for nested schema](#nestedatt--spec--agent--config--volumes--csi))
+- `downward_api` (Attributes) downwardAPI represents downward API about the pod that should populate this volume (see [below for nested schema](#nestedatt--spec--agent--config--volumes--downward_api))
+- `empty_dir` (Attributes) emptyDir represents a temporary directory that shares a pod's lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir (see [below for nested schema](#nestedatt--spec--agent--config--volumes--empty_dir))
+- `ephemeral` (Attributes) ephemeral represents a volume that is handled by a cluster storage driver. The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts, and deleted when the pod is removed. Use this if: a) the volume is only needed while the pod runs, b) features of normal volumes like restoring from snapshot or capacity tracking are needed, c) the storage driver is specified through a storage class, and d) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim). Use PersistentVolumeClaim or one of the vendor-specific APIs for volumes that persist for longer than the lifecycle of an individual pod. Use CSI for light-weight local ephemeral volumes if the CSI driver is meant to be used that way - see the documentation of the driver for more information. A pod can use both types of ephemeral volumes and persistent volumes at the same time. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--ephemeral))
+- `fc` (Attributes) fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--fc))
+- `flex_volume` (Attributes) flexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--flex_volume))
+- `flocker` (Attributes) flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running (see [below for nested schema](#nestedatt--spec--agent--config--volumes--flocker))
+- `gce_persistent_disk` (Attributes) gcePersistentDisk represents a GCE Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk (see [below for nested schema](#nestedatt--spec--agent--config--volumes--gce_persistent_disk))
+- `git_repo` (Attributes) gitRepo represents a git repository at a particular revision. DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir into the Pod's container. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--git_repo))
+- `glusterfs` (Attributes) glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/glusterfs/README.md (see [below for nested schema](#nestedatt--spec--agent--config--volumes--glusterfs))
+- `host_path` (Attributes) hostPath represents a pre-existing file or directory on the host machine that is directly exposed to the container. This is generally used for system agents or other privileged things that are allowed to see the host machine. Most containers will NOT need this. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath --- TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can not mount host directories as read/write. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--host_path))
+- `iscsi` (Attributes) iscsi represents an ISCSI Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://examples.k8s.io/volumes/iscsi/README.md (see [below for nested schema](#nestedatt--spec--agent--config--volumes--iscsi))
+- `nfs` (Attributes) nfs represents an NFS mount on the host that shares a pod's lifetime More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs (see [below for nested schema](#nestedatt--spec--agent--config--volumes--nfs))
+- `persistent_volume_claim` (Attributes) persistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims (see [below for nested schema](#nestedatt--spec--agent--config--volumes--persistent_volume_claim))
+- `photon_persistent_disk` (Attributes) photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--agent--config--volumes--photon_persistent_disk))
+- `portworx_volume` (Attributes) portworxVolume represents a portworx volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--agent--config--volumes--portworx_volume))
+- `projected` (Attributes) projected items for all in one resources secrets, configmaps, and downward API (see [below for nested schema](#nestedatt--spec--agent--config--volumes--projected))
+- `quobyte` (Attributes) quobyte represents a Quobyte mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--agent--config--volumes--quobyte))
+- `rbd` (Attributes) rbd represents a Rados Block Device mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md (see [below for nested schema](#nestedatt--spec--agent--config--volumes--rbd))
+- `scale_io` (Attributes) scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--scale_io))
+- `secret` (Attributes) secret represents a secret that should populate this volume. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret (see [below for nested schema](#nestedatt--spec--agent--config--volumes--secret))
+- `storageos` (Attributes) storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--storageos))
+- `vsphere_volume` (Attributes) vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--agent--config--volumes--vsphere_volume))
### Nested Schema for `spec.agent.config.volumes.aws_elastic_block_store`
Required:
-- `volume_id` (String) Unique ID of the persistent disk resource in AWS (Amazon EBS volume). More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+- `volume_id` (String) volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume). More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
Optional:
-- `fs_type` (String) Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore TODO: how do we prevent errors in the filesystem from compromising the machine
-- `partition` (Number) The partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as '1'. Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).
-- `read_only` (Boolean) Specify 'true' to force and set the ReadOnly property in VolumeMounts to 'true'. If omitted, the default is 'false'. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore TODO: how do we prevent errors in the filesystem from compromising the machine
+- `partition` (Number) partition is the partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as '1'. Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).
+- `read_only` (Boolean) readOnly value true will force the readOnly setting in VolumeMounts. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
@@ -1240,15 +1240,15 @@ Optional:
Required:
-- `disk_name` (String) The Name of the data disk in the blob storage
-- `disk_uri` (String) The URI the data disk in the blob storage
+- `disk_name` (String) diskName is the Name of the data disk in the blob storage
+- `disk_uri` (String) diskURI is the URI of data disk in the blob storage
Optional:
-- `caching_mode` (String) Host Caching mode: None, Read Only, Read Write.
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
-- `kind` (String) Expected values Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared
-- `read_only` (Boolean) Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `caching_mode` (String) cachingMode is the Host Caching mode: None, Read Only, Read Write.
+- `fs_type` (String) fsType is Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `kind` (String) kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared
+- `read_only` (Boolean) readOnly Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
@@ -1256,12 +1256,12 @@ Optional:
Required:
-- `secret_name` (String) the name of secret that contains Azure Storage Account Name and Key
-- `share_name` (String) Share Name
+- `secret_name` (String) secretName is the name of secret that contains Azure Storage Account Name and Key
+- `share_name` (String) shareName is the azure share Name
Optional:
-- `read_only` (Boolean) Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
@@ -1269,15 +1269,15 @@ Optional:
Required:
-- `monitors` (List of String) Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `monitors` (List of String) monitors is Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
Optional:
-- `path` (String) Optional: Used as the mounted root, rather than the full Ceph tree, default is /
-- `read_only` (Boolean) Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
-- `secret_file` (String) Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
-- `secret_ref` (Attributes) Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--agent--config--volumes--cephfs--secret_ref))
-- `user` (String) Optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `path` (String) path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /
+- `read_only` (Boolean) readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `secret_file` (String) secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `secret_ref` (Attributes) secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--agent--config--volumes--cephfs--secret_ref))
+- `user` (String) user is optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
### Nested Schema for `spec.agent.config.volumes.cephfs.secret_ref`
@@ -1293,13 +1293,13 @@ Optional:
Required:
-- `volume_id` (String) volume id used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+- `volume_id` (String) volumeID used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
-- `read_only` (Boolean) Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
-- `secret_ref` (Attributes) Optional: points to a secret object containing parameters used to connect to OpenStack. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--cinder--secret_ref))
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+- `secret_ref` (Attributes) secretRef is optional: points to a secret object containing parameters used to connect to OpenStack. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--cinder--secret_ref))
### Nested Schema for `spec.agent.config.volumes.cinder.secret_ref`
@@ -1315,22 +1315,22 @@ Optional:
Optional:
-- `default_mode` (Number) Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
-- `items` (Attributes List) If unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--config_map--items))
+- `default_mode` (Number) defaultMode is optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--config_map--items))
- `name` (String) Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?
-- `optional` (Boolean) Specify whether the ConfigMap or its keys must be defined
+- `optional` (Boolean) optional specify whether the ConfigMap or its keys must be defined
### Nested Schema for `spec.agent.config.volumes.config_map.items`
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -1339,14 +1339,14 @@ Optional:
Required:
-- `driver` (String) Driver is the name of the CSI driver that handles this volume. Consult with your admin for the correct name as registered in the cluster.
+- `driver` (String) driver is the name of the CSI driver that handles this volume. Consult with your admin for the correct name as registered in the cluster.
Optional:
-- `fs_type` (String) Filesystem type to mount. Ex. 'ext4', 'xfs', 'ntfs'. If not provided, the empty value is passed to the associated CSI driver which will determine the default filesystem to apply.
-- `node_publish_secret_ref` (Attributes) NodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secret references are passed. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--csi--node_publish_secret_ref))
-- `read_only` (Boolean) Specifies a read-only configuration for the volume. Defaults to false (read/write).
-- `volume_attributes` (Map of String) VolumeAttributes stores driver-specific properties that are passed to the CSI driver. Consult your driver's documentation for supported values.
+- `fs_type` (String) fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'. If not provided, the empty value is passed to the associated CSI driver which will determine the default filesystem to apply.
+- `node_publish_secret_ref` (Attributes) nodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secret references are passed. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--csi--node_publish_secret_ref))
+- `read_only` (Boolean) readOnly specifies a read-only configuration for the volume. Defaults to false (read/write).
+- `volume_attributes` (Map of String) volumeAttributes stores driver-specific properties that are passed to the CSI driver. Consult your driver's documentation for supported values.
### Nested Schema for `spec.agent.config.volumes.csi.node_publish_secret_ref`
@@ -1410,8 +1410,8 @@ Optional:
Optional:
-- `medium` (String) What type of storage medium should back this directory. The default is '' which means to use the node's default medium. Must be an empty string (default) or Memory. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
-- `size_limit` (String) Total amount of local storage required for this EmptyDir volume. The size limit is also applicable for memory medium. The maximum usage on memory medium EmptyDir would be the minimum value between the SizeLimit specified here and the sum of memory limits of all containers in a pod. The default is nil which means that the limit is undefined. More info: http://kubernetes.io/docs/user-guide/volumes#emptydir
+- `medium` (String) medium represents what type of storage medium should back this directory. The default is '' which means to use the node's default medium. Must be an empty string (default) or Memory. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
+- `size_limit` (String) sizeLimit is the total amount of local storage required for this EmptyDir volume. The size limit is also applicable for memory medium. The maximum usage on memory medium EmptyDir would be the minimum value between the SizeLimit specified here and the sum of memory limits of all containers in a pod. The default is nil which means that the limit is undefined. More info: http://kubernetes.io/docs/user-guide/volumes#emptydir
@@ -1437,14 +1437,14 @@ Optional:
Optional:
-- `access_modes` (List of String) AccessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
-- `data_source` (Attributes) This field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--ephemeral--volume_claim_template--spec--data_source))
-- `data_source_ref` (Attributes) Specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef preserves all values, and generates an error if a disallowed value is specified. (Alpha) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--ephemeral--volume_claim_template--spec--data_source_ref))
-- `resources` (Attributes) Resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources (see [below for nested schema](#nestedatt--spec--agent--config--volumes--ephemeral--volume_claim_template--spec--resources))
-- `selector` (Attributes) A label query over volumes to consider for binding. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--ephemeral--volume_claim_template--spec--selector))
-- `storage_class_name` (String) Name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
+- `access_modes` (List of String) accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
+- `data_source` (Attributes) dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--ephemeral--volume_claim_template--spec--data_source))
+- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef preserves all values, and generates an error if a disallowed value is specified. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--ephemeral--volume_claim_template--spec--data_source_ref))
+- `resources` (Attributes) resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources (see [below for nested schema](#nestedatt--spec--agent--config--volumes--ephemeral--volume_claim_template--spec--resources))
+- `selector` (Attributes) selector is a label query over volumes to consider for binding. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--ephemeral--volume_claim_template--spec--selector))
+- `storage_class_name` (String) storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
- `volume_mode` (String) volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.
-- `volume_name` (String) VolumeName is the binding reference to the PersistentVolume backing this claim.
+- `volume_name` (String) volumeName is the binding reference to the PersistentVolume backing this claim.
### Nested Schema for `spec.agent.config.volumes.ephemeral.volume_claim_template.spec.data_source`
@@ -1511,11 +1511,11 @@ Optional:
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. TODO: how do we prevent errors in the filesystem from compromising the machine
-- `lun` (Number) Optional: FC target lun number
-- `read_only` (Boolean) Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
-- `target_ww_ns` (List of String) Optional: FC target worldwide names (WWNs)
-- `wwids` (List of String) Optional: FC volume world wide identifiers (wwids) Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. TODO: how do we prevent errors in the filesystem from compromising the machine
+- `lun` (Number) lun is Optional: FC target lun number
+- `read_only` (Boolean) readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `target_ww_ns` (List of String) targetWWNs is Optional: FC target worldwide names (WWNs)
+- `wwids` (List of String) wwids Optional: FC volume world wide identifiers (wwids) Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.
@@ -1523,14 +1523,14 @@ Optional:
Required:
-- `driver` (String) Driver is the name of the driver to use for this volume.
+- `driver` (String) driver is the name of the driver to use for this volume.
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.
-- `options` (Map of String) Optional: Extra command options if any.
-- `read_only` (Boolean) Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
-- `secret_ref` (Attributes) Optional: SecretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--flex_volume--secret_ref))
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.
+- `options` (Map of String) options is Optional: this field holds extra command options if any.
+- `read_only` (Boolean) readOnly is Optional: defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `secret_ref` (Attributes) secretRef is Optional: secretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--flex_volume--secret_ref))
### Nested Schema for `spec.agent.config.volumes.flex_volume.secret_ref`
@@ -1546,8 +1546,8 @@ Optional:
Optional:
-- `dataset_name` (String) Name of the dataset stored as metadata -> name on the dataset for Flocker should be considered as deprecated
-- `dataset_uuid` (String) UUID of the dataset. This is unique identifier of a Flocker dataset
+- `dataset_name` (String) datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker should be considered as deprecated
+- `dataset_uuid` (String) datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset
@@ -1555,13 +1555,13 @@ Optional:
Required:
-- `pd_name` (String) Unique name of the PD resource in GCE. Used to identify the disk in GCE. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+- `pd_name` (String) pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
Optional:
-- `fs_type` (String) Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk TODO: how do we prevent errors in the filesystem from compromising the machine
-- `partition` (Number) The partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as '1'. Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty). More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
-- `read_only` (Boolean) ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+- `fs_type` (String) fsType is filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk TODO: how do we prevent errors in the filesystem from compromising the machine
+- `partition` (Number) partition is the partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as '1'. Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty). More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
@@ -1569,12 +1569,12 @@ Optional:
Required:
-- `repository` (String) Repository URL
+- `repository` (String) repository is the URL
Optional:
-- `directory` (String) Target directory name. Must not contain or start with '..'. If '.' is supplied, the volume directory will be the git repository. Otherwise, if specified, the volume will contain the git repository in the subdirectory with the given name.
-- `revision` (String) Commit hash for the specified revision.
+- `directory` (String) directory is the target directory name. Must not contain or start with '..'. If '.' is supplied, the volume directory will be the git repository. Otherwise, if specified, the volume will contain the git repository in the subdirectory with the given name.
+- `revision` (String) revision is the commit hash for the specified revision.
@@ -1582,12 +1582,12 @@ Optional:
Required:
-- `endpoints` (String) EndpointsName is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
-- `path` (String) Path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+- `endpoints` (String) endpoints is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+- `path` (String) path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
Optional:
-- `read_only` (Boolean) ReadOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+- `read_only` (Boolean) readOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
@@ -1595,11 +1595,11 @@ Optional:
Required:
-- `path` (String) Path of the directory on the host. If the path is a symlink, it will follow the link to the real path. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+- `path` (String) path of the directory on the host. If the path is a symlink, it will follow the link to the real path. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
Optional:
-- `type` (String) Type for HostPath Volume Defaults to '' More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+- `type` (String) type for HostPath Volume Defaults to '' More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
@@ -1607,20 +1607,20 @@ Optional:
Required:
-- `iqn` (String) Target iSCSI Qualified Name.
-- `lun` (Number) iSCSI Target Lun number.
-- `target_portal` (String) iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
+- `iqn` (String) iqn is the target iSCSI Qualified Name.
+- `lun` (Number) lun represents iSCSI Target Lun number.
+- `target_portal` (String) targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
Optional:
-- `chap_auth_discovery` (Boolean) whether support iSCSI Discovery CHAP authentication
-- `chap_auth_session` (Boolean) whether support iSCSI Session CHAP authentication
-- `fs_type` (String) Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi TODO: how do we prevent errors in the filesystem from compromising the machine
-- `initiator_name` (String) Custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface : will be created for the connection.
-- `iscsi_interface` (String) iSCSI Interface Name that uses an iSCSI transport. Defaults to 'default' (tcp).
-- `portals` (List of String) iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
-- `read_only` (Boolean) ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.
-- `secret_ref` (Attributes) CHAP Secret for iSCSI target and initiator authentication (see [below for nested schema](#nestedatt--spec--agent--config--volumes--iscsi--secret_ref))
+- `chap_auth_discovery` (Boolean) chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication
+- `chap_auth_session` (Boolean) chapAuthSession defines whether support iSCSI Session CHAP authentication
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi TODO: how do we prevent errors in the filesystem from compromising the machine
+- `initiator_name` (String) initiatorName is the custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface : will be created for the connection.
+- `iscsi_interface` (String) iscsiInterface is the interface Name that uses an iSCSI transport. Defaults to 'default' (tcp).
+- `portals` (List of String) portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.
+- `secret_ref` (Attributes) secretRef is the CHAP Secret for iSCSI target and initiator authentication (see [below for nested schema](#nestedatt--spec--agent--config--volumes--iscsi--secret_ref))
### Nested Schema for `spec.agent.config.volumes.iscsi.secret_ref`
@@ -1636,12 +1636,12 @@ Optional:
Required:
-- `path` (String) Path that is exported by the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
-- `server` (String) Server is the hostname or IP address of the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+- `path` (String) path that is exported by the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+- `server` (String) server is the hostname or IP address of the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
Optional:
-- `read_only` (Boolean) ReadOnly here will force the NFS export to be mounted with read-only permissions. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+- `read_only` (Boolean) readOnly here will force the NFS export to be mounted with read-only permissions. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
@@ -1649,11 +1649,11 @@ Optional:
Required:
-- `claim_name` (String) ClaimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+- `claim_name` (String) claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
Optional:
-- `read_only` (Boolean) Will force the ReadOnly setting in VolumeMounts. Default false.
+- `read_only` (Boolean) readOnly Will force the ReadOnly setting in VolumeMounts. Default false.
@@ -1661,11 +1661,11 @@ Optional:
Required:
-- `pd_id` (String) ID that identifies Photon Controller persistent disk
+- `pd_id` (String) pdID is the ID that identifies Photon Controller persistent disk
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
@@ -1673,12 +1673,12 @@ Optional:
Required:
-- `volume_id` (String) VolumeID uniquely identifies a Portworx volume
+- `volume_id` (String) volumeID uniquely identifies a Portworx volume
Optional:
-- `fs_type` (String) FSType represents the filesystem type to mount Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.
-- `read_only` (Boolean) Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `fs_type` (String) fSType represents the filesystem type to mount Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
@@ -1686,39 +1686,39 @@ Optional:
Optional:
-- `default_mode` (Number) Mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
-- `sources` (Attributes List) list of volume projections (see [below for nested schema](#nestedatt--spec--agent--config--volumes--projected--sources))
+- `default_mode` (Number) defaultMode are the mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `sources` (Attributes List) sources is the list of volume projections (see [below for nested schema](#nestedatt--spec--agent--config--volumes--projected--sources))
### Nested Schema for `spec.agent.config.volumes.projected.sources`
Optional:
-- `config_map` (Attributes) information about the configMap data to project (see [below for nested schema](#nestedatt--spec--agent--config--volumes--projected--sources--config_map))
-- `downward_api` (Attributes) information about the downwardAPI data to project (see [below for nested schema](#nestedatt--spec--agent--config--volumes--projected--sources--downward_api))
-- `secret` (Attributes) information about the secret data to project (see [below for nested schema](#nestedatt--spec--agent--config--volumes--projected--sources--secret))
-- `service_account_token` (Attributes) information about the serviceAccountToken data to project (see [below for nested schema](#nestedatt--spec--agent--config--volumes--projected--sources--service_account_token))
+- `config_map` (Attributes) configMap information about the configMap data to project (see [below for nested schema](#nestedatt--spec--agent--config--volumes--projected--sources--config_map))
+- `downward_api` (Attributes) downwardAPI information about the downwardAPI data to project (see [below for nested schema](#nestedatt--spec--agent--config--volumes--projected--sources--downward_api))
+- `secret` (Attributes) secret information about the secret data to project (see [below for nested schema](#nestedatt--spec--agent--config--volumes--projected--sources--secret))
+- `service_account_token` (Attributes) serviceAccountToken is information about the serviceAccountToken data to project (see [below for nested schema](#nestedatt--spec--agent--config--volumes--projected--sources--service_account_token))
### Nested Schema for `spec.agent.config.volumes.projected.sources.config_map`
Optional:
-- `items` (Attributes List) If unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--projected--sources--config_map--items))
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--projected--sources--config_map--items))
- `name` (String) Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?
-- `optional` (Boolean) Specify whether the ConfigMap or its keys must be defined
+- `optional` (Boolean) optional specify whether the ConfigMap or its keys must be defined
### Nested Schema for `spec.agent.config.volumes.projected.sources.config_map.items`
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -1774,21 +1774,21 @@ Optional:
Optional:
-- `items` (Attributes List) If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--projected--sources--secret--items))
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--projected--sources--secret--items))
- `name` (String) Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?
-- `optional` (Boolean) Specify whether the Secret or its key must be defined
+- `optional` (Boolean) optional field specify whether the Secret or its key must be defined
### Nested Schema for `spec.agent.config.volumes.projected.sources.secret.items`
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -1797,12 +1797,12 @@ Optional:
Required:
-- `path` (String) Path is the path relative to the mount point of the file to project the token into.
+- `path` (String) path is the path relative to the mount point of the file to project the token into.
Optional:
-- `audience` (String) Audience is the intended audience of the token. A recipient of a token must identify itself with an identifier specified in the audience of the token, and otherwise should reject the token. The audience defaults to the identifier of the apiserver.
-- `expiration_seconds` (Number) ExpirationSeconds is the requested duration of validity of the service account token. As the token approaches expiration, the kubelet volume plugin will proactively rotate the service account token. The kubelet will start trying to rotate the token if the token is older than 80 percent of its time to live or if the token is older than 24 hours.Defaults to 1 hour and must be at least 10 minutes.
+- `audience` (String) audience is the intended audience of the token. A recipient of a token must identify itself with an identifier specified in the audience of the token, and otherwise should reject the token. The audience defaults to the identifier of the apiserver.
+- `expiration_seconds` (Number) expirationSeconds is the requested duration of validity of the service account token. As the token approaches expiration, the kubelet volume plugin will proactively rotate the service account token. The kubelet will start trying to rotate the token if the token is older than 80 percent of its time to live or if the token is older than 24 hours.Defaults to 1 hour and must be at least 10 minutes.
@@ -1812,15 +1812,15 @@ Optional:
Required:
-- `registry` (String) Registry represents a single or multiple Quobyte Registry services specified as a string as host:port pair (multiple entries are separated with commas) which acts as the central registry for volumes
-- `volume` (String) Volume is a string that references an already created Quobyte volume by name.
+- `registry` (String) registry represents a single or multiple Quobyte Registry services specified as a string as host:port pair (multiple entries are separated with commas) which acts as the central registry for volumes
+- `volume` (String) volume is a string that references an already created Quobyte volume by name.
Optional:
-- `group` (String) Group to map volume access to Default is no group
-- `read_only` (Boolean) ReadOnly here will force the Quobyte volume to be mounted with read-only permissions. Defaults to false.
-- `tenant` (String) Tenant owning the given Quobyte volume in the Backend Used with dynamically provisioned Quobyte volumes, value is set by the plugin
-- `user` (String) User to map volume access to Defaults to serivceaccount user
+- `group` (String) group to map volume access to Default is no group
+- `read_only` (Boolean) readOnly here will force the Quobyte volume to be mounted with read-only permissions. Defaults to false.
+- `tenant` (String) tenant owning the given Quobyte volume in the Backend Used with dynamically provisioned Quobyte volumes, value is set by the plugin
+- `user` (String) user to map volume access to Defaults to serivceaccount user
@@ -1828,17 +1828,17 @@ Optional:
Required:
-- `image` (String) The rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
-- `monitors` (List of String) A collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `image` (String) image is the rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `monitors` (List of String) monitors is a collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
Optional:
-- `fs_type` (String) Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd TODO: how do we prevent errors in the filesystem from compromising the machine
-- `keyring` (String) Keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
-- `pool` (String) The rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
-- `read_only` (Boolean) ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
-- `secret_ref` (Attributes) SecretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--agent--config--volumes--rbd--secret_ref))
-- `user` (String) The rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd TODO: how do we prevent errors in the filesystem from compromising the machine
+- `keyring` (String) keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `pool` (String) pool is the rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `secret_ref` (Attributes) secretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--agent--config--volumes--rbd--secret_ref))
+- `user` (String) user is the rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
### Nested Schema for `spec.agent.config.volumes.rbd.secret_ref`
@@ -1854,19 +1854,19 @@ Optional:
Required:
-- `gateway` (String) The host address of the ScaleIO API Gateway.
-- `secret_ref` (Attributes) SecretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--scale_io--secret_ref))
-- `system` (String) The name of the storage system as configured in ScaleIO.
+- `gateway` (String) gateway is the host address of the ScaleIO API Gateway.
+- `secret_ref` (Attributes) secretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--scale_io--secret_ref))
+- `system` (String) system is the name of the storage system as configured in ScaleIO.
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Default is 'xfs'.
-- `protection_domain` (String) The name of the ScaleIO Protection Domain for the configured storage.
-- `read_only` (Boolean) Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
-- `ssl_enabled` (Boolean) Flag to enable/disable SSL communication with Gateway, default false
-- `storage_mode` (String) Indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.
-- `storage_pool` (String) The ScaleIO Storage Pool associated with the protection domain.
-- `volume_name` (String) The name of a volume already created in the ScaleIO system that is associated with this volume source.
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Default is 'xfs'.
+- `protection_domain` (String) protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.
+- `read_only` (Boolean) readOnly Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `ssl_enabled` (Boolean) sslEnabled Flag enable/disable SSL communication with Gateway, default false
+- `storage_mode` (String) storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.
+- `storage_pool` (String) storagePool is the ScaleIO Storage Pool associated with the protection domain.
+- `volume_name` (String) volumeName is the name of a volume already created in the ScaleIO system that is associated with this volume source.
### Nested Schema for `spec.agent.config.volumes.scale_io.secret_ref`
@@ -1882,22 +1882,22 @@ Optional:
Optional:
-- `default_mode` (Number) Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
-- `items` (Attributes List) If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--secret--items))
-- `optional` (Boolean) Specify whether the Secret or its keys must be defined
-- `secret_name` (String) Name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
+- `default_mode` (Number) defaultMode is Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) items If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--secret--items))
+- `optional` (Boolean) optional field specify whether the Secret or its keys must be defined
+- `secret_name` (String) secretName is the name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
### Nested Schema for `spec.agent.config.volumes.secret.items`
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -1906,11 +1906,11 @@ Optional:
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
-- `read_only` (Boolean) Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
-- `secret_ref` (Attributes) SecretRef specifies the secret to use for obtaining the StorageOS API credentials. If not specified, default values will be attempted. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--storageos--secret_ref))
-- `volume_name` (String) VolumeName is the human-readable name of the StorageOS volume. Volume names are only unique within a namespace.
-- `volume_namespace` (String) VolumeNamespace specifies the scope of the volume within StorageOS. If no namespace is specified then the Pod's namespace will be used. This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to 'default' if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `secret_ref` (Attributes) secretRef specifies the secret to use for obtaining the StorageOS API credentials. If not specified, default values will be attempted. (see [below for nested schema](#nestedatt--spec--agent--config--volumes--storageos--secret_ref))
+- `volume_name` (String) volumeName is the human-readable name of the StorageOS volume. Volume names are only unique within a namespace.
+- `volume_namespace` (String) volumeNamespace specifies the scope of the volume within StorageOS. If no namespace is specified then the Pod's namespace will be used. This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to 'default' if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.
### Nested Schema for `spec.agent.config.volumes.storageos.secret_ref`
@@ -1926,13 +1926,13 @@ Optional:
Required:
-- `volume_path` (String) Path that identifies vSphere volume vmdk
+- `volume_path` (String) volumePath is the path that identifies vSphere volume vmdk
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
-- `storage_policy_id` (String) Storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.
-- `storage_policy_name` (String) Storage Policy Based Management (SPBM) profile name.
+- `fs_type` (String) fsType is filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `storage_policy_id` (String) storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.
+- `storage_policy_name` (String) storagePolicyName is the storage Policy Based Management (SPBM) profile name.
@@ -2407,12 +2407,12 @@ Optional:
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -2523,12 +2523,12 @@ Optional:
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -2916,8 +2916,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--cluster_agent--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. This field is beta-level and is only honored when PodAffinityNamespaceSelector feature is enabled. (see [below for nested schema](#nestedatt--spec--cluster_agent--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--cluster_agent--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
### Nested Schema for `spec.cluster_agent.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector`
@@ -2975,8 +2975,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--cluster_agent--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. This field is beta-level and is only honored when PodAffinityNamespaceSelector feature is enabled. (see [below for nested schema](#nestedatt--spec--cluster_agent--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--cluster_agent--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
### Nested Schema for `spec.cluster_agent.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.label_selector`
@@ -3050,8 +3050,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--cluster_agent--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. This field is beta-level and is only honored when PodAffinityNamespaceSelector feature is enabled. (see [below for nested schema](#nestedatt--spec--cluster_agent--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--cluster_agent--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
### Nested Schema for `spec.cluster_agent.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector`
@@ -3109,8 +3109,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--cluster_agent--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. This field is beta-level and is only honored when PodAffinityNamespaceSelector feature is enabled. (see [below for nested schema](#nestedatt--spec--cluster_agent--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--cluster_agent--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
### Nested Schema for `spec.cluster_agent.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.label_selector`
@@ -3185,20 +3185,10 @@ Optional:
Optional:
- `agent_communication_mode` (String) agentCommunicationMode corresponds to the mode used by the Datadog application libraries to communicate with the Agent. It can be 'hostip', 'service', or 'socket'.
-- `cws_instrumentation` (Attributes) CWSInstrumentation holds the CWS Instrumentation endpoint configuration (see [below for nested schema](#nestedatt--spec--cluster_agent--config--admission_controller--cws_instrumentation))
- `enabled` (Boolean) Enable the admission controller to be able to inject APM/Dogstatsd config and standard tags (env, service, version) automatically into your pods.
- `mutate_unlabelled` (Boolean) MutateUnlabelled enables injecting config without having the pod label 'admission.datadoghq.com/enabled='true''.
- `service_name` (String) ServiceName corresponds to the webhook service name.
-
-### Nested Schema for `spec.cluster_agent.config.admission_controller.cws_instrumentation`
-
-Optional:
-
-- `enabled` (Boolean) Enable the CWS Instrumentation admission controller endpoint
-- `mode` (String) Mode defines how the CWS Instrumentation endpoint should behave. It can be 'init_container' or 'remote_copy'.
-
-
### Nested Schema for `spec.cluster_agent.config.confd`
@@ -3213,12 +3203,12 @@ Optional:
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -3437,52 +3427,52 @@ Optional:
Required:
-- `name` (String) Volume's name. Must be a DNS_LABEL and unique within the pod. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
-
-Optional:
-
-- `aws_elastic_block_store` (Attributes) AWSElasticBlockStore represents an AWS Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--aws_elastic_block_store))
-- `azure_disk` (Attributes) AzureDisk represents an Azure Data Disk mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--azure_disk))
-- `azure_file` (Attributes) AzureFile represents an Azure File Service mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--azure_file))
-- `cephfs` (Attributes) CephFS represents a Ceph FS mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--cephfs))
-- `cinder` (Attributes) Cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--cinder))
-- `config_map` (Attributes) ConfigMap represents a configMap that should populate this volume (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--config_map))
-- `csi` (Attributes) CSI (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature). (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--csi))
-- `downward_api` (Attributes) DownwardAPI represents downward API about the pod that should populate this volume (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--downward_api))
-- `empty_dir` (Attributes) EmptyDir represents a temporary directory that shares a pod's lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--empty_dir))
-- `ephemeral` (Attributes) Ephemeral represents a volume that is handled by a cluster storage driver. The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts, and deleted when the pod is removed. Use this if: a) the volume is only needed while the pod runs, b) features of normal volumes like restoring from snapshot or capacity tracking are needed, c) the storage driver is specified through a storage class, and d) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim). Use PersistentVolumeClaim or one of the vendor-specific APIs for volumes that persist for longer than the lifecycle of an individual pod. Use CSI for light-weight local ephemeral volumes if the CSI driver is meant to be used that way - see the documentation of the driver for more information. A pod can use both types of ephemeral volumes and persistent volumes at the same time. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--ephemeral))
-- `fc` (Attributes) FC represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--fc))
-- `flex_volume` (Attributes) FlexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--flex_volume))
-- `flocker` (Attributes) Flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--flocker))
-- `gce_persistent_disk` (Attributes) GCEPersistentDisk represents a GCE Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--gce_persistent_disk))
-- `git_repo` (Attributes) GitRepo represents a git repository at a particular revision. DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir into the Pod's container. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--git_repo))
-- `glusterfs` (Attributes) Glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/glusterfs/README.md (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--glusterfs))
-- `host_path` (Attributes) HostPath represents a pre-existing file or directory on the host machine that is directly exposed to the container. This is generally used for system agents or other privileged things that are allowed to see the host machine. Most containers will NOT need this. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath --- TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can not mount host directories as read/write. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--host_path))
-- `iscsi` (Attributes) ISCSI represents an ISCSI Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://examples.k8s.io/volumes/iscsi/README.md (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--iscsi))
-- `nfs` (Attributes) NFS represents an NFS mount on the host that shares a pod's lifetime More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--nfs))
-- `persistent_volume_claim` (Attributes) PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--persistent_volume_claim))
-- `photon_persistent_disk` (Attributes) PhotonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--photon_persistent_disk))
-- `portworx_volume` (Attributes) PortworxVolume represents a portworx volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--portworx_volume))
-- `projected` (Attributes) Items for all in one resources secrets, configmaps, and downward API (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--projected))
-- `quobyte` (Attributes) Quobyte represents a Quobyte mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--quobyte))
-- `rbd` (Attributes) RBD represents a Rados Block Device mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--rbd))
-- `scale_io` (Attributes) ScaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--scale_io))
-- `secret` (Attributes) Secret represents a secret that should populate this volume. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--secret))
-- `storageos` (Attributes) StorageOS represents a StorageOS volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--storageos))
-- `vsphere_volume` (Attributes) VsphereVolume represents a vSphere volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--vsphere_volume))
+- `name` (String) name of the volume. Must be a DNS_LABEL and unique within the pod. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+
+Optional:
+
+- `aws_elastic_block_store` (Attributes) awsElasticBlockStore represents an AWS Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--aws_elastic_block_store))
+- `azure_disk` (Attributes) azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--azure_disk))
+- `azure_file` (Attributes) azureFile represents an Azure File Service mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--azure_file))
+- `cephfs` (Attributes) cephFS represents a Ceph FS mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--cephfs))
+- `cinder` (Attributes) cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--cinder))
+- `config_map` (Attributes) configMap represents a configMap that should populate this volume (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--config_map))
+- `csi` (Attributes) csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature). (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--csi))
+- `downward_api` (Attributes) downwardAPI represents downward API about the pod that should populate this volume (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--downward_api))
+- `empty_dir` (Attributes) emptyDir represents a temporary directory that shares a pod's lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--empty_dir))
+- `ephemeral` (Attributes) ephemeral represents a volume that is handled by a cluster storage driver. The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts, and deleted when the pod is removed. Use this if: a) the volume is only needed while the pod runs, b) features of normal volumes like restoring from snapshot or capacity tracking are needed, c) the storage driver is specified through a storage class, and d) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim). Use PersistentVolumeClaim or one of the vendor-specific APIs for volumes that persist for longer than the lifecycle of an individual pod. Use CSI for light-weight local ephemeral volumes if the CSI driver is meant to be used that way - see the documentation of the driver for more information. A pod can use both types of ephemeral volumes and persistent volumes at the same time. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--ephemeral))
+- `fc` (Attributes) fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--fc))
+- `flex_volume` (Attributes) flexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--flex_volume))
+- `flocker` (Attributes) flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--flocker))
+- `gce_persistent_disk` (Attributes) gcePersistentDisk represents a GCE Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--gce_persistent_disk))
+- `git_repo` (Attributes) gitRepo represents a git repository at a particular revision. DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir into the Pod's container. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--git_repo))
+- `glusterfs` (Attributes) glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/glusterfs/README.md (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--glusterfs))
+- `host_path` (Attributes) hostPath represents a pre-existing file or directory on the host machine that is directly exposed to the container. This is generally used for system agents or other privileged things that are allowed to see the host machine. Most containers will NOT need this. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath --- TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can not mount host directories as read/write. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--host_path))
+- `iscsi` (Attributes) iscsi represents an ISCSI Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://examples.k8s.io/volumes/iscsi/README.md (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--iscsi))
+- `nfs` (Attributes) nfs represents an NFS mount on the host that shares a pod's lifetime More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--nfs))
+- `persistent_volume_claim` (Attributes) persistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--persistent_volume_claim))
+- `photon_persistent_disk` (Attributes) photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--photon_persistent_disk))
+- `portworx_volume` (Attributes) portworxVolume represents a portworx volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--portworx_volume))
+- `projected` (Attributes) projected items for all in one resources secrets, configmaps, and downward API (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--projected))
+- `quobyte` (Attributes) quobyte represents a Quobyte mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--quobyte))
+- `rbd` (Attributes) rbd represents a Rados Block Device mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--rbd))
+- `scale_io` (Attributes) scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--scale_io))
+- `secret` (Attributes) secret represents a secret that should populate this volume. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--secret))
+- `storageos` (Attributes) storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--storageos))
+- `vsphere_volume` (Attributes) vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--vsphere_volume))
### Nested Schema for `spec.cluster_agent.config.volumes.aws_elastic_block_store`
Required:
-- `volume_id` (String) Unique ID of the persistent disk resource in AWS (Amazon EBS volume). More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+- `volume_id` (String) volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume). More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
Optional:
-- `fs_type` (String) Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore TODO: how do we prevent errors in the filesystem from compromising the machine
-- `partition` (Number) The partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as '1'. Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).
-- `read_only` (Boolean) Specify 'true' to force and set the ReadOnly property in VolumeMounts to 'true'. If omitted, the default is 'false'. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore TODO: how do we prevent errors in the filesystem from compromising the machine
+- `partition` (Number) partition is the partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as '1'. Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).
+- `read_only` (Boolean) readOnly value true will force the readOnly setting in VolumeMounts. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
@@ -3490,15 +3480,15 @@ Optional:
Required:
-- `disk_name` (String) The Name of the data disk in the blob storage
-- `disk_uri` (String) The URI the data disk in the blob storage
+- `disk_name` (String) diskName is the Name of the data disk in the blob storage
+- `disk_uri` (String) diskURI is the URI of data disk in the blob storage
Optional:
-- `caching_mode` (String) Host Caching mode: None, Read Only, Read Write.
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
-- `kind` (String) Expected values Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared
-- `read_only` (Boolean) Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `caching_mode` (String) cachingMode is the Host Caching mode: None, Read Only, Read Write.
+- `fs_type` (String) fsType is Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `kind` (String) kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared
+- `read_only` (Boolean) readOnly Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
@@ -3506,12 +3496,12 @@ Optional:
Required:
-- `secret_name` (String) the name of secret that contains Azure Storage Account Name and Key
-- `share_name` (String) Share Name
+- `secret_name` (String) secretName is the name of secret that contains Azure Storage Account Name and Key
+- `share_name` (String) shareName is the azure share Name
Optional:
-- `read_only` (Boolean) Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
@@ -3519,15 +3509,15 @@ Optional:
Required:
-- `monitors` (List of String) Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `monitors` (List of String) monitors is Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
Optional:
-- `path` (String) Optional: Used as the mounted root, rather than the full Ceph tree, default is /
-- `read_only` (Boolean) Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
-- `secret_file` (String) Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
-- `secret_ref` (Attributes) Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--cephfs--secret_ref))
-- `user` (String) Optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `path` (String) path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /
+- `read_only` (Boolean) readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `secret_file` (String) secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `secret_ref` (Attributes) secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--cephfs--secret_ref))
+- `user` (String) user is optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
### Nested Schema for `spec.cluster_agent.config.volumes.cephfs.secret_ref`
@@ -3543,13 +3533,13 @@ Optional:
Required:
-- `volume_id` (String) volume id used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+- `volume_id` (String) volumeID used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
-- `read_only` (Boolean) Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
-- `secret_ref` (Attributes) Optional: points to a secret object containing parameters used to connect to OpenStack. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--cinder--secret_ref))
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+- `secret_ref` (Attributes) secretRef is optional: points to a secret object containing parameters used to connect to OpenStack. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--cinder--secret_ref))
### Nested Schema for `spec.cluster_agent.config.volumes.cinder.secret_ref`
@@ -3565,22 +3555,22 @@ Optional:
Optional:
-- `default_mode` (Number) Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
-- `items` (Attributes List) If unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--config_map--items))
+- `default_mode` (Number) defaultMode is optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--config_map--items))
- `name` (String) Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?
-- `optional` (Boolean) Specify whether the ConfigMap or its keys must be defined
+- `optional` (Boolean) optional specify whether the ConfigMap or its keys must be defined
### Nested Schema for `spec.cluster_agent.config.volumes.config_map.items`
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -3589,14 +3579,14 @@ Optional:
Required:
-- `driver` (String) Driver is the name of the CSI driver that handles this volume. Consult with your admin for the correct name as registered in the cluster.
+- `driver` (String) driver is the name of the CSI driver that handles this volume. Consult with your admin for the correct name as registered in the cluster.
Optional:
-- `fs_type` (String) Filesystem type to mount. Ex. 'ext4', 'xfs', 'ntfs'. If not provided, the empty value is passed to the associated CSI driver which will determine the default filesystem to apply.
-- `node_publish_secret_ref` (Attributes) NodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secret references are passed. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--csi--node_publish_secret_ref))
-- `read_only` (Boolean) Specifies a read-only configuration for the volume. Defaults to false (read/write).
-- `volume_attributes` (Map of String) VolumeAttributes stores driver-specific properties that are passed to the CSI driver. Consult your driver's documentation for supported values.
+- `fs_type` (String) fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'. If not provided, the empty value is passed to the associated CSI driver which will determine the default filesystem to apply.
+- `node_publish_secret_ref` (Attributes) nodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secret references are passed. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--csi--node_publish_secret_ref))
+- `read_only` (Boolean) readOnly specifies a read-only configuration for the volume. Defaults to false (read/write).
+- `volume_attributes` (Map of String) volumeAttributes stores driver-specific properties that are passed to the CSI driver. Consult your driver's documentation for supported values.
### Nested Schema for `spec.cluster_agent.config.volumes.csi.node_publish_secret_ref`
@@ -3660,8 +3650,8 @@ Optional:
Optional:
-- `medium` (String) What type of storage medium should back this directory. The default is '' which means to use the node's default medium. Must be an empty string (default) or Memory. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
-- `size_limit` (String) Total amount of local storage required for this EmptyDir volume. The size limit is also applicable for memory medium. The maximum usage on memory medium EmptyDir would be the minimum value between the SizeLimit specified here and the sum of memory limits of all containers in a pod. The default is nil which means that the limit is undefined. More info: http://kubernetes.io/docs/user-guide/volumes#emptydir
+- `medium` (String) medium represents what type of storage medium should back this directory. The default is '' which means to use the node's default medium. Must be an empty string (default) or Memory. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
+- `size_limit` (String) sizeLimit is the total amount of local storage required for this EmptyDir volume. The size limit is also applicable for memory medium. The maximum usage on memory medium EmptyDir would be the minimum value between the SizeLimit specified here and the sum of memory limits of all containers in a pod. The default is nil which means that the limit is undefined. More info: http://kubernetes.io/docs/user-guide/volumes#emptydir
@@ -3687,14 +3677,14 @@ Optional:
Optional:
-- `access_modes` (List of String) AccessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
-- `data_source` (Attributes) This field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--ephemeral--volume_claim_template--spec--data_source))
-- `data_source_ref` (Attributes) Specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef preserves all values, and generates an error if a disallowed value is specified. (Alpha) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--ephemeral--volume_claim_template--spec--data_source_ref))
-- `resources` (Attributes) Resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--ephemeral--volume_claim_template--spec--resources))
-- `selector` (Attributes) A label query over volumes to consider for binding. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--ephemeral--volume_claim_template--spec--selector))
-- `storage_class_name` (String) Name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
+- `access_modes` (List of String) accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
+- `data_source` (Attributes) dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--ephemeral--volume_claim_template--spec--data_source))
+- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef preserves all values, and generates an error if a disallowed value is specified. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--ephemeral--volume_claim_template--spec--data_source_ref))
+- `resources` (Attributes) resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--ephemeral--volume_claim_template--spec--resources))
+- `selector` (Attributes) selector is a label query over volumes to consider for binding. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--ephemeral--volume_claim_template--spec--selector))
+- `storage_class_name` (String) storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
- `volume_mode` (String) volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.
-- `volume_name` (String) VolumeName is the binding reference to the PersistentVolume backing this claim.
+- `volume_name` (String) volumeName is the binding reference to the PersistentVolume backing this claim.
### Nested Schema for `spec.cluster_agent.config.volumes.ephemeral.volume_claim_template.spec.data_source`
@@ -3761,11 +3751,11 @@ Optional:
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. TODO: how do we prevent errors in the filesystem from compromising the machine
-- `lun` (Number) Optional: FC target lun number
-- `read_only` (Boolean) Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
-- `target_ww_ns` (List of String) Optional: FC target worldwide names (WWNs)
-- `wwids` (List of String) Optional: FC volume world wide identifiers (wwids) Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. TODO: how do we prevent errors in the filesystem from compromising the machine
+- `lun` (Number) lun is Optional: FC target lun number
+- `read_only` (Boolean) readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `target_ww_ns` (List of String) targetWWNs is Optional: FC target worldwide names (WWNs)
+- `wwids` (List of String) wwids Optional: FC volume world wide identifiers (wwids) Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.
@@ -3773,14 +3763,14 @@ Optional:
Required:
-- `driver` (String) Driver is the name of the driver to use for this volume.
+- `driver` (String) driver is the name of the driver to use for this volume.
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.
-- `options` (Map of String) Optional: Extra command options if any.
-- `read_only` (Boolean) Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
-- `secret_ref` (Attributes) Optional: SecretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--flex_volume--secret_ref))
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.
+- `options` (Map of String) options is Optional: this field holds extra command options if any.
+- `read_only` (Boolean) readOnly is Optional: defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `secret_ref` (Attributes) secretRef is Optional: secretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--flex_volume--secret_ref))
### Nested Schema for `spec.cluster_agent.config.volumes.flex_volume.secret_ref`
@@ -3796,8 +3786,8 @@ Optional:
Optional:
-- `dataset_name` (String) Name of the dataset stored as metadata -> name on the dataset for Flocker should be considered as deprecated
-- `dataset_uuid` (String) UUID of the dataset. This is unique identifier of a Flocker dataset
+- `dataset_name` (String) datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker should be considered as deprecated
+- `dataset_uuid` (String) datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset
@@ -3805,13 +3795,13 @@ Optional:
Required:
-- `pd_name` (String) Unique name of the PD resource in GCE. Used to identify the disk in GCE. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+- `pd_name` (String) pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
Optional:
-- `fs_type` (String) Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk TODO: how do we prevent errors in the filesystem from compromising the machine
-- `partition` (Number) The partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as '1'. Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty). More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
-- `read_only` (Boolean) ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+- `fs_type` (String) fsType is filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk TODO: how do we prevent errors in the filesystem from compromising the machine
+- `partition` (Number) partition is the partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as '1'. Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty). More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
@@ -3819,12 +3809,12 @@ Optional:
Required:
-- `repository` (String) Repository URL
+- `repository` (String) repository is the URL
Optional:
-- `directory` (String) Target directory name. Must not contain or start with '..'. If '.' is supplied, the volume directory will be the git repository. Otherwise, if specified, the volume will contain the git repository in the subdirectory with the given name.
-- `revision` (String) Commit hash for the specified revision.
+- `directory` (String) directory is the target directory name. Must not contain or start with '..'. If '.' is supplied, the volume directory will be the git repository. Otherwise, if specified, the volume will contain the git repository in the subdirectory with the given name.
+- `revision` (String) revision is the commit hash for the specified revision.
@@ -3832,12 +3822,12 @@ Optional:
Required:
-- `endpoints` (String) EndpointsName is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
-- `path` (String) Path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+- `endpoints` (String) endpoints is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+- `path` (String) path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
Optional:
-- `read_only` (Boolean) ReadOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+- `read_only` (Boolean) readOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
@@ -3845,11 +3835,11 @@ Optional:
Required:
-- `path` (String) Path of the directory on the host. If the path is a symlink, it will follow the link to the real path. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+- `path` (String) path of the directory on the host. If the path is a symlink, it will follow the link to the real path. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
Optional:
-- `type` (String) Type for HostPath Volume Defaults to '' More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+- `type` (String) type for HostPath Volume Defaults to '' More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
@@ -3857,20 +3847,20 @@ Optional:
Required:
-- `iqn` (String) Target iSCSI Qualified Name.
-- `lun` (Number) iSCSI Target Lun number.
-- `target_portal` (String) iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
+- `iqn` (String) iqn is the target iSCSI Qualified Name.
+- `lun` (Number) lun represents iSCSI Target Lun number.
+- `target_portal` (String) targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
Optional:
-- `chap_auth_discovery` (Boolean) whether support iSCSI Discovery CHAP authentication
-- `chap_auth_session` (Boolean) whether support iSCSI Session CHAP authentication
-- `fs_type` (String) Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi TODO: how do we prevent errors in the filesystem from compromising the machine
-- `initiator_name` (String) Custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface : will be created for the connection.
-- `iscsi_interface` (String) iSCSI Interface Name that uses an iSCSI transport. Defaults to 'default' (tcp).
-- `portals` (List of String) iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
-- `read_only` (Boolean) ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.
-- `secret_ref` (Attributes) CHAP Secret for iSCSI target and initiator authentication (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--iscsi--secret_ref))
+- `chap_auth_discovery` (Boolean) chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication
+- `chap_auth_session` (Boolean) chapAuthSession defines whether support iSCSI Session CHAP authentication
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi TODO: how do we prevent errors in the filesystem from compromising the machine
+- `initiator_name` (String) initiatorName is the custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface : will be created for the connection.
+- `iscsi_interface` (String) iscsiInterface is the interface Name that uses an iSCSI transport. Defaults to 'default' (tcp).
+- `portals` (List of String) portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.
+- `secret_ref` (Attributes) secretRef is the CHAP Secret for iSCSI target and initiator authentication (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--iscsi--secret_ref))
### Nested Schema for `spec.cluster_agent.config.volumes.iscsi.secret_ref`
@@ -3886,12 +3876,12 @@ Optional:
Required:
-- `path` (String) Path that is exported by the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
-- `server` (String) Server is the hostname or IP address of the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+- `path` (String) path that is exported by the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+- `server` (String) server is the hostname or IP address of the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
Optional:
-- `read_only` (Boolean) ReadOnly here will force the NFS export to be mounted with read-only permissions. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+- `read_only` (Boolean) readOnly here will force the NFS export to be mounted with read-only permissions. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
@@ -3899,11 +3889,11 @@ Optional:
Required:
-- `claim_name` (String) ClaimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+- `claim_name` (String) claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
Optional:
-- `read_only` (Boolean) Will force the ReadOnly setting in VolumeMounts. Default false.
+- `read_only` (Boolean) readOnly Will force the ReadOnly setting in VolumeMounts. Default false.
@@ -3911,11 +3901,11 @@ Optional:
Required:
-- `pd_id` (String) ID that identifies Photon Controller persistent disk
+- `pd_id` (String) pdID is the ID that identifies Photon Controller persistent disk
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
@@ -3923,12 +3913,12 @@ Optional:
Required:
-- `volume_id` (String) VolumeID uniquely identifies a Portworx volume
+- `volume_id` (String) volumeID uniquely identifies a Portworx volume
Optional:
-- `fs_type` (String) FSType represents the filesystem type to mount Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.
-- `read_only` (Boolean) Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `fs_type` (String) fSType represents the filesystem type to mount Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
@@ -3936,39 +3926,39 @@ Optional:
Optional:
-- `default_mode` (Number) Mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
-- `sources` (Attributes List) list of volume projections (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--projected--sources))
+- `default_mode` (Number) defaultMode are the mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `sources` (Attributes List) sources is the list of volume projections (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--projected--sources))
### Nested Schema for `spec.cluster_agent.config.volumes.projected.sources`
Optional:
-- `config_map` (Attributes) information about the configMap data to project (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--projected--sources--config_map))
-- `downward_api` (Attributes) information about the downwardAPI data to project (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--projected--sources--downward_api))
-- `secret` (Attributes) information about the secret data to project (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--projected--sources--secret))
-- `service_account_token` (Attributes) information about the serviceAccountToken data to project (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--projected--sources--service_account_token))
+- `config_map` (Attributes) configMap information about the configMap data to project (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--projected--sources--config_map))
+- `downward_api` (Attributes) downwardAPI information about the downwardAPI data to project (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--projected--sources--downward_api))
+- `secret` (Attributes) secret information about the secret data to project (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--projected--sources--secret))
+- `service_account_token` (Attributes) serviceAccountToken is information about the serviceAccountToken data to project (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--projected--sources--service_account_token))
### Nested Schema for `spec.cluster_agent.config.volumes.projected.sources.config_map`
Optional:
-- `items` (Attributes List) If unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--projected--sources--config_map--items))
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--projected--sources--config_map--items))
- `name` (String) Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?
-- `optional` (Boolean) Specify whether the ConfigMap or its keys must be defined
+- `optional` (Boolean) optional specify whether the ConfigMap or its keys must be defined
### Nested Schema for `spec.cluster_agent.config.volumes.projected.sources.config_map.items`
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -4024,21 +4014,21 @@ Optional:
Optional:
-- `items` (Attributes List) If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--projected--sources--secret--items))
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--projected--sources--secret--items))
- `name` (String) Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?
-- `optional` (Boolean) Specify whether the Secret or its key must be defined
+- `optional` (Boolean) optional field specify whether the Secret or its key must be defined
### Nested Schema for `spec.cluster_agent.config.volumes.projected.sources.secret.items`
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -4047,12 +4037,12 @@ Optional:
Required:
-- `path` (String) Path is the path relative to the mount point of the file to project the token into.
+- `path` (String) path is the path relative to the mount point of the file to project the token into.
Optional:
-- `audience` (String) Audience is the intended audience of the token. A recipient of a token must identify itself with an identifier specified in the audience of the token, and otherwise should reject the token. The audience defaults to the identifier of the apiserver.
-- `expiration_seconds` (Number) ExpirationSeconds is the requested duration of validity of the service account token. As the token approaches expiration, the kubelet volume plugin will proactively rotate the service account token. The kubelet will start trying to rotate the token if the token is older than 80 percent of its time to live or if the token is older than 24 hours.Defaults to 1 hour and must be at least 10 minutes.
+- `audience` (String) audience is the intended audience of the token. A recipient of a token must identify itself with an identifier specified in the audience of the token, and otherwise should reject the token. The audience defaults to the identifier of the apiserver.
+- `expiration_seconds` (Number) expirationSeconds is the requested duration of validity of the service account token. As the token approaches expiration, the kubelet volume plugin will proactively rotate the service account token. The kubelet will start trying to rotate the token if the token is older than 80 percent of its time to live or if the token is older than 24 hours.Defaults to 1 hour and must be at least 10 minutes.
@@ -4062,15 +4052,15 @@ Optional:
Required:
-- `registry` (String) Registry represents a single or multiple Quobyte Registry services specified as a string as host:port pair (multiple entries are separated with commas) which acts as the central registry for volumes
-- `volume` (String) Volume is a string that references an already created Quobyte volume by name.
+- `registry` (String) registry represents a single or multiple Quobyte Registry services specified as a string as host:port pair (multiple entries are separated with commas) which acts as the central registry for volumes
+- `volume` (String) volume is a string that references an already created Quobyte volume by name.
Optional:
-- `group` (String) Group to map volume access to Default is no group
-- `read_only` (Boolean) ReadOnly here will force the Quobyte volume to be mounted with read-only permissions. Defaults to false.
-- `tenant` (String) Tenant owning the given Quobyte volume in the Backend Used with dynamically provisioned Quobyte volumes, value is set by the plugin
-- `user` (String) User to map volume access to Defaults to serivceaccount user
+- `group` (String) group to map volume access to Default is no group
+- `read_only` (Boolean) readOnly here will force the Quobyte volume to be mounted with read-only permissions. Defaults to false.
+- `tenant` (String) tenant owning the given Quobyte volume in the Backend Used with dynamically provisioned Quobyte volumes, value is set by the plugin
+- `user` (String) user to map volume access to Defaults to serivceaccount user
@@ -4078,17 +4068,17 @@ Optional:
Required:
-- `image` (String) The rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
-- `monitors` (List of String) A collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `image` (String) image is the rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `monitors` (List of String) monitors is a collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
Optional:
-- `fs_type` (String) Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd TODO: how do we prevent errors in the filesystem from compromising the machine
-- `keyring` (String) Keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
-- `pool` (String) The rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
-- `read_only` (Boolean) ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
-- `secret_ref` (Attributes) SecretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--rbd--secret_ref))
-- `user` (String) The rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd TODO: how do we prevent errors in the filesystem from compromising the machine
+- `keyring` (String) keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `pool` (String) pool is the rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `secret_ref` (Attributes) secretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--rbd--secret_ref))
+- `user` (String) user is the rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
### Nested Schema for `spec.cluster_agent.config.volumes.rbd.secret_ref`
@@ -4104,19 +4094,19 @@ Optional:
Required:
-- `gateway` (String) The host address of the ScaleIO API Gateway.
-- `secret_ref` (Attributes) SecretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--scale_io--secret_ref))
-- `system` (String) The name of the storage system as configured in ScaleIO.
+- `gateway` (String) gateway is the host address of the ScaleIO API Gateway.
+- `secret_ref` (Attributes) secretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--scale_io--secret_ref))
+- `system` (String) system is the name of the storage system as configured in ScaleIO.
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Default is 'xfs'.
-- `protection_domain` (String) The name of the ScaleIO Protection Domain for the configured storage.
-- `read_only` (Boolean) Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
-- `ssl_enabled` (Boolean) Flag to enable/disable SSL communication with Gateway, default false
-- `storage_mode` (String) Indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.
-- `storage_pool` (String) The ScaleIO Storage Pool associated with the protection domain.
-- `volume_name` (String) The name of a volume already created in the ScaleIO system that is associated with this volume source.
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Default is 'xfs'.
+- `protection_domain` (String) protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.
+- `read_only` (Boolean) readOnly Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `ssl_enabled` (Boolean) sslEnabled Flag enable/disable SSL communication with Gateway, default false
+- `storage_mode` (String) storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.
+- `storage_pool` (String) storagePool is the ScaleIO Storage Pool associated with the protection domain.
+- `volume_name` (String) volumeName is the name of a volume already created in the ScaleIO system that is associated with this volume source.
### Nested Schema for `spec.cluster_agent.config.volumes.scale_io.secret_ref`
@@ -4132,22 +4122,22 @@ Optional:
Optional:
-- `default_mode` (Number) Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
-- `items` (Attributes List) If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--secret--items))
-- `optional` (Boolean) Specify whether the Secret or its keys must be defined
-- `secret_name` (String) Name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
+- `default_mode` (Number) defaultMode is Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) items If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--secret--items))
+- `optional` (Boolean) optional field specify whether the Secret or its keys must be defined
+- `secret_name` (String) secretName is the name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
### Nested Schema for `spec.cluster_agent.config.volumes.secret.items`
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -4156,11 +4146,11 @@ Optional:
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
-- `read_only` (Boolean) Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
-- `secret_ref` (Attributes) SecretRef specifies the secret to use for obtaining the StorageOS API credentials. If not specified, default values will be attempted. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--storageos--secret_ref))
-- `volume_name` (String) VolumeName is the human-readable name of the StorageOS volume. Volume names are only unique within a namespace.
-- `volume_namespace` (String) VolumeNamespace specifies the scope of the volume within StorageOS. If no namespace is specified then the Pod's namespace will be used. This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to 'default' if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `secret_ref` (Attributes) secretRef specifies the secret to use for obtaining the StorageOS API credentials. If not specified, default values will be attempted. (see [below for nested schema](#nestedatt--spec--cluster_agent--config--volumes--storageos--secret_ref))
+- `volume_name` (String) volumeName is the human-readable name of the StorageOS volume. Volume names are only unique within a namespace.
+- `volume_namespace` (String) volumeNamespace specifies the scope of the volume within StorageOS. If no namespace is specified then the Pod's namespace will be used. This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to 'default' if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.
### Nested Schema for `spec.cluster_agent.config.volumes.storageos.secret_ref`
@@ -4176,13 +4166,13 @@ Optional:
Required:
-- `volume_path` (String) Path that identifies vSphere volume vmdk
+- `volume_path` (String) volumePath is the path that identifies vSphere volume vmdk
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
-- `storage_policy_id` (String) Storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.
-- `storage_policy_name` (String) Storage Policy Based Management (SPBM) profile name.
+- `fs_type` (String) fsType is filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `storage_policy_id` (String) storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.
+- `storage_policy_name` (String) storagePolicyName is the storage Policy Based Management (SPBM) profile name.
@@ -4430,8 +4420,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. This field is beta-level and is only honored when PodAffinityNamespaceSelector feature is enabled. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
### Nested Schema for `spec.cluster_checks_runner.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector`
@@ -4489,8 +4479,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. This field is beta-level and is only honored when PodAffinityNamespaceSelector feature is enabled. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
### Nested Schema for `spec.cluster_checks_runner.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.label_selector`
@@ -4564,8 +4554,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. This field is beta-level and is only honored when PodAffinityNamespaceSelector feature is enabled. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
### Nested Schema for `spec.cluster_checks_runner.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector`
@@ -4623,8 +4613,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. This field is beta-level and is only honored when PodAffinityNamespaceSelector feature is enabled. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
### Nested Schema for `spec.cluster_checks_runner.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.label_selector`
@@ -4772,7 +4762,7 @@ Optional:
- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--liveness_probe--exec))
- `failure_threshold` (Number) Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
-- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. This is an alpha field and requires enabling GRPCContainerProbe feature gate. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--liveness_probe--grpc))
+- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. This is a beta field and requires enabling GRPCContainerProbe feature gate. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--liveness_probe--grpc))
- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--liveness_probe--http_get))
- `initial_delay_seconds` (Number) Number of seconds after the container has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
- `period_seconds` (Number) How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
@@ -4845,7 +4835,7 @@ Optional:
- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--readiness_probe--exec))
- `failure_threshold` (Number) Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
-- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. This is an alpha field and requires enabling GRPCContainerProbe feature gate. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--readiness_probe--grpc))
+- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. This is a beta field and requires enabling GRPCContainerProbe feature gate. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--readiness_probe--grpc))
- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--readiness_probe--http_get))
- `initial_delay_seconds` (Number) Number of seconds after the container has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
- `period_seconds` (Number) How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
@@ -5001,52 +4991,52 @@ Optional:
Required:
-- `name` (String) Volume's name. Must be a DNS_LABEL and unique within the pod. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
-
-Optional:
-
-- `aws_elastic_block_store` (Attributes) AWSElasticBlockStore represents an AWS Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--aws_elastic_block_store))
-- `azure_disk` (Attributes) AzureDisk represents an Azure Data Disk mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--azure_disk))
-- `azure_file` (Attributes) AzureFile represents an Azure File Service mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--azure_file))
-- `cephfs` (Attributes) CephFS represents a Ceph FS mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--cephfs))
-- `cinder` (Attributes) Cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--cinder))
-- `config_map` (Attributes) ConfigMap represents a configMap that should populate this volume (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--config_map))
-- `csi` (Attributes) CSI (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature). (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--csi))
-- `downward_api` (Attributes) DownwardAPI represents downward API about the pod that should populate this volume (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--downward_api))
-- `empty_dir` (Attributes) EmptyDir represents a temporary directory that shares a pod's lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--empty_dir))
-- `ephemeral` (Attributes) Ephemeral represents a volume that is handled by a cluster storage driver. The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts, and deleted when the pod is removed. Use this if: a) the volume is only needed while the pod runs, b) features of normal volumes like restoring from snapshot or capacity tracking are needed, c) the storage driver is specified through a storage class, and d) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim). Use PersistentVolumeClaim or one of the vendor-specific APIs for volumes that persist for longer than the lifecycle of an individual pod. Use CSI for light-weight local ephemeral volumes if the CSI driver is meant to be used that way - see the documentation of the driver for more information. A pod can use both types of ephemeral volumes and persistent volumes at the same time. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--ephemeral))
-- `fc` (Attributes) FC represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--fc))
-- `flex_volume` (Attributes) FlexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--flex_volume))
-- `flocker` (Attributes) Flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--flocker))
-- `gce_persistent_disk` (Attributes) GCEPersistentDisk represents a GCE Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--gce_persistent_disk))
-- `git_repo` (Attributes) GitRepo represents a git repository at a particular revision. DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir into the Pod's container. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--git_repo))
-- `glusterfs` (Attributes) Glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/glusterfs/README.md (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--glusterfs))
-- `host_path` (Attributes) HostPath represents a pre-existing file or directory on the host machine that is directly exposed to the container. This is generally used for system agents or other privileged things that are allowed to see the host machine. Most containers will NOT need this. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath --- TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can not mount host directories as read/write. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--host_path))
-- `iscsi` (Attributes) ISCSI represents an ISCSI Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://examples.k8s.io/volumes/iscsi/README.md (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--iscsi))
-- `nfs` (Attributes) NFS represents an NFS mount on the host that shares a pod's lifetime More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--nfs))
-- `persistent_volume_claim` (Attributes) PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--persistent_volume_claim))
-- `photon_persistent_disk` (Attributes) PhotonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--photon_persistent_disk))
-- `portworx_volume` (Attributes) PortworxVolume represents a portworx volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--portworx_volume))
-- `projected` (Attributes) Items for all in one resources secrets, configmaps, and downward API (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--projected))
-- `quobyte` (Attributes) Quobyte represents a Quobyte mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--quobyte))
-- `rbd` (Attributes) RBD represents a Rados Block Device mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--rbd))
-- `scale_io` (Attributes) ScaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--scale_io))
-- `secret` (Attributes) Secret represents a secret that should populate this volume. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--secret))
-- `storageos` (Attributes) StorageOS represents a StorageOS volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--storageos))
-- `vsphere_volume` (Attributes) VsphereVolume represents a vSphere volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--vsphere_volume))
+- `name` (String) name of the volume. Must be a DNS_LABEL and unique within the pod. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+
+Optional:
+
+- `aws_elastic_block_store` (Attributes) awsElasticBlockStore represents an AWS Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--aws_elastic_block_store))
+- `azure_disk` (Attributes) azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--azure_disk))
+- `azure_file` (Attributes) azureFile represents an Azure File Service mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--azure_file))
+- `cephfs` (Attributes) cephFS represents a Ceph FS mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--cephfs))
+- `cinder` (Attributes) cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--cinder))
+- `config_map` (Attributes) configMap represents a configMap that should populate this volume (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--config_map))
+- `csi` (Attributes) csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature). (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--csi))
+- `downward_api` (Attributes) downwardAPI represents downward API about the pod that should populate this volume (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--downward_api))
+- `empty_dir` (Attributes) emptyDir represents a temporary directory that shares a pod's lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--empty_dir))
+- `ephemeral` (Attributes) ephemeral represents a volume that is handled by a cluster storage driver. The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts, and deleted when the pod is removed. Use this if: a) the volume is only needed while the pod runs, b) features of normal volumes like restoring from snapshot or capacity tracking are needed, c) the storage driver is specified through a storage class, and d) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim). Use PersistentVolumeClaim or one of the vendor-specific APIs for volumes that persist for longer than the lifecycle of an individual pod. Use CSI for light-weight local ephemeral volumes if the CSI driver is meant to be used that way - see the documentation of the driver for more information. A pod can use both types of ephemeral volumes and persistent volumes at the same time. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--ephemeral))
+- `fc` (Attributes) fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--fc))
+- `flex_volume` (Attributes) flexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--flex_volume))
+- `flocker` (Attributes) flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--flocker))
+- `gce_persistent_disk` (Attributes) gcePersistentDisk represents a GCE Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--gce_persistent_disk))
+- `git_repo` (Attributes) gitRepo represents a git repository at a particular revision. DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir into the Pod's container. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--git_repo))
+- `glusterfs` (Attributes) glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/glusterfs/README.md (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--glusterfs))
+- `host_path` (Attributes) hostPath represents a pre-existing file or directory on the host machine that is directly exposed to the container. This is generally used for system agents or other privileged things that are allowed to see the host machine. Most containers will NOT need this. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath --- TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can not mount host directories as read/write. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--host_path))
+- `iscsi` (Attributes) iscsi represents an ISCSI Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://examples.k8s.io/volumes/iscsi/README.md (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--iscsi))
+- `nfs` (Attributes) nfs represents an NFS mount on the host that shares a pod's lifetime More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--nfs))
+- `persistent_volume_claim` (Attributes) persistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--persistent_volume_claim))
+- `photon_persistent_disk` (Attributes) photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--photon_persistent_disk))
+- `portworx_volume` (Attributes) portworxVolume represents a portworx volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--portworx_volume))
+- `projected` (Attributes) projected items for all in one resources secrets, configmaps, and downward API (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--projected))
+- `quobyte` (Attributes) quobyte represents a Quobyte mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--quobyte))
+- `rbd` (Attributes) rbd represents a Rados Block Device mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--rbd))
+- `scale_io` (Attributes) scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--scale_io))
+- `secret` (Attributes) secret represents a secret that should populate this volume. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--secret))
+- `storageos` (Attributes) storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--storageos))
+- `vsphere_volume` (Attributes) vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--vsphere_volume))
### Nested Schema for `spec.cluster_checks_runner.config.volumes.aws_elastic_block_store`
Required:
-- `volume_id` (String) Unique ID of the persistent disk resource in AWS (Amazon EBS volume). More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+- `volume_id` (String) volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume). More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
Optional:
-- `fs_type` (String) Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore TODO: how do we prevent errors in the filesystem from compromising the machine
-- `partition` (Number) The partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as '1'. Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).
-- `read_only` (Boolean) Specify 'true' to force and set the ReadOnly property in VolumeMounts to 'true'. If omitted, the default is 'false'. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore TODO: how do we prevent errors in the filesystem from compromising the machine
+- `partition` (Number) partition is the partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as '1'. Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).
+- `read_only` (Boolean) readOnly value true will force the readOnly setting in VolumeMounts. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
@@ -5054,15 +5044,15 @@ Optional:
Required:
-- `disk_name` (String) The Name of the data disk in the blob storage
-- `disk_uri` (String) The URI the data disk in the blob storage
+- `disk_name` (String) diskName is the Name of the data disk in the blob storage
+- `disk_uri` (String) diskURI is the URI of data disk in the blob storage
Optional:
-- `caching_mode` (String) Host Caching mode: None, Read Only, Read Write.
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
-- `kind` (String) Expected values Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared
-- `read_only` (Boolean) Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `caching_mode` (String) cachingMode is the Host Caching mode: None, Read Only, Read Write.
+- `fs_type` (String) fsType is Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `kind` (String) kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared
+- `read_only` (Boolean) readOnly Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
@@ -5070,12 +5060,12 @@ Optional:
Required:
-- `secret_name` (String) the name of secret that contains Azure Storage Account Name and Key
-- `share_name` (String) Share Name
+- `secret_name` (String) secretName is the name of secret that contains Azure Storage Account Name and Key
+- `share_name` (String) shareName is the azure share Name
Optional:
-- `read_only` (Boolean) Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
@@ -5083,15 +5073,15 @@ Optional:
Required:
-- `monitors` (List of String) Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `monitors` (List of String) monitors is Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
Optional:
-- `path` (String) Optional: Used as the mounted root, rather than the full Ceph tree, default is /
-- `read_only` (Boolean) Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
-- `secret_file` (String) Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
-- `secret_ref` (Attributes) Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--cephfs--secret_ref))
-- `user` (String) Optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `path` (String) path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /
+- `read_only` (Boolean) readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `secret_file` (String) secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `secret_ref` (Attributes) secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--cephfs--secret_ref))
+- `user` (String) user is optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
### Nested Schema for `spec.cluster_checks_runner.config.volumes.cephfs.secret_ref`
@@ -5107,13 +5097,13 @@ Optional:
Required:
-- `volume_id` (String) volume id used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+- `volume_id` (String) volumeID used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
-- `read_only` (Boolean) Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
-- `secret_ref` (Attributes) Optional: points to a secret object containing parameters used to connect to OpenStack. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--cinder--secret_ref))
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+- `secret_ref` (Attributes) secretRef is optional: points to a secret object containing parameters used to connect to OpenStack. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--cinder--secret_ref))
### Nested Schema for `spec.cluster_checks_runner.config.volumes.cinder.secret_ref`
@@ -5129,22 +5119,22 @@ Optional:
Optional:
-- `default_mode` (Number) Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
-- `items` (Attributes List) If unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--config_map--items))
+- `default_mode` (Number) defaultMode is optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--config_map--items))
- `name` (String) Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?
-- `optional` (Boolean) Specify whether the ConfigMap or its keys must be defined
+- `optional` (Boolean) optional specify whether the ConfigMap or its keys must be defined
### Nested Schema for `spec.cluster_checks_runner.config.volumes.config_map.items`
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -5153,14 +5143,14 @@ Optional:
Required:
-- `driver` (String) Driver is the name of the CSI driver that handles this volume. Consult with your admin for the correct name as registered in the cluster.
+- `driver` (String) driver is the name of the CSI driver that handles this volume. Consult with your admin for the correct name as registered in the cluster.
Optional:
-- `fs_type` (String) Filesystem type to mount. Ex. 'ext4', 'xfs', 'ntfs'. If not provided, the empty value is passed to the associated CSI driver which will determine the default filesystem to apply.
-- `node_publish_secret_ref` (Attributes) NodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secret references are passed. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--csi--node_publish_secret_ref))
-- `read_only` (Boolean) Specifies a read-only configuration for the volume. Defaults to false (read/write).
-- `volume_attributes` (Map of String) VolumeAttributes stores driver-specific properties that are passed to the CSI driver. Consult your driver's documentation for supported values.
+- `fs_type` (String) fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'. If not provided, the empty value is passed to the associated CSI driver which will determine the default filesystem to apply.
+- `node_publish_secret_ref` (Attributes) nodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secret references are passed. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--csi--node_publish_secret_ref))
+- `read_only` (Boolean) readOnly specifies a read-only configuration for the volume. Defaults to false (read/write).
+- `volume_attributes` (Map of String) volumeAttributes stores driver-specific properties that are passed to the CSI driver. Consult your driver's documentation for supported values.
### Nested Schema for `spec.cluster_checks_runner.config.volumes.csi.node_publish_secret_ref`
@@ -5224,8 +5214,8 @@ Optional:
Optional:
-- `medium` (String) What type of storage medium should back this directory. The default is '' which means to use the node's default medium. Must be an empty string (default) or Memory. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
-- `size_limit` (String) Total amount of local storage required for this EmptyDir volume. The size limit is also applicable for memory medium. The maximum usage on memory medium EmptyDir would be the minimum value between the SizeLimit specified here and the sum of memory limits of all containers in a pod. The default is nil which means that the limit is undefined. More info: http://kubernetes.io/docs/user-guide/volumes#emptydir
+- `medium` (String) medium represents what type of storage medium should back this directory. The default is '' which means to use the node's default medium. Must be an empty string (default) or Memory. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
+- `size_limit` (String) sizeLimit is the total amount of local storage required for this EmptyDir volume. The size limit is also applicable for memory medium. The maximum usage on memory medium EmptyDir would be the minimum value between the SizeLimit specified here and the sum of memory limits of all containers in a pod. The default is nil which means that the limit is undefined. More info: http://kubernetes.io/docs/user-guide/volumes#emptydir
@@ -5251,14 +5241,14 @@ Optional:
Optional:
-- `access_modes` (List of String) AccessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
-- `data_source` (Attributes) This field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--ephemeral--volume_claim_template--spec--data_source))
-- `data_source_ref` (Attributes) Specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef preserves all values, and generates an error if a disallowed value is specified. (Alpha) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--ephemeral--volume_claim_template--spec--data_source_ref))
-- `resources` (Attributes) Resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--ephemeral--volume_claim_template--spec--resources))
-- `selector` (Attributes) A label query over volumes to consider for binding. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--ephemeral--volume_claim_template--spec--selector))
-- `storage_class_name` (String) Name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
+- `access_modes` (List of String) accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
+- `data_source` (Attributes) dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--ephemeral--volume_claim_template--spec--data_source))
+- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef preserves all values, and generates an error if a disallowed value is specified. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--ephemeral--volume_claim_template--spec--data_source_ref))
+- `resources` (Attributes) resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--ephemeral--volume_claim_template--spec--resources))
+- `selector` (Attributes) selector is a label query over volumes to consider for binding. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--ephemeral--volume_claim_template--spec--selector))
+- `storage_class_name` (String) storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
- `volume_mode` (String) volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.
-- `volume_name` (String) VolumeName is the binding reference to the PersistentVolume backing this claim.
+- `volume_name` (String) volumeName is the binding reference to the PersistentVolume backing this claim.
### Nested Schema for `spec.cluster_checks_runner.config.volumes.ephemeral.volume_claim_template.spec.data_source`
@@ -5325,11 +5315,11 @@ Optional:
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. TODO: how do we prevent errors in the filesystem from compromising the machine
-- `lun` (Number) Optional: FC target lun number
-- `read_only` (Boolean) Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
-- `target_ww_ns` (List of String) Optional: FC target worldwide names (WWNs)
-- `wwids` (List of String) Optional: FC volume world wide identifiers (wwids) Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. TODO: how do we prevent errors in the filesystem from compromising the machine
+- `lun` (Number) lun is Optional: FC target lun number
+- `read_only` (Boolean) readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `target_ww_ns` (List of String) targetWWNs is Optional: FC target worldwide names (WWNs)
+- `wwids` (List of String) wwids Optional: FC volume world wide identifiers (wwids) Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.
@@ -5337,14 +5327,14 @@ Optional:
Required:
-- `driver` (String) Driver is the name of the driver to use for this volume.
+- `driver` (String) driver is the name of the driver to use for this volume.
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.
-- `options` (Map of String) Optional: Extra command options if any.
-- `read_only` (Boolean) Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
-- `secret_ref` (Attributes) Optional: SecretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--flex_volume--secret_ref))
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.
+- `options` (Map of String) options is Optional: this field holds extra command options if any.
+- `read_only` (Boolean) readOnly is Optional: defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `secret_ref` (Attributes) secretRef is Optional: secretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--flex_volume--secret_ref))
### Nested Schema for `spec.cluster_checks_runner.config.volumes.flex_volume.secret_ref`
@@ -5360,8 +5350,8 @@ Optional:
Optional:
-- `dataset_name` (String) Name of the dataset stored as metadata -> name on the dataset for Flocker should be considered as deprecated
-- `dataset_uuid` (String) UUID of the dataset. This is unique identifier of a Flocker dataset
+- `dataset_name` (String) datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker should be considered as deprecated
+- `dataset_uuid` (String) datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset
@@ -5369,13 +5359,13 @@ Optional:
Required:
-- `pd_name` (String) Unique name of the PD resource in GCE. Used to identify the disk in GCE. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+- `pd_name` (String) pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
Optional:
-- `fs_type` (String) Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk TODO: how do we prevent errors in the filesystem from compromising the machine
-- `partition` (Number) The partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as '1'. Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty). More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
-- `read_only` (Boolean) ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+- `fs_type` (String) fsType is filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk TODO: how do we prevent errors in the filesystem from compromising the machine
+- `partition` (Number) partition is the partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as '1'. Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty). More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
@@ -5383,12 +5373,12 @@ Optional:
Required:
-- `repository` (String) Repository URL
+- `repository` (String) repository is the URL
Optional:
-- `directory` (String) Target directory name. Must not contain or start with '..'. If '.' is supplied, the volume directory will be the git repository. Otherwise, if specified, the volume will contain the git repository in the subdirectory with the given name.
-- `revision` (String) Commit hash for the specified revision.
+- `directory` (String) directory is the target directory name. Must not contain or start with '..'. If '.' is supplied, the volume directory will be the git repository. Otherwise, if specified, the volume will contain the git repository in the subdirectory with the given name.
+- `revision` (String) revision is the commit hash for the specified revision.
@@ -5396,12 +5386,12 @@ Optional:
Required:
-- `endpoints` (String) EndpointsName is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
-- `path` (String) Path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+- `endpoints` (String) endpoints is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+- `path` (String) path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
Optional:
-- `read_only` (Boolean) ReadOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+- `read_only` (Boolean) readOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
@@ -5409,11 +5399,11 @@ Optional:
Required:
-- `path` (String) Path of the directory on the host. If the path is a symlink, it will follow the link to the real path. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+- `path` (String) path of the directory on the host. If the path is a symlink, it will follow the link to the real path. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
Optional:
-- `type` (String) Type for HostPath Volume Defaults to '' More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+- `type` (String) type for HostPath Volume Defaults to '' More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
@@ -5421,20 +5411,20 @@ Optional:
Required:
-- `iqn` (String) Target iSCSI Qualified Name.
-- `lun` (Number) iSCSI Target Lun number.
-- `target_portal` (String) iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
+- `iqn` (String) iqn is the target iSCSI Qualified Name.
+- `lun` (Number) lun represents iSCSI Target Lun number.
+- `target_portal` (String) targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
Optional:
-- `chap_auth_discovery` (Boolean) whether support iSCSI Discovery CHAP authentication
-- `chap_auth_session` (Boolean) whether support iSCSI Session CHAP authentication
-- `fs_type` (String) Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi TODO: how do we prevent errors in the filesystem from compromising the machine
-- `initiator_name` (String) Custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface : will be created for the connection.
-- `iscsi_interface` (String) iSCSI Interface Name that uses an iSCSI transport. Defaults to 'default' (tcp).
-- `portals` (List of String) iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
-- `read_only` (Boolean) ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.
-- `secret_ref` (Attributes) CHAP Secret for iSCSI target and initiator authentication (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--iscsi--secret_ref))
+- `chap_auth_discovery` (Boolean) chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication
+- `chap_auth_session` (Boolean) chapAuthSession defines whether support iSCSI Session CHAP authentication
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi TODO: how do we prevent errors in the filesystem from compromising the machine
+- `initiator_name` (String) initiatorName is the custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface : will be created for the connection.
+- `iscsi_interface` (String) iscsiInterface is the interface Name that uses an iSCSI transport. Defaults to 'default' (tcp).
+- `portals` (List of String) portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.
+- `secret_ref` (Attributes) secretRef is the CHAP Secret for iSCSI target and initiator authentication (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--iscsi--secret_ref))
### Nested Schema for `spec.cluster_checks_runner.config.volumes.iscsi.secret_ref`
@@ -5450,12 +5440,12 @@ Optional:
Required:
-- `path` (String) Path that is exported by the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
-- `server` (String) Server is the hostname or IP address of the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+- `path` (String) path that is exported by the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+- `server` (String) server is the hostname or IP address of the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
Optional:
-- `read_only` (Boolean) ReadOnly here will force the NFS export to be mounted with read-only permissions. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+- `read_only` (Boolean) readOnly here will force the NFS export to be mounted with read-only permissions. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
@@ -5463,11 +5453,11 @@ Optional:
Required:
-- `claim_name` (String) ClaimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+- `claim_name` (String) claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
Optional:
-- `read_only` (Boolean) Will force the ReadOnly setting in VolumeMounts. Default false.
+- `read_only` (Boolean) readOnly Will force the ReadOnly setting in VolumeMounts. Default false.
@@ -5475,11 +5465,11 @@ Optional:
Required:
-- `pd_id` (String) ID that identifies Photon Controller persistent disk
+- `pd_id` (String) pdID is the ID that identifies Photon Controller persistent disk
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
@@ -5487,12 +5477,12 @@ Optional:
Required:
-- `volume_id` (String) VolumeID uniquely identifies a Portworx volume
+- `volume_id` (String) volumeID uniquely identifies a Portworx volume
Optional:
-- `fs_type` (String) FSType represents the filesystem type to mount Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.
-- `read_only` (Boolean) Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `fs_type` (String) fSType represents the filesystem type to mount Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
@@ -5500,39 +5490,39 @@ Optional:
Optional:
-- `default_mode` (Number) Mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
-- `sources` (Attributes List) list of volume projections (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--projected--sources))
+- `default_mode` (Number) defaultMode are the mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `sources` (Attributes List) sources is the list of volume projections (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--projected--sources))
### Nested Schema for `spec.cluster_checks_runner.config.volumes.projected.sources`
Optional:
-- `config_map` (Attributes) information about the configMap data to project (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--projected--sources--config_map))
-- `downward_api` (Attributes) information about the downwardAPI data to project (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--projected--sources--downward_api))
-- `secret` (Attributes) information about the secret data to project (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--projected--sources--secret))
-- `service_account_token` (Attributes) information about the serviceAccountToken data to project (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--projected--sources--service_account_token))
+- `config_map` (Attributes) configMap information about the configMap data to project (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--projected--sources--config_map))
+- `downward_api` (Attributes) downwardAPI information about the downwardAPI data to project (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--projected--sources--downward_api))
+- `secret` (Attributes) secret information about the secret data to project (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--projected--sources--secret))
+- `service_account_token` (Attributes) serviceAccountToken is information about the serviceAccountToken data to project (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--projected--sources--service_account_token))
### Nested Schema for `spec.cluster_checks_runner.config.volumes.projected.sources.config_map`
Optional:
-- `items` (Attributes List) If unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--projected--sources--config_map--items))
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--projected--sources--config_map--items))
- `name` (String) Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?
-- `optional` (Boolean) Specify whether the ConfigMap or its keys must be defined
+- `optional` (Boolean) optional specify whether the ConfigMap or its keys must be defined
### Nested Schema for `spec.cluster_checks_runner.config.volumes.projected.sources.config_map.items`
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -5588,21 +5578,21 @@ Optional:
Optional:
-- `items` (Attributes List) If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--projected--sources--secret--items))
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--projected--sources--secret--items))
- `name` (String) Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?
-- `optional` (Boolean) Specify whether the Secret or its key must be defined
+- `optional` (Boolean) optional field specify whether the Secret or its key must be defined
### Nested Schema for `spec.cluster_checks_runner.config.volumes.projected.sources.secret.items`
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -5611,12 +5601,12 @@ Optional:
Required:
-- `path` (String) Path is the path relative to the mount point of the file to project the token into.
+- `path` (String) path is the path relative to the mount point of the file to project the token into.
Optional:
-- `audience` (String) Audience is the intended audience of the token. A recipient of a token must identify itself with an identifier specified in the audience of the token, and otherwise should reject the token. The audience defaults to the identifier of the apiserver.
-- `expiration_seconds` (Number) ExpirationSeconds is the requested duration of validity of the service account token. As the token approaches expiration, the kubelet volume plugin will proactively rotate the service account token. The kubelet will start trying to rotate the token if the token is older than 80 percent of its time to live or if the token is older than 24 hours.Defaults to 1 hour and must be at least 10 minutes.
+- `audience` (String) audience is the intended audience of the token. A recipient of a token must identify itself with an identifier specified in the audience of the token, and otherwise should reject the token. The audience defaults to the identifier of the apiserver.
+- `expiration_seconds` (Number) expirationSeconds is the requested duration of validity of the service account token. As the token approaches expiration, the kubelet volume plugin will proactively rotate the service account token. The kubelet will start trying to rotate the token if the token is older than 80 percent of its time to live or if the token is older than 24 hours.Defaults to 1 hour and must be at least 10 minutes.
@@ -5626,15 +5616,15 @@ Optional:
Required:
-- `registry` (String) Registry represents a single or multiple Quobyte Registry services specified as a string as host:port pair (multiple entries are separated with commas) which acts as the central registry for volumes
-- `volume` (String) Volume is a string that references an already created Quobyte volume by name.
+- `registry` (String) registry represents a single or multiple Quobyte Registry services specified as a string as host:port pair (multiple entries are separated with commas) which acts as the central registry for volumes
+- `volume` (String) volume is a string that references an already created Quobyte volume by name.
Optional:
-- `group` (String) Group to map volume access to Default is no group
-- `read_only` (Boolean) ReadOnly here will force the Quobyte volume to be mounted with read-only permissions. Defaults to false.
-- `tenant` (String) Tenant owning the given Quobyte volume in the Backend Used with dynamically provisioned Quobyte volumes, value is set by the plugin
-- `user` (String) User to map volume access to Defaults to serivceaccount user
+- `group` (String) group to map volume access to Default is no group
+- `read_only` (Boolean) readOnly here will force the Quobyte volume to be mounted with read-only permissions. Defaults to false.
+- `tenant` (String) tenant owning the given Quobyte volume in the Backend Used with dynamically provisioned Quobyte volumes, value is set by the plugin
+- `user` (String) user to map volume access to Defaults to serivceaccount user
@@ -5642,17 +5632,17 @@ Optional:
Required:
-- `image` (String) The rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
-- `monitors` (List of String) A collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `image` (String) image is the rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `monitors` (List of String) monitors is a collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
Optional:
-- `fs_type` (String) Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd TODO: how do we prevent errors in the filesystem from compromising the machine
-- `keyring` (String) Keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
-- `pool` (String) The rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
-- `read_only` (Boolean) ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
-- `secret_ref` (Attributes) SecretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--rbd--secret_ref))
-- `user` (String) The rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd TODO: how do we prevent errors in the filesystem from compromising the machine
+- `keyring` (String) keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `pool` (String) pool is the rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `secret_ref` (Attributes) secretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--rbd--secret_ref))
+- `user` (String) user is the rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
### Nested Schema for `spec.cluster_checks_runner.config.volumes.rbd.secret_ref`
@@ -5668,19 +5658,19 @@ Optional:
Required:
-- `gateway` (String) The host address of the ScaleIO API Gateway.
-- `secret_ref` (Attributes) SecretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--scale_io--secret_ref))
-- `system` (String) The name of the storage system as configured in ScaleIO.
+- `gateway` (String) gateway is the host address of the ScaleIO API Gateway.
+- `secret_ref` (Attributes) secretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--scale_io--secret_ref))
+- `system` (String) system is the name of the storage system as configured in ScaleIO.
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Default is 'xfs'.
-- `protection_domain` (String) The name of the ScaleIO Protection Domain for the configured storage.
-- `read_only` (Boolean) Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
-- `ssl_enabled` (Boolean) Flag to enable/disable SSL communication with Gateway, default false
-- `storage_mode` (String) Indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.
-- `storage_pool` (String) The ScaleIO Storage Pool associated with the protection domain.
-- `volume_name` (String) The name of a volume already created in the ScaleIO system that is associated with this volume source.
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Default is 'xfs'.
+- `protection_domain` (String) protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.
+- `read_only` (Boolean) readOnly Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `ssl_enabled` (Boolean) sslEnabled Flag enable/disable SSL communication with Gateway, default false
+- `storage_mode` (String) storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.
+- `storage_pool` (String) storagePool is the ScaleIO Storage Pool associated with the protection domain.
+- `volume_name` (String) volumeName is the name of a volume already created in the ScaleIO system that is associated with this volume source.
### Nested Schema for `spec.cluster_checks_runner.config.volumes.scale_io.secret_ref`
@@ -5696,22 +5686,22 @@ Optional:
Optional:
-- `default_mode` (Number) Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
-- `items` (Attributes List) If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--secret--items))
-- `optional` (Boolean) Specify whether the Secret or its keys must be defined
-- `secret_name` (String) Name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
+- `default_mode` (Number) defaultMode is Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) items If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--secret--items))
+- `optional` (Boolean) optional field specify whether the Secret or its keys must be defined
+- `secret_name` (String) secretName is the name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
### Nested Schema for `spec.cluster_checks_runner.config.volumes.secret.items`
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -5720,11 +5710,11 @@ Optional:
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
-- `read_only` (Boolean) Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
-- `secret_ref` (Attributes) SecretRef specifies the secret to use for obtaining the StorageOS API credentials. If not specified, default values will be attempted. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--storageos--secret_ref))
-- `volume_name` (String) VolumeName is the human-readable name of the StorageOS volume. Volume names are only unique within a namespace.
-- `volume_namespace` (String) VolumeNamespace specifies the scope of the volume within StorageOS. If no namespace is specified then the Pod's namespace will be used. This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to 'default' if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `secret_ref` (Attributes) secretRef specifies the secret to use for obtaining the StorageOS API credentials. If not specified, default values will be attempted. (see [below for nested schema](#nestedatt--spec--cluster_checks_runner--config--volumes--storageos--secret_ref))
+- `volume_name` (String) volumeName is the human-readable name of the StorageOS volume. Volume names are only unique within a namespace.
+- `volume_namespace` (String) volumeNamespace specifies the scope of the volume within StorageOS. If no namespace is specified then the Pod's namespace will be used. This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to 'default' if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.
### Nested Schema for `spec.cluster_checks_runner.config.volumes.storageos.secret_ref`
@@ -5740,13 +5730,13 @@ Optional:
Required:
-- `volume_path` (String) Path that identifies vSphere volume vmdk
+- `volume_path` (String) volumePath is the path that identifies vSphere volume vmdk
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
-- `storage_policy_id` (String) Storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.
-- `storage_policy_name` (String) Storage Policy Based Management (SPBM) profile name.
+- `fs_type` (String) fsType is filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `storage_policy_id` (String) storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.
+- `storage_policy_name` (String) storagePolicyName is the storage Policy Based Management (SPBM) profile name.
diff --git a/docs/data-sources/datadoghq_com_datadog_agent_v2alpha1_manifest.md b/docs/data-sources/datadoghq_com_datadog_agent_v2alpha1_manifest.md
index 9d8bcba22..398e92985 100644
--- a/docs/data-sources/datadoghq_com_datadog_agent_v2alpha1_manifest.md
+++ b/docs/data-sources/datadoghq_com_datadog_agent_v2alpha1_manifest.md
@@ -66,6 +66,7 @@ Optional:
- `admission_controller` (Attributes) AdmissionController configuration. (see [below for nested schema](#nestedatt--spec--features--admission_controller))
- `apm` (Attributes) APM (Application Performance Monitoring) configuration. (see [below for nested schema](#nestedatt--spec--features--apm))
+- `asm` (Attributes) ASM (Application Security Management) configuration. (see [below for nested schema](#nestedatt--spec--features--asm))
- `cluster_checks` (Attributes) ClusterChecks configuration. (see [below for nested schema](#nestedatt--spec--features--cluster_checks))
- `cspm` (Attributes) CSPM (Cloud Security Posture Management) configuration. (see [below for nested schema](#nestedatt--spec--features--cspm))
- `cws` (Attributes) CWS (Cloud Workload Security) configuration. (see [below for nested schema](#nestedatt--spec--features--cws))
@@ -73,6 +74,7 @@ Optional:
- `ebpf_check` (Attributes) EBPFCheck configuration. (see [below for nested schema](#nestedatt--spec--features--ebpf_check))
- `event_collection` (Attributes) EventCollection configuration. (see [below for nested schema](#nestedatt--spec--features--event_collection))
- `external_metrics_server` (Attributes) ExternalMetricsServer configuration. (see [below for nested schema](#nestedatt--spec--features--external_metrics_server))
+- `helm_check` (Attributes) HelmCheck configuration. (see [below for nested schema](#nestedatt--spec--features--helm_check))
- `kube_state_metrics_core` (Attributes) KubeStateMetricsCore check configuration. (see [below for nested schema](#nestedatt--spec--features--kube_state_metrics_core))
- `live_container_collection` (Attributes) LiveContainerCollection configuration. (see [below for nested schema](#nestedatt--spec--features--live_container_collection))
- `live_process_collection` (Attributes) LiveProcessCollection configuration. (see [below for nested schema](#nestedatt--spec--features--live_process_collection))
@@ -94,12 +96,204 @@ Optional:
Optional:
- `agent_communication_mode` (String) AgentCommunicationMode corresponds to the mode used by the Datadog application libraries to communicate with the Agent. It can be 'hostip', 'service', or 'socket'.
+- `agent_sidecar_injection` (Attributes) AgentSidecarInjection contains Agent sidecar injection configurations. (see [below for nested schema](#nestedatt--spec--features--admission_controller--agent_sidecar_injection))
+- `cws_instrumentation` (Attributes) CWSInstrumentation holds the CWS Instrumentation endpoint configuration (see [below for nested schema](#nestedatt--spec--features--admission_controller--cws_instrumentation))
- `enabled` (Boolean) Enabled enables the Admission Controller. Default: true
- `failure_policy` (String) FailurePolicy determines how unrecognized and timeout errors are handled.
- `mutate_unlabelled` (Boolean) MutateUnlabelled enables config injection without the need of pod label 'admission.datadoghq.com/enabled='true''. Default: false
+- `registry` (String) Registry defines an image registry for the admission controller.
- `service_name` (String) ServiceName corresponds to the webhook service name.
- `webhook_name` (String) WebhookName is a custom name for the MutatingWebhookConfiguration. Default: 'datadog-webhook'
+
+### Nested Schema for `spec.features.admission_controller.agent_sidecar_injection`
+
+Optional:
+
+- `cluster_agent_communication_enabled` (Boolean) ClusterAgentCommunicationEnabled enables communication between Agent sidecars and the Cluster Agent. Default : true
+- `enabled` (Boolean) Enabled enables Sidecar injections. Default: false
+- `image` (Attributes) Image overrides the default Agent image name and tag for the Agent sidecar. (see [below for nested schema](#nestedatt--spec--features--admission_controller--agent_sidecar_injection--image))
+- `profiles` (Attributes List) Profiles define the sidecar configuration override. Only one profile is supported. (see [below for nested schema](#nestedatt--spec--features--admission_controller--agent_sidecar_injection--profiles))
+- `provider` (String) Provider is used to add infrastructure provider-specific configurations to the Agent sidecar. Currently only 'fargate' is supported. To use the feature in other environments (including local testing) omit the config. See also: https://docs.datadoghq.com/integrations/eks_fargate
+- `registry` (String) Registry overrides the default registry for the sidecar Agent.
+- `selectors` (Attributes List) Selectors define the pod selector for sidecar injection. Only one rule is supported. (see [below for nested schema](#nestedatt--spec--features--admission_controller--agent_sidecar_injection--selectors))
+
+
+### Nested Schema for `spec.features.admission_controller.agent_sidecar_injection.image`
+
+Optional:
+
+- `jmx_enabled` (Boolean) Define whether the Agent image should support JMX. To be used if the Name field does not correspond to a full image string.
+- `name` (String) Define the image to use: Use 'gcr.io/datadoghq/agent:latest' for Datadog Agent 7. Use 'datadog/dogstatsd:latest' for standalone Datadog Agent DogStatsD 7. Use 'gcr.io/datadoghq/cluster-agent:latest' for Datadog Cluster Agent. Use 'agent' with the registry and tag configurations for /agent:. Use 'cluster-agent' with the registry and tag configurations for /cluster-agent:. If the name is the full image string—':' or '/:', then 'tag', 'jmxEnabled', and 'global.registry' values are ignored. Otherwise, image string is created by overriding default settings with supplied 'name', 'tag', and 'jmxEnabled' values; image string is created using default registry unless 'global.registry' is configured.
+- `pull_policy` (String) The Kubernetes pull policy: Use Always, Never, or IfNotPresent.
+- `pull_secrets` (Attributes List) It is possible to specify Docker registry credentials. See https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod (see [below for nested schema](#nestedatt--spec--features--admission_controller--agent_sidecar_injection--image--pull_secrets))
+- `tag` (String) Define the image tag to use. To be used if the Name field does not correspond to a full image string.
+
+
+### Nested Schema for `spec.features.admission_controller.agent_sidecar_injection.image.pull_secrets`
+
+Optional:
+
+- `name` (String) Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?
+
+
+
+
+### Nested Schema for `spec.features.admission_controller.agent_sidecar_injection.profiles`
+
+Optional:
+
+- `env` (Attributes List) EnvVars specifies the environment variables for the profile. (see [below for nested schema](#nestedatt--spec--features--admission_controller--agent_sidecar_injection--profiles--env))
+- `resources` (Attributes) ResourceRequirements specifies the resource requirements for the profile. (see [below for nested schema](#nestedatt--spec--features--admission_controller--agent_sidecar_injection--profiles--resources))
+
+
+### Nested Schema for `spec.features.admission_controller.agent_sidecar_injection.profiles.env`
+
+Required:
+
+- `name` (String) Name of the environment variable. Must be a C_IDENTIFIER.
+
+Optional:
+
+- `value` (String) Variable references $(VAR_NAME) are expanded using the previously defined environment variables in the container and any service environment variables. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. '$$(VAR_NAME)' will produce the string literal '$(VAR_NAME)'. Escaped references will never be expanded, regardless of whether the variable exists or not. Defaults to ''.
+- `value_from` (Attributes) Source for the environment variable's value. Cannot be used if value is not empty. (see [below for nested schema](#nestedatt--spec--features--admission_controller--agent_sidecar_injection--profiles--env--value_from))
+
+
+### Nested Schema for `spec.features.admission_controller.agent_sidecar_injection.profiles.env.value_from`
+
+Optional:
+
+- `config_map_key_ref` (Attributes) Selects a key of a ConfigMap. (see [below for nested schema](#nestedatt--spec--features--admission_controller--agent_sidecar_injection--profiles--env--value_from--config_map_key_ref))
+- `field_ref` (Attributes) Selects a field of the pod: supports metadata.name, metadata.namespace, 'metadata.labels['']', 'metadata.annotations['']', spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs. (see [below for nested schema](#nestedatt--spec--features--admission_controller--agent_sidecar_injection--profiles--env--value_from--field_ref))
+- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported. (see [below for nested schema](#nestedatt--spec--features--admission_controller--agent_sidecar_injection--profiles--env--value_from--resource_field_ref))
+- `secret_key_ref` (Attributes) Selects a key of a secret in the pod's namespace (see [below for nested schema](#nestedatt--spec--features--admission_controller--agent_sidecar_injection--profiles--env--value_from--secret_key_ref))
+
+
+### Nested Schema for `spec.features.admission_controller.agent_sidecar_injection.profiles.env.value_from.config_map_key_ref`
+
+Required:
+
+- `key` (String) The key to select.
+
+Optional:
+
+- `name` (String) Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?
+- `optional` (Boolean) Specify whether the ConfigMap or its key must be defined
+
+
+
+### Nested Schema for `spec.features.admission_controller.agent_sidecar_injection.profiles.env.value_from.field_ref`
+
+Required:
+
+- `field_path` (String) Path of the field to select in the specified API version.
+
+Optional:
+
+- `api_version` (String) Version of the schema the FieldPath is written in terms of, defaults to 'v1'.
+
+
+
+### Nested Schema for `spec.features.admission_controller.agent_sidecar_injection.profiles.env.value_from.resource_field_ref`
+
+Required:
+
+- `resource` (String) Required: resource to select
+
+Optional:
+
+- `container_name` (String) Container name: required for volumes, optional for env vars
+- `divisor` (String) Specifies the output format of the exposed resources, defaults to '1'
+
+
+
+### Nested Schema for `spec.features.admission_controller.agent_sidecar_injection.profiles.env.value_from.secret_key_ref`
+
+Required:
+
+- `key` (String) The key of the secret to select from. Must be a valid secret key.
+
+Optional:
+
+- `name` (String) Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?
+- `optional` (Boolean) Specify whether the Secret or its key must be defined
+
+
+
+
+
+### Nested Schema for `spec.features.admission_controller.agent_sidecar_injection.profiles.resources`
+
+Optional:
+
+- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+
+
+### Nested Schema for `spec.features.admission_controller.agent_sidecar_injection.selectors`
+
+Optional:
+
+- `namespace_selector` (Attributes) NamespaceSelector specifies the label selector for namespaces. (see [below for nested schema](#nestedatt--spec--features--admission_controller--agent_sidecar_injection--selectors--namespace_selector))
+- `object_selector` (Attributes) ObjectSelector specifies the label selector for objects. (see [below for nested schema](#nestedatt--spec--features--admission_controller--agent_sidecar_injection--selectors--object_selector))
+
+
+### Nested Schema for `spec.features.admission_controller.agent_sidecar_injection.selectors.namespace_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--features--admission_controller--agent_sidecar_injection--selectors--namespace_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is 'key', the operator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.features.admission_controller.agent_sidecar_injection.selectors.namespace_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.
+
+
+
+
+### Nested Schema for `spec.features.admission_controller.agent_sidecar_injection.selectors.object_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--features--admission_controller--agent_sidecar_injection--selectors--object_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is 'key', the operator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.features.admission_controller.agent_sidecar_injection.selectors.object_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.
+
+
+
+
+
+
+### Nested Schema for `spec.features.admission_controller.cws_instrumentation`
+
+Optional:
+
+- `enabled` (Boolean) Enable the CWS Instrumentation admission controller endpoint. Default: false
+- `mode` (String) Mode defines the behavior of the CWS Instrumentation endpoint, and can be either 'init_container' or 'remote_copy'. Default: 'remote_copy'
+
+
### Nested Schema for `spec.features.apm`
@@ -108,6 +302,7 @@ Optional:
- `enabled` (Boolean) Enabled enables Application Performance Monitoring. Default: true
- `host_port_config` (Attributes) HostPortConfig contains host port configuration. Enabled Default: false Port Default: 8126 (see [below for nested schema](#nestedatt--spec--features--apm--host_port_config))
+- `instrumentation` (Attributes) SingleStepInstrumentation allows the agent to inject the Datadog APM libraries into all pods in the cluster. Feature is in beta. See also: https://docs.datadoghq.com/tracing/trace_collection/single-step-apm Enabled Default: false (see [below for nested schema](#nestedatt--spec--features--apm--instrumentation))
- `unix_domain_socket_config` (Attributes) UnixDomainSocketConfig contains socket configuration. See also: https://docs.datadoghq.com/agent/kubernetes/apm/?tab=helm#agent-environment-variables Enabled Default: true Path Default: '/var/run/datadog/apm.socket' (see [below for nested schema](#nestedatt--spec--features--apm--unix_domain_socket_config))
@@ -119,6 +314,17 @@ Optional:
- `host_port` (Number) Port takes a port number (0 < x < 65536) to expose on the host. (Most containers do not need this.) If HostNetwork is enabled, this value must match the ContainerPort.
+
+### Nested Schema for `spec.features.apm.instrumentation`
+
+Optional:
+
+- `disabled_namespaces` (List of String) DisabledNamespaces disables injecting the Datadog APM libraries into pods in specific namespaces.
+- `enabled` (Boolean) Enabled enables injecting the Datadog APM libraries into all pods in the cluster. Default: false
+- `enabled_namespaces` (List of String) EnabledNamespaces enables injecting the Datadog APM libraries into pods in specific namespaces.
+- `lib_versions` (Map of String) LibVersions configures injection of specific tracing library versions with Single Step Instrumentation. : ex: 'java': 'v1.18.0'
+
+
### Nested Schema for `spec.features.apm.unix_domain_socket_config`
@@ -129,6 +335,40 @@ Optional:
+
+### Nested Schema for `spec.features.asm`
+
+Optional:
+
+- `iast` (Attributes) IAST configures Interactive Application Security Testing. Enabled Default: false (see [below for nested schema](#nestedatt--spec--features--asm--iast))
+- `sca` (Attributes) SCA configures Software Composition Analysis. Enabled Default: false (see [below for nested schema](#nestedatt--spec--features--asm--sca))
+- `threats` (Attributes) Threats configures ASM App & API Protection. Enabled Default: false (see [below for nested schema](#nestedatt--spec--features--asm--threats))
+
+
+### Nested Schema for `spec.features.asm.iast`
+
+Optional:
+
+- `enabled` (Boolean) Enabled enables Interactive Application Security Testing (IAST). Default: false
+
+
+
+### Nested Schema for `spec.features.asm.sca`
+
+Optional:
+
+- `enabled` (Boolean) Enabled enables Software Composition Analysis (SCA). Default: false
+
+
+
+### Nested Schema for `spec.features.asm.threats`
+
+Optional:
+
+- `enabled` (Boolean) Enabled enables ASM App & API Protection. Default: false
+
+
+
### Nested Schema for `spec.features.cluster_checks`
@@ -169,12 +409,12 @@ Optional:
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -221,12 +461,12 @@ Optional:
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -297,12 +537,12 @@ Optional:
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -390,6 +630,16 @@ Optional:
+
+### Nested Schema for `spec.features.helm_check`
+
+Optional:
+
+- `collect_events` (Boolean) CollectEvents set to 'true' enables event collection in the Helm check (Requires Agent 7.36.0+ and Cluster Agent 1.20.0+) Default: false
+- `enabled` (Boolean) Enabled enables the Helm check. Default: false
+- `values_as_tags` (Map of String) ValuesAsTags collects Helm values from a release and uses them as tags (Requires Agent and Cluster Agent 7.40.0+). Default: {}
+
+
### Nested Schema for `spec.features.kube_state_metrics_core`
@@ -419,12 +669,12 @@ Optional:
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -514,12 +764,12 @@ Optional:
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -654,12 +904,14 @@ Optional:
- `disable_non_resource_rules` (Boolean) Set DisableNonResourceRules to exclude NonResourceURLs from default ClusterRoles. Required 'true' for Google Cloud Marketplace.
- `docker_socket_path` (String) Path to the docker runtime socket.
- `endpoint` (Attributes) Endpoint is the Datadog intake URL the Agent data are sent to. Only set this option if you need the Agent to send data to a custom URL. Overrides the site setting defined in 'Site'. (see [below for nested schema](#nestedatt--spec--global--endpoint))
+- `fips` (Attributes) FIPS contains configuration used to customize the FIPS proxy sidecar. (see [below for nested schema](#nestedatt--spec--global--fips))
- `kubelet` (Attributes) Kubelet contains the kubelet configuration parameters. (see [below for nested schema](#nestedatt--spec--global--kubelet))
- `local_service` (Attributes) LocalService contains configuration to customize the internal traffic policy service. (see [below for nested schema](#nestedatt--spec--global--local_service))
- `log_level` (String) LogLevel sets logging verbosity. This can be overridden by container. Valid log levels are: trace, debug, info, warn, error, critical, and off. Default: 'info'
- `namespace_labels_as_tags` (Map of String) Provide a mapping of Kubernetes Namespace Labels to Datadog Tags. :
- `network_policy` (Attributes) NetworkPolicy contains the network configuration. (see [below for nested schema](#nestedatt--spec--global--network_policy))
- `node_labels_as_tags` (Map of String) Provide a mapping of Kubernetes Node Labels to Datadog Tags. :
+- `origin_detection_unified` (Attributes) OriginDetectionUnified defines the origin detection unified mechanism behavior. (see [below for nested schema](#nestedatt--spec--global--origin_detection_unified))
- `pod_annotations_as_tags` (Map of String) Provide a mapping of Kubernetes Annotations to Datadog Tags. :
- `pod_labels_as_tags` (Map of String) Provide a mapping of Kubernetes Labels to Datadog Tags. :
- `registry` (String) Registry is the image registry to use for all Agent images. Use 'public.ecr.aws/datadog' for AWS ECR. Use 'docker.io/datadog' for DockerHub. Default: 'gcr.io/datadoghq'
@@ -757,6 +1009,81 @@ Optional:
+
+### Nested Schema for `spec.global.fips`
+
+Optional:
+
+- `custom_fips_config` (Attributes) CustomFIPSConfig configures a custom configMap to provide the FIPS configuration. Specify custom contents for the FIPS proxy sidecar container config (/etc/datadog-fips-proxy/datadog-fips-proxy.cfg). If empty, the default FIPS proxy sidecar container config is used. (see [below for nested schema](#nestedatt--spec--global--fips--custom_fips_config))
+- `enabled` (Boolean) Enable FIPS sidecar.
+- `image` (Attributes) The container image of the FIPS sidecar. (see [below for nested schema](#nestedatt--spec--global--fips--image))
+- `local_address` (String) Set the local IP address. Default: '127.0.0.1'
+- `port` (Number) Port specifies which port is used by the containers to communicate to the FIPS sidecar. Default: 9803
+- `port_range` (Number) PortRange specifies the number of ports used. Default: 15
+- `resources` (Attributes) Resources is the requests and limits for the FIPS sidecar container. (see [below for nested schema](#nestedatt--spec--global--fips--resources))
+- `use_https` (Boolean) UseHTTPS enables HTTPS. Default: false
+
+
+### Nested Schema for `spec.global.fips.custom_fips_config`
+
+Optional:
+
+- `config_data` (String) ConfigData corresponds to the configuration file content.
+- `config_map` (Attributes) ConfigMap references an existing ConfigMap with the configuration file content. (see [below for nested schema](#nestedatt--spec--global--fips--custom_fips_config--config_map))
+
+
+### Nested Schema for `spec.global.fips.custom_fips_config.config_map`
+
+Optional:
+
+- `items` (Attributes List) Items maps a ConfigMap data 'key' to a file 'path' mount. (see [below for nested schema](#nestedatt--spec--global--fips--custom_fips_config--config_map--items))
+- `name` (String) Name is the name of the ConfigMap.
+
+
+### Nested Schema for `spec.global.fips.custom_fips_config.config_map.items`
+
+Required:
+
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+
+Optional:
+
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+
+
+
+
+
+### Nested Schema for `spec.global.fips.image`
+
+Optional:
+
+- `jmx_enabled` (Boolean) Define whether the Agent image should support JMX. To be used if the Name field does not correspond to a full image string.
+- `name` (String) Define the image to use: Use 'gcr.io/datadoghq/agent:latest' for Datadog Agent 7. Use 'datadog/dogstatsd:latest' for standalone Datadog Agent DogStatsD 7. Use 'gcr.io/datadoghq/cluster-agent:latest' for Datadog Cluster Agent. Use 'agent' with the registry and tag configurations for /agent:. Use 'cluster-agent' with the registry and tag configurations for /cluster-agent:. If the name is the full image string—':' or '/:', then 'tag', 'jmxEnabled', and 'global.registry' values are ignored. Otherwise, image string is created by overriding default settings with supplied 'name', 'tag', and 'jmxEnabled' values; image string is created using default registry unless 'global.registry' is configured.
+- `pull_policy` (String) The Kubernetes pull policy: Use Always, Never, or IfNotPresent.
+- `pull_secrets` (Attributes List) It is possible to specify Docker registry credentials. See https://kubernetes.io/docs/concepts/containers/images/#specifying-imagepullsecrets-on-a-pod (see [below for nested schema](#nestedatt--spec--global--fips--image--pull_secrets))
+- `tag` (String) Define the image tag to use. To be used if the Name field does not correspond to a full image string.
+
+
+### Nested Schema for `spec.global.fips.image.pull_secrets`
+
+Optional:
+
+- `name` (String) Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?
+
+
+
+
+### Nested Schema for `spec.global.fips.resources`
+
+Optional:
+
+- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+
### Nested Schema for `spec.global.kubelet`
@@ -871,6 +1198,14 @@ Optional:
+
+### Nested Schema for `spec.global.origin_detection_unified`
+
+Optional:
+
+- `enabled` (Boolean) Enabled enables unified mechanism for origin detection. Default: false
+
+
### Nested Schema for `spec.override`
@@ -1030,8 +1365,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--override--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. This field is beta-level and is only honored when PodAffinityNamespaceSelector feature is enabled. (see [below for nested schema](#nestedatt--spec--override--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--override--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
### Nested Schema for `spec.override.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector`
@@ -1089,8 +1424,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--override--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. This field is beta-level and is only honored when PodAffinityNamespaceSelector feature is enabled. (see [below for nested schema](#nestedatt--spec--override--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--override--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
### Nested Schema for `spec.override.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.label_selector`
@@ -1164,8 +1499,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--override--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. This field is beta-level and is only honored when PodAffinityNamespaceSelector feature is enabled. (see [below for nested schema](#nestedatt--spec--override--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--override--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
### Nested Schema for `spec.override.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector`
@@ -1223,8 +1558,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--override--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
-- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. This field is beta-level and is only honored when PodAffinityNamespaceSelector feature is enabled. (see [below for nested schema](#nestedatt--spec--override--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
-- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--override--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
### Nested Schema for `spec.override.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.label_selector`
@@ -1374,7 +1709,7 @@ Optional:
- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--override--containers--liveness_probe--exec))
- `failure_threshold` (Number) Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
-- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. This is an alpha field and requires enabling GRPCContainerProbe feature gate. (see [below for nested schema](#nestedatt--spec--override--containers--liveness_probe--grpc))
+- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. This is a beta field and requires enabling GRPCContainerProbe feature gate. (see [below for nested schema](#nestedatt--spec--override--containers--liveness_probe--grpc))
- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--override--containers--liveness_probe--http_get))
- `initial_delay_seconds` (Number) Number of seconds after the container has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
- `period_seconds` (Number) How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
@@ -1447,7 +1782,7 @@ Optional:
- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--override--containers--readiness_probe--exec))
- `failure_threshold` (Number) Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
-- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. This is an alpha field and requires enabling GRPCContainerProbe feature gate. (see [below for nested schema](#nestedatt--spec--override--containers--readiness_probe--grpc))
+- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. This is a beta field and requires enabling GRPCContainerProbe feature gate. (see [below for nested schema](#nestedatt--spec--override--containers--readiness_probe--grpc))
- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--override--containers--readiness_probe--http_get))
- `initial_delay_seconds` (Number) Number of seconds after the container has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
- `period_seconds` (Number) How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
@@ -1551,12 +1886,12 @@ Optional:
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -1661,12 +1996,12 @@ Optional:
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -1767,12 +2102,12 @@ Optional:
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -1798,12 +2133,12 @@ Optional:
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -1905,52 +2240,52 @@ Optional:
Required:
-- `name` (String) Volume's name. Must be a DNS_LABEL and unique within the pod. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
-
-Optional:
-
-- `aws_elastic_block_store` (Attributes) AWSElasticBlockStore represents an AWS Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore (see [below for nested schema](#nestedatt--spec--override--volumes--aws_elastic_block_store))
-- `azure_disk` (Attributes) AzureDisk represents an Azure Data Disk mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--override--volumes--azure_disk))
-- `azure_file` (Attributes) AzureFile represents an Azure File Service mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--override--volumes--azure_file))
-- `cephfs` (Attributes) CephFS represents a Ceph FS mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--override--volumes--cephfs))
-- `cinder` (Attributes) Cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md (see [below for nested schema](#nestedatt--spec--override--volumes--cinder))
-- `config_map` (Attributes) ConfigMap represents a configMap that should populate this volume (see [below for nested schema](#nestedatt--spec--override--volumes--config_map))
-- `csi` (Attributes) CSI (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature). (see [below for nested schema](#nestedatt--spec--override--volumes--csi))
-- `downward_api` (Attributes) DownwardAPI represents downward API about the pod that should populate this volume (see [below for nested schema](#nestedatt--spec--override--volumes--downward_api))
-- `empty_dir` (Attributes) EmptyDir represents a temporary directory that shares a pod's lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir (see [below for nested schema](#nestedatt--spec--override--volumes--empty_dir))
-- `ephemeral` (Attributes) Ephemeral represents a volume that is handled by a cluster storage driver. The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts, and deleted when the pod is removed. Use this if: a) the volume is only needed while the pod runs, b) features of normal volumes like restoring from snapshot or capacity tracking are needed, c) the storage driver is specified through a storage class, and d) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim). Use PersistentVolumeClaim or one of the vendor-specific APIs for volumes that persist for longer than the lifecycle of an individual pod. Use CSI for light-weight local ephemeral volumes if the CSI driver is meant to be used that way - see the documentation of the driver for more information. A pod can use both types of ephemeral volumes and persistent volumes at the same time. (see [below for nested schema](#nestedatt--spec--override--volumes--ephemeral))
-- `fc` (Attributes) FC represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod. (see [below for nested schema](#nestedatt--spec--override--volumes--fc))
-- `flex_volume` (Attributes) FlexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin. (see [below for nested schema](#nestedatt--spec--override--volumes--flex_volume))
-- `flocker` (Attributes) Flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running (see [below for nested schema](#nestedatt--spec--override--volumes--flocker))
-- `gce_persistent_disk` (Attributes) GCEPersistentDisk represents a GCE Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk (see [below for nested schema](#nestedatt--spec--override--volumes--gce_persistent_disk))
-- `git_repo` (Attributes) GitRepo represents a git repository at a particular revision. DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir into the Pod's container. (see [below for nested schema](#nestedatt--spec--override--volumes--git_repo))
-- `glusterfs` (Attributes) Glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/glusterfs/README.md (see [below for nested schema](#nestedatt--spec--override--volumes--glusterfs))
-- `host_path` (Attributes) HostPath represents a pre-existing file or directory on the host machine that is directly exposed to the container. This is generally used for system agents or other privileged things that are allowed to see the host machine. Most containers will NOT need this. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath --- TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can not mount host directories as read/write. (see [below for nested schema](#nestedatt--spec--override--volumes--host_path))
-- `iscsi` (Attributes) ISCSI represents an ISCSI Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://examples.k8s.io/volumes/iscsi/README.md (see [below for nested schema](#nestedatt--spec--override--volumes--iscsi))
-- `nfs` (Attributes) NFS represents an NFS mount on the host that shares a pod's lifetime More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs (see [below for nested schema](#nestedatt--spec--override--volumes--nfs))
-- `persistent_volume_claim` (Attributes) PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims (see [below for nested schema](#nestedatt--spec--override--volumes--persistent_volume_claim))
-- `photon_persistent_disk` (Attributes) PhotonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--override--volumes--photon_persistent_disk))
-- `portworx_volume` (Attributes) PortworxVolume represents a portworx volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--override--volumes--portworx_volume))
-- `projected` (Attributes) Items for all in one resources secrets, configmaps, and downward API (see [below for nested schema](#nestedatt--spec--override--volumes--projected))
-- `quobyte` (Attributes) Quobyte represents a Quobyte mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--override--volumes--quobyte))
-- `rbd` (Attributes) RBD represents a Rados Block Device mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md (see [below for nested schema](#nestedatt--spec--override--volumes--rbd))
-- `scale_io` (Attributes) ScaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--override--volumes--scale_io))
-- `secret` (Attributes) Secret represents a secret that should populate this volume. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret (see [below for nested schema](#nestedatt--spec--override--volumes--secret))
-- `storageos` (Attributes) StorageOS represents a StorageOS volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--override--volumes--storageos))
-- `vsphere_volume` (Attributes) VsphereVolume represents a vSphere volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--override--volumes--vsphere_volume))
+- `name` (String) name of the volume. Must be a DNS_LABEL and unique within the pod. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+
+Optional:
+
+- `aws_elastic_block_store` (Attributes) awsElasticBlockStore represents an AWS Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore (see [below for nested schema](#nestedatt--spec--override--volumes--aws_elastic_block_store))
+- `azure_disk` (Attributes) azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--override--volumes--azure_disk))
+- `azure_file` (Attributes) azureFile represents an Azure File Service mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--override--volumes--azure_file))
+- `cephfs` (Attributes) cephFS represents a Ceph FS mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--override--volumes--cephfs))
+- `cinder` (Attributes) cinder represents a cinder volume attached and mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md (see [below for nested schema](#nestedatt--spec--override--volumes--cinder))
+- `config_map` (Attributes) configMap represents a configMap that should populate this volume (see [below for nested schema](#nestedatt--spec--override--volumes--config_map))
+- `csi` (Attributes) csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature). (see [below for nested schema](#nestedatt--spec--override--volumes--csi))
+- `downward_api` (Attributes) downwardAPI represents downward API about the pod that should populate this volume (see [below for nested schema](#nestedatt--spec--override--volumes--downward_api))
+- `empty_dir` (Attributes) emptyDir represents a temporary directory that shares a pod's lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir (see [below for nested schema](#nestedatt--spec--override--volumes--empty_dir))
+- `ephemeral` (Attributes) ephemeral represents a volume that is handled by a cluster storage driver. The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts, and deleted when the pod is removed. Use this if: a) the volume is only needed while the pod runs, b) features of normal volumes like restoring from snapshot or capacity tracking are needed, c) the storage driver is specified through a storage class, and d) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim). Use PersistentVolumeClaim or one of the vendor-specific APIs for volumes that persist for longer than the lifecycle of an individual pod. Use CSI for light-weight local ephemeral volumes if the CSI driver is meant to be used that way - see the documentation of the driver for more information. A pod can use both types of ephemeral volumes and persistent volumes at the same time. (see [below for nested schema](#nestedatt--spec--override--volumes--ephemeral))
+- `fc` (Attributes) fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod. (see [below for nested schema](#nestedatt--spec--override--volumes--fc))
+- `flex_volume` (Attributes) flexVolume represents a generic volume resource that is provisioned/attached using an exec based plugin. (see [below for nested schema](#nestedatt--spec--override--volumes--flex_volume))
+- `flocker` (Attributes) flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running (see [below for nested schema](#nestedatt--spec--override--volumes--flocker))
+- `gce_persistent_disk` (Attributes) gcePersistentDisk represents a GCE Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk (see [below for nested schema](#nestedatt--spec--override--volumes--gce_persistent_disk))
+- `git_repo` (Attributes) gitRepo represents a git repository at a particular revision. DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount an EmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDir into the Pod's container. (see [below for nested schema](#nestedatt--spec--override--volumes--git_repo))
+- `glusterfs` (Attributes) glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/glusterfs/README.md (see [below for nested schema](#nestedatt--spec--override--volumes--glusterfs))
+- `host_path` (Attributes) hostPath represents a pre-existing file or directory on the host machine that is directly exposed to the container. This is generally used for system agents or other privileged things that are allowed to see the host machine. Most containers will NOT need this. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath --- TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can not mount host directories as read/write. (see [below for nested schema](#nestedatt--spec--override--volumes--host_path))
+- `iscsi` (Attributes) iscsi represents an ISCSI Disk resource that is attached to a kubelet's host machine and then exposed to the pod. More info: https://examples.k8s.io/volumes/iscsi/README.md (see [below for nested schema](#nestedatt--spec--override--volumes--iscsi))
+- `nfs` (Attributes) nfs represents an NFS mount on the host that shares a pod's lifetime More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs (see [below for nested schema](#nestedatt--spec--override--volumes--nfs))
+- `persistent_volume_claim` (Attributes) persistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims (see [below for nested schema](#nestedatt--spec--override--volumes--persistent_volume_claim))
+- `photon_persistent_disk` (Attributes) photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--override--volumes--photon_persistent_disk))
+- `portworx_volume` (Attributes) portworxVolume represents a portworx volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--override--volumes--portworx_volume))
+- `projected` (Attributes) projected items for all in one resources secrets, configmaps, and downward API (see [below for nested schema](#nestedatt--spec--override--volumes--projected))
+- `quobyte` (Attributes) quobyte represents a Quobyte mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--override--volumes--quobyte))
+- `rbd` (Attributes) rbd represents a Rados Block Device mount on the host that shares a pod's lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md (see [below for nested schema](#nestedatt--spec--override--volumes--rbd))
+- `scale_io` (Attributes) scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--override--volumes--scale_io))
+- `secret` (Attributes) secret represents a secret that should populate this volume. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret (see [below for nested schema](#nestedatt--spec--override--volumes--secret))
+- `storageos` (Attributes) storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--override--volumes--storageos))
+- `vsphere_volume` (Attributes) vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--override--volumes--vsphere_volume))
### Nested Schema for `spec.override.volumes.aws_elastic_block_store`
Required:
-- `volume_id` (String) Unique ID of the persistent disk resource in AWS (Amazon EBS volume). More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+- `volume_id` (String) volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume). More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
Optional:
-- `fs_type` (String) Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore TODO: how do we prevent errors in the filesystem from compromising the machine
-- `partition` (Number) The partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as '1'. Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).
-- `read_only` (Boolean) Specify 'true' to force and set the ReadOnly property in VolumeMounts to 'true'. If omitted, the default is 'false'. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore TODO: how do we prevent errors in the filesystem from compromising the machine
+- `partition` (Number) partition is the partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as '1'. Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).
+- `read_only` (Boolean) readOnly value true will force the readOnly setting in VolumeMounts. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
@@ -1958,15 +2293,15 @@ Optional:
Required:
-- `disk_name` (String) The Name of the data disk in the blob storage
-- `disk_uri` (String) The URI the data disk in the blob storage
+- `disk_name` (String) diskName is the Name of the data disk in the blob storage
+- `disk_uri` (String) diskURI is the URI of data disk in the blob storage
Optional:
-- `caching_mode` (String) Host Caching mode: None, Read Only, Read Write.
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
-- `kind` (String) Expected values Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared
-- `read_only` (Boolean) Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `caching_mode` (String) cachingMode is the Host Caching mode: None, Read Only, Read Write.
+- `fs_type` (String) fsType is Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `kind` (String) kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared
+- `read_only` (Boolean) readOnly Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
@@ -1974,12 +2309,12 @@ Optional:
Required:
-- `secret_name` (String) the name of secret that contains Azure Storage Account Name and Key
-- `share_name` (String) Share Name
+- `secret_name` (String) secretName is the name of secret that contains Azure Storage Account Name and Key
+- `share_name` (String) shareName is the azure share Name
Optional:
-- `read_only` (Boolean) Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
@@ -1987,15 +2322,15 @@ Optional:
Required:
-- `monitors` (List of String) Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `monitors` (List of String) monitors is Required: Monitors is a collection of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
Optional:
-- `path` (String) Optional: Used as the mounted root, rather than the full Ceph tree, default is /
-- `read_only` (Boolean) Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
-- `secret_file` (String) Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
-- `secret_ref` (Attributes) Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--override--volumes--cephfs--secret_ref))
-- `user` (String) Optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `path` (String) path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /
+- `read_only` (Boolean) readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `secret_file` (String) secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secret More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `secret_ref` (Attributes) secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty. More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--override--volumes--cephfs--secret_ref))
+- `user` (String) user is optional: User is the rados user name, default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
### Nested Schema for `spec.override.volumes.cephfs.secret_ref`
@@ -2011,13 +2346,13 @@ Optional:
Required:
-- `volume_id` (String) volume id used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+- `volume_id` (String) volumeID used to identify the volume in cinder. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
-- `read_only` (Boolean) Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
-- `secret_ref` (Attributes) Optional: points to a secret object containing parameters used to connect to OpenStack. (see [below for nested schema](#nestedatt--spec--override--volumes--cinder--secret_ref))
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts. More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+- `secret_ref` (Attributes) secretRef is optional: points to a secret object containing parameters used to connect to OpenStack. (see [below for nested schema](#nestedatt--spec--override--volumes--cinder--secret_ref))
### Nested Schema for `spec.override.volumes.cinder.secret_ref`
@@ -2033,22 +2368,22 @@ Optional:
Optional:
-- `default_mode` (Number) Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
-- `items` (Attributes List) If unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--override--volumes--config_map--items))
+- `default_mode` (Number) defaultMode is optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--override--volumes--config_map--items))
- `name` (String) Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?
-- `optional` (Boolean) Specify whether the ConfigMap or its keys must be defined
+- `optional` (Boolean) optional specify whether the ConfigMap or its keys must be defined
### Nested Schema for `spec.override.volumes.config_map.items`
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -2057,14 +2392,14 @@ Optional:
Required:
-- `driver` (String) Driver is the name of the CSI driver that handles this volume. Consult with your admin for the correct name as registered in the cluster.
+- `driver` (String) driver is the name of the CSI driver that handles this volume. Consult with your admin for the correct name as registered in the cluster.
Optional:
-- `fs_type` (String) Filesystem type to mount. Ex. 'ext4', 'xfs', 'ntfs'. If not provided, the empty value is passed to the associated CSI driver which will determine the default filesystem to apply.
-- `node_publish_secret_ref` (Attributes) NodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secret references are passed. (see [below for nested schema](#nestedatt--spec--override--volumes--csi--node_publish_secret_ref))
-- `read_only` (Boolean) Specifies a read-only configuration for the volume. Defaults to false (read/write).
-- `volume_attributes` (Map of String) VolumeAttributes stores driver-specific properties that are passed to the CSI driver. Consult your driver's documentation for supported values.
+- `fs_type` (String) fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'. If not provided, the empty value is passed to the associated CSI driver which will determine the default filesystem to apply.
+- `node_publish_secret_ref` (Attributes) nodePublishSecretRef is a reference to the secret object containing sensitive information to pass to the CSI driver to complete the CSI NodePublishVolume and NodeUnpublishVolume calls. This field is optional, and may be empty if no secret is required. If the secret object contains more than one secret, all secret references are passed. (see [below for nested schema](#nestedatt--spec--override--volumes--csi--node_publish_secret_ref))
+- `read_only` (Boolean) readOnly specifies a read-only configuration for the volume. Defaults to false (read/write).
+- `volume_attributes` (Map of String) volumeAttributes stores driver-specific properties that are passed to the CSI driver. Consult your driver's documentation for supported values.
### Nested Schema for `spec.override.volumes.csi.node_publish_secret_ref`
@@ -2128,8 +2463,8 @@ Optional:
Optional:
-- `medium` (String) What type of storage medium should back this directory. The default is '' which means to use the node's default medium. Must be an empty string (default) or Memory. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
-- `size_limit` (String) Total amount of local storage required for this EmptyDir volume. The size limit is also applicable for memory medium. The maximum usage on memory medium EmptyDir would be the minimum value between the SizeLimit specified here and the sum of memory limits of all containers in a pod. The default is nil which means that the limit is undefined. More info: http://kubernetes.io/docs/user-guide/volumes#emptydir
+- `medium` (String) medium represents what type of storage medium should back this directory. The default is '' which means to use the node's default medium. Must be an empty string (default) or Memory. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
+- `size_limit` (String) sizeLimit is the total amount of local storage required for this EmptyDir volume. The size limit is also applicable for memory medium. The maximum usage on memory medium EmptyDir would be the minimum value between the SizeLimit specified here and the sum of memory limits of all containers in a pod. The default is nil which means that the limit is undefined. More info: http://kubernetes.io/docs/user-guide/volumes#emptydir
@@ -2155,14 +2490,14 @@ Optional:
Optional:
-- `access_modes` (List of String) AccessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
-- `data_source` (Attributes) This field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field. (see [below for nested schema](#nestedatt--spec--override--volumes--ephemeral--volume_claim_template--spec--data_source))
-- `data_source_ref` (Attributes) Specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef preserves all values, and generates an error if a disallowed value is specified. (Alpha) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--override--volumes--ephemeral--volume_claim_template--spec--data_source_ref))
-- `resources` (Attributes) Resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources (see [below for nested schema](#nestedatt--spec--override--volumes--ephemeral--volume_claim_template--spec--resources))
-- `selector` (Attributes) A label query over volumes to consider for binding. (see [below for nested schema](#nestedatt--spec--override--volumes--ephemeral--volume_claim_template--spec--selector))
-- `storage_class_name` (String) Name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
+- `access_modes` (List of String) accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
+- `data_source` (Attributes) dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field. (see [below for nested schema](#nestedatt--spec--override--volumes--ephemeral--volume_claim_template--spec--data_source))
+- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef preserves all values, and generates an error if a disallowed value is specified. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--override--volumes--ephemeral--volume_claim_template--spec--data_source_ref))
+- `resources` (Attributes) resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources (see [below for nested schema](#nestedatt--spec--override--volumes--ephemeral--volume_claim_template--spec--resources))
+- `selector` (Attributes) selector is a label query over volumes to consider for binding. (see [below for nested schema](#nestedatt--spec--override--volumes--ephemeral--volume_claim_template--spec--selector))
+- `storage_class_name` (String) storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
- `volume_mode` (String) volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.
-- `volume_name` (String) VolumeName is the binding reference to the PersistentVolume backing this claim.
+- `volume_name` (String) volumeName is the binding reference to the PersistentVolume backing this claim.
### Nested Schema for `spec.override.volumes.ephemeral.volume_claim_template.spec.data_source`
@@ -2229,11 +2564,11 @@ Optional:
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. TODO: how do we prevent errors in the filesystem from compromising the machine
-- `lun` (Number) Optional: FC target lun number
-- `read_only` (Boolean) Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
-- `target_ww_ns` (List of String) Optional: FC target worldwide names (WWNs)
-- `wwids` (List of String) Optional: FC volume world wide identifiers (wwids) Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. TODO: how do we prevent errors in the filesystem from compromising the machine
+- `lun` (Number) lun is Optional: FC target lun number
+- `read_only` (Boolean) readOnly is Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `target_ww_ns` (List of String) targetWWNs is Optional: FC target worldwide names (WWNs)
+- `wwids` (List of String) wwids Optional: FC volume world wide identifiers (wwids) Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.
@@ -2241,14 +2576,14 @@ Optional:
Required:
-- `driver` (String) Driver is the name of the driver to use for this volume.
+- `driver` (String) driver is the name of the driver to use for this volume.
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.
-- `options` (Map of String) Optional: Extra command options if any.
-- `read_only` (Boolean) Optional: Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
-- `secret_ref` (Attributes) Optional: SecretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts. (see [below for nested schema](#nestedatt--spec--override--volumes--flex_volume--secret_ref))
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.
+- `options` (Map of String) options is Optional: this field holds extra command options if any.
+- `read_only` (Boolean) readOnly is Optional: defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `secret_ref` (Attributes) secretRef is Optional: secretRef is reference to the secret object containing sensitive information to pass to the plugin scripts. This may be empty if no secret object is specified. If the secret object contains more than one secret, all secrets are passed to the plugin scripts. (see [below for nested schema](#nestedatt--spec--override--volumes--flex_volume--secret_ref))
### Nested Schema for `spec.override.volumes.flex_volume.secret_ref`
@@ -2264,8 +2599,8 @@ Optional:
Optional:
-- `dataset_name` (String) Name of the dataset stored as metadata -> name on the dataset for Flocker should be considered as deprecated
-- `dataset_uuid` (String) UUID of the dataset. This is unique identifier of a Flocker dataset
+- `dataset_name` (String) datasetName is Name of the dataset stored as metadata -> name on the dataset for Flocker should be considered as deprecated
+- `dataset_uuid` (String) datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset
@@ -2273,13 +2608,13 @@ Optional:
Required:
-- `pd_name` (String) Unique name of the PD resource in GCE. Used to identify the disk in GCE. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+- `pd_name` (String) pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
Optional:
-- `fs_type` (String) Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk TODO: how do we prevent errors in the filesystem from compromising the machine
-- `partition` (Number) The partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as '1'. Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty). More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
-- `read_only` (Boolean) ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+- `fs_type` (String) fsType is filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk TODO: how do we prevent errors in the filesystem from compromising the machine
+- `partition` (Number) partition is the partition in the volume that you want to mount. If omitted, the default is to mount by volume name. Examples: For volume /dev/sda1, you specify the partition as '1'. Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty). More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
@@ -2287,12 +2622,12 @@ Optional:
Required:
-- `repository` (String) Repository URL
+- `repository` (String) repository is the URL
Optional:
-- `directory` (String) Target directory name. Must not contain or start with '..'. If '.' is supplied, the volume directory will be the git repository. Otherwise, if specified, the volume will contain the git repository in the subdirectory with the given name.
-- `revision` (String) Commit hash for the specified revision.
+- `directory` (String) directory is the target directory name. Must not contain or start with '..'. If '.' is supplied, the volume directory will be the git repository. Otherwise, if specified, the volume will contain the git repository in the subdirectory with the given name.
+- `revision` (String) revision is the commit hash for the specified revision.
@@ -2300,12 +2635,12 @@ Optional:
Required:
-- `endpoints` (String) EndpointsName is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
-- `path` (String) Path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+- `endpoints` (String) endpoints is the endpoint name that details Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+- `path` (String) path is the Glusterfs volume path. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
Optional:
-- `read_only` (Boolean) ReadOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+- `read_only` (Boolean) readOnly here will force the Glusterfs volume to be mounted with read-only permissions. Defaults to false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
@@ -2313,11 +2648,11 @@ Optional:
Required:
-- `path` (String) Path of the directory on the host. If the path is a symlink, it will follow the link to the real path. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+- `path` (String) path of the directory on the host. If the path is a symlink, it will follow the link to the real path. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
Optional:
-- `type` (String) Type for HostPath Volume Defaults to '' More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
+- `type` (String) type for HostPath Volume Defaults to '' More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
@@ -2325,20 +2660,20 @@ Optional:
Required:
-- `iqn` (String) Target iSCSI Qualified Name.
-- `lun` (Number) iSCSI Target Lun number.
-- `target_portal` (String) iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
+- `iqn` (String) iqn is the target iSCSI Qualified Name.
+- `lun` (Number) lun represents iSCSI Target Lun number.
+- `target_portal` (String) targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
Optional:
-- `chap_auth_discovery` (Boolean) whether support iSCSI Discovery CHAP authentication
-- `chap_auth_session` (Boolean) whether support iSCSI Session CHAP authentication
-- `fs_type` (String) Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi TODO: how do we prevent errors in the filesystem from compromising the machine
-- `initiator_name` (String) Custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface : will be created for the connection.
-- `iscsi_interface` (String) iSCSI Interface Name that uses an iSCSI transport. Defaults to 'default' (tcp).
-- `portals` (List of String) iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
-- `read_only` (Boolean) ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.
-- `secret_ref` (Attributes) CHAP Secret for iSCSI target and initiator authentication (see [below for nested schema](#nestedatt--spec--override--volumes--iscsi--secret_ref))
+- `chap_auth_discovery` (Boolean) chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication
+- `chap_auth_session` (Boolean) chapAuthSession defines whether support iSCSI Session CHAP authentication
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi TODO: how do we prevent errors in the filesystem from compromising the machine
+- `initiator_name` (String) initiatorName is the custom iSCSI Initiator Name. If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface : will be created for the connection.
+- `iscsi_interface` (String) iscsiInterface is the interface Name that uses an iSCSI transport. Defaults to 'default' (tcp).
+- `portals` (List of String) portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the port is other than default (typically TCP ports 860 and 3260).
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false.
+- `secret_ref` (Attributes) secretRef is the CHAP Secret for iSCSI target and initiator authentication (see [below for nested schema](#nestedatt--spec--override--volumes--iscsi--secret_ref))
### Nested Schema for `spec.override.volumes.iscsi.secret_ref`
@@ -2354,12 +2689,12 @@ Optional:
Required:
-- `path` (String) Path that is exported by the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
-- `server` (String) Server is the hostname or IP address of the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+- `path` (String) path that is exported by the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+- `server` (String) server is the hostname or IP address of the NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
Optional:
-- `read_only` (Boolean) ReadOnly here will force the NFS export to be mounted with read-only permissions. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+- `read_only` (Boolean) readOnly here will force the NFS export to be mounted with read-only permissions. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
@@ -2367,11 +2702,11 @@ Optional:
Required:
-- `claim_name` (String) ClaimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
+- `claim_name` (String) claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
Optional:
-- `read_only` (Boolean) Will force the ReadOnly setting in VolumeMounts. Default false.
+- `read_only` (Boolean) readOnly Will force the ReadOnly setting in VolumeMounts. Default false.
@@ -2379,11 +2714,11 @@ Optional:
Required:
-- `pd_id` (String) ID that identifies Photon Controller persistent disk
+- `pd_id` (String) pdID is the ID that identifies Photon Controller persistent disk
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
@@ -2391,12 +2726,12 @@ Optional:
Required:
-- `volume_id` (String) VolumeID uniquely identifies a Portworx volume
+- `volume_id` (String) volumeID uniquely identifies a Portworx volume
Optional:
-- `fs_type` (String) FSType represents the filesystem type to mount Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.
-- `read_only` (Boolean) Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `fs_type` (String) fSType represents the filesystem type to mount Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
@@ -2404,39 +2739,39 @@ Optional:
Optional:
-- `default_mode` (Number) Mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
-- `sources` (Attributes List) list of volume projections (see [below for nested schema](#nestedatt--spec--override--volumes--projected--sources))
+- `default_mode` (Number) defaultMode are the mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `sources` (Attributes List) sources is the list of volume projections (see [below for nested schema](#nestedatt--spec--override--volumes--projected--sources))
### Nested Schema for `spec.override.volumes.projected.sources`
Optional:
-- `config_map` (Attributes) information about the configMap data to project (see [below for nested schema](#nestedatt--spec--override--volumes--projected--sources--config_map))
-- `downward_api` (Attributes) information about the downwardAPI data to project (see [below for nested schema](#nestedatt--spec--override--volumes--projected--sources--downward_api))
-- `secret` (Attributes) information about the secret data to project (see [below for nested schema](#nestedatt--spec--override--volumes--projected--sources--secret))
-- `service_account_token` (Attributes) information about the serviceAccountToken data to project (see [below for nested schema](#nestedatt--spec--override--volumes--projected--sources--service_account_token))
+- `config_map` (Attributes) configMap information about the configMap data to project (see [below for nested schema](#nestedatt--spec--override--volumes--projected--sources--config_map))
+- `downward_api` (Attributes) downwardAPI information about the downwardAPI data to project (see [below for nested schema](#nestedatt--spec--override--volumes--projected--sources--downward_api))
+- `secret` (Attributes) secret information about the secret data to project (see [below for nested schema](#nestedatt--spec--override--volumes--projected--sources--secret))
+- `service_account_token` (Attributes) serviceAccountToken is information about the serviceAccountToken data to project (see [below for nested schema](#nestedatt--spec--override--volumes--projected--sources--service_account_token))
### Nested Schema for `spec.override.volumes.projected.sources.config_map`
Optional:
-- `items` (Attributes List) If unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--override--volumes--projected--sources--config_map--items))
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referenced ConfigMap will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the ConfigMap, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--override--volumes--projected--sources--config_map--items))
- `name` (String) Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?
-- `optional` (Boolean) Specify whether the ConfigMap or its keys must be defined
+- `optional` (Boolean) optional specify whether the ConfigMap or its keys must be defined
### Nested Schema for `spec.override.volumes.projected.sources.config_map.items`
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -2492,21 +2827,21 @@ Optional:
Optional:
-- `items` (Attributes List) If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--override--volumes--projected--sources--secret--items))
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--override--volumes--projected--sources--secret--items))
- `name` (String) Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?
-- `optional` (Boolean) Specify whether the Secret or its key must be defined
+- `optional` (Boolean) optional field specify whether the Secret or its key must be defined
### Nested Schema for `spec.override.volumes.projected.sources.secret.items`
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -2515,12 +2850,12 @@ Optional:
Required:
-- `path` (String) Path is the path relative to the mount point of the file to project the token into.
+- `path` (String) path is the path relative to the mount point of the file to project the token into.
Optional:
-- `audience` (String) Audience is the intended audience of the token. A recipient of a token must identify itself with an identifier specified in the audience of the token, and otherwise should reject the token. The audience defaults to the identifier of the apiserver.
-- `expiration_seconds` (Number) ExpirationSeconds is the requested duration of validity of the service account token. As the token approaches expiration, the kubelet volume plugin will proactively rotate the service account token. The kubelet will start trying to rotate the token if the token is older than 80 percent of its time to live or if the token is older than 24 hours.Defaults to 1 hour and must be at least 10 minutes.
+- `audience` (String) audience is the intended audience of the token. A recipient of a token must identify itself with an identifier specified in the audience of the token, and otherwise should reject the token. The audience defaults to the identifier of the apiserver.
+- `expiration_seconds` (Number) expirationSeconds is the requested duration of validity of the service account token. As the token approaches expiration, the kubelet volume plugin will proactively rotate the service account token. The kubelet will start trying to rotate the token if the token is older than 80 percent of its time to live or if the token is older than 24 hours.Defaults to 1 hour and must be at least 10 minutes.
@@ -2530,15 +2865,15 @@ Optional:
Required:
-- `registry` (String) Registry represents a single or multiple Quobyte Registry services specified as a string as host:port pair (multiple entries are separated with commas) which acts as the central registry for volumes
-- `volume` (String) Volume is a string that references an already created Quobyte volume by name.
+- `registry` (String) registry represents a single or multiple Quobyte Registry services specified as a string as host:port pair (multiple entries are separated with commas) which acts as the central registry for volumes
+- `volume` (String) volume is a string that references an already created Quobyte volume by name.
Optional:
-- `group` (String) Group to map volume access to Default is no group
-- `read_only` (Boolean) ReadOnly here will force the Quobyte volume to be mounted with read-only permissions. Defaults to false.
-- `tenant` (String) Tenant owning the given Quobyte volume in the Backend Used with dynamically provisioned Quobyte volumes, value is set by the plugin
-- `user` (String) User to map volume access to Defaults to serivceaccount user
+- `group` (String) group to map volume access to Default is no group
+- `read_only` (Boolean) readOnly here will force the Quobyte volume to be mounted with read-only permissions. Defaults to false.
+- `tenant` (String) tenant owning the given Quobyte volume in the Backend Used with dynamically provisioned Quobyte volumes, value is set by the plugin
+- `user` (String) user to map volume access to Defaults to serivceaccount user
@@ -2546,17 +2881,17 @@ Optional:
Required:
-- `image` (String) The rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
-- `monitors` (List of String) A collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `image` (String) image is the rados image name. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `monitors` (List of String) monitors is a collection of Ceph monitors. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
Optional:
-- `fs_type` (String) Filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd TODO: how do we prevent errors in the filesystem from compromising the machine
-- `keyring` (String) Keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
-- `pool` (String) The rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
-- `read_only` (Boolean) ReadOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
-- `secret_ref` (Attributes) SecretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--override--volumes--rbd--secret_ref))
-- `user` (String) The rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount. Tip: Ensure that the filesystem type is supported by the host operating system. Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd TODO: how do we prevent errors in the filesystem from compromising the machine
+- `keyring` (String) keyring is the path to key ring for RBDUser. Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `pool` (String) pool is the rados pool name. Default is rbd. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `secret_ref` (Attributes) secretRef is name of the authentication secret for RBDUser. If provided overrides keyring. Default is nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--override--volumes--rbd--secret_ref))
+- `user` (String) user is the rados user name. Default is admin. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
### Nested Schema for `spec.override.volumes.rbd.secret_ref`
@@ -2572,19 +2907,19 @@ Optional:
Required:
-- `gateway` (String) The host address of the ScaleIO API Gateway.
-- `secret_ref` (Attributes) SecretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail. (see [below for nested schema](#nestedatt--spec--override--volumes--scale_io--secret_ref))
-- `system` (String) The name of the storage system as configured in ScaleIO.
+- `gateway` (String) gateway is the host address of the ScaleIO API Gateway.
+- `secret_ref` (Attributes) secretRef references to the secret for ScaleIO user and other sensitive information. If this is not provided, Login operation will fail. (see [below for nested schema](#nestedatt--spec--override--volumes--scale_io--secret_ref))
+- `system` (String) system is the name of the storage system as configured in ScaleIO.
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Default is 'xfs'.
-- `protection_domain` (String) The name of the ScaleIO Protection Domain for the configured storage.
-- `read_only` (Boolean) Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
-- `ssl_enabled` (Boolean) Flag to enable/disable SSL communication with Gateway, default false
-- `storage_mode` (String) Indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.
-- `storage_pool` (String) The ScaleIO Storage Pool associated with the protection domain.
-- `volume_name` (String) The name of a volume already created in the ScaleIO system that is associated with this volume source.
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Default is 'xfs'.
+- `protection_domain` (String) protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.
+- `read_only` (Boolean) readOnly Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `ssl_enabled` (Boolean) sslEnabled Flag enable/disable SSL communication with Gateway, default false
+- `storage_mode` (String) storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned. Default is ThinProvisioned.
+- `storage_pool` (String) storagePool is the ScaleIO Storage Pool associated with the protection domain.
+- `volume_name` (String) volumeName is the name of a volume already created in the ScaleIO system that is associated with this volume source.
### Nested Schema for `spec.override.volumes.scale_io.secret_ref`
@@ -2600,22 +2935,22 @@ Optional:
Optional:
-- `default_mode` (Number) Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
-- `items` (Attributes List) If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--override--volumes--secret--items))
-- `optional` (Boolean) Specify whether the Secret or its keys must be defined
-- `secret_name` (String) Name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
+- `default_mode` (Number) defaultMode is Optional: mode bits used to set permissions on created files by default. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. Defaults to 0644. Directories within the path are not affected by this setting. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) items If unspecified, each key-value pair in the Data field of the referenced Secret will be projected into the volume as a file whose name is the key and content is the value. If specified, the listed keys will be projected into the specified paths, and unlisted keys will not be present. If a key is specified which is not present in the Secret, the volume setup will error unless it is marked optional. Paths must be relative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--override--volumes--secret--items))
+- `optional` (Boolean) optional field specify whether the Secret or its keys must be defined
+- `secret_name` (String) secretName is the name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
### Nested Schema for `spec.override.volumes.secret.items`
Required:
-- `key` (String) The key to project.
-- `path` (String) The relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to. May not be an absolute path. May not contain the path element '..'. May not start with the string '..'.
Optional:
-- `mode` (Number) Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file. Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
@@ -2624,11 +2959,11 @@ Optional:
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
-- `read_only` (Boolean) Defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
-- `secret_ref` (Attributes) SecretRef specifies the secret to use for obtaining the StorageOS API credentials. If not specified, default values will be attempted. (see [below for nested schema](#nestedatt--spec--override--volumes--storageos--secret_ref))
-- `volume_name` (String) VolumeName is the human-readable name of the StorageOS volume. Volume names are only unique within a namespace.
-- `volume_namespace` (String) VolumeNamespace specifies the scope of the volume within StorageOS. If no namespace is specified then the Pod's namespace will be used. This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to 'default' if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.
+- `fs_type` (String) fsType is the filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will force the ReadOnly setting in VolumeMounts.
+- `secret_ref` (Attributes) secretRef specifies the secret to use for obtaining the StorageOS API credentials. If not specified, default values will be attempted. (see [below for nested schema](#nestedatt--spec--override--volumes--storageos--secret_ref))
+- `volume_name` (String) volumeName is the human-readable name of the StorageOS volume. Volume names are only unique within a namespace.
+- `volume_namespace` (String) volumeNamespace specifies the scope of the volume within StorageOS. If no namespace is specified then the Pod's namespace will be used. This allows the Kubernetes name scoping to be mirrored within StorageOS for tighter integration. Set VolumeName to any name to override the default behaviour. Set to 'default' if you are not using namespaces within StorageOS. Namespaces that do not pre-exist within StorageOS will be created.
### Nested Schema for `spec.override.volumes.storageos.secret_ref`
@@ -2644,10 +2979,10 @@ Optional:
Required:
-- `volume_path` (String) Path that identifies vSphere volume vmdk
+- `volume_path` (String) volumePath is the path that identifies vSphere volume vmdk
Optional:
-- `fs_type` (String) Filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
-- `storage_policy_id` (String) Storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.
-- `storage_policy_name` (String) Storage Policy Based Management (SPBM) profile name.
+- `fs_type` (String) fsType is filesystem type to mount. Must be a filesystem type supported by the host operating system. Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `storage_policy_id` (String) storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.
+- `storage_policy_name` (String) storagePolicyName is the storage Policy Based Management (SPBM) profile name.
diff --git a/docs/data-sources/datadoghq_com_datadog_monitor_v1alpha1_manifest.md b/docs/data-sources/datadoghq_com_datadog_monitor_v1alpha1_manifest.md
index 6c8f28dbc..dbd348ac4 100644
--- a/docs/data-sources/datadoghq_com_datadog_monitor_v1alpha1_manifest.md
+++ b/docs/data-sources/datadoghq_com_datadog_monitor_v1alpha1_manifest.md
@@ -81,14 +81,18 @@ Optional:
- `enable_logs_sample` (Boolean) A Boolean indicating whether to send a log sample when the log monitor triggers.
- `escalation_message` (String) A message to include with a re-notification.
- `evaluation_delay` (Number) Time (in seconds) to delay evaluation, as a non-negative integer. For example, if the value is set to 300 (5min), the timeframe is set to last_5m and the time is 7:00, the monitor evaluates data from 6:50 to 6:55. This is useful for AWS CloudWatch and other backfilled metrics to ensure the monitor always has data during evaluation.
+- `groupby_simple_monitor` (Boolean) A Boolean indicating whether the log alert monitor triggers a single alert or multiple alerts when any group breaches a threshold.
- `include_tags` (Boolean) A Boolean indicating whether notifications from this monitor automatically inserts its triggering tags into the title.
- `locked` (Boolean) Whether or not the monitor is locked (only editable by creator and admins).
- `new_group_delay` (Number) Time (in seconds) to allow a host to boot and applications to fully start before starting the evaluation of monitor results. Should be a non negative integer.
- `no_data_timeframe` (Number) The number of minutes before a monitor notifies after data stops reporting. Datadog recommends at least 2x the monitor timeframe for metric alerts or 2 minutes for service checks. If omitted, 2x the evaluation timeframe is used for metric alerts, and 24 hours is used for service checks.
- `notification_preset_name` (String) An enum that toggles the display of additional content sent in the monitor notification.
- `notify_audit` (Boolean) A Boolean indicating whether tagged users are notified on changes to this monitor.
+- `notify_by` (List of String) A string indicating the granularity a monitor alerts on. Only available for monitors with groupings. For instance, a monitor grouped by cluster, namespace, and pod can be configured to only notify on each new cluster violating the alert conditions by setting notify_by to ['cluster']. Tags mentioned in notify_by must be a subset of the grouping tags in the query. For example, a query grouped by cluster and namespace cannot notify on region. Setting notify_by to [*] configures the monitor to notify as a simple-alert.
- `notify_no_data` (Boolean) A Boolean indicating whether this monitor notifies when data stops reporting.
+- `on_missing_data` (String) An enum that controls how groups or monitors are treated if an evaluation does not return data points. The default option results in different behavior depending on the monitor query type. For monitors using Count queries, an empty monitor evaluation is treated as 0 and is compared to the threshold conditions. For monitors using any query type other than Count, for example Gauge, Measure, or Rate, the monitor shows the last known status. This option is only available for APM Trace Analytics, Audit Trail, CI, Error Tracking, Event, Logs, and RUM monitors
- `renotify_interval` (Number) The number of minutes after the last notification before a monitor re-notifies on the current status. It only re-notifies if it’s not resolved.
+- `renotify_occurrences` (Number) The number of times re-notification messages should be sent on the current status at the provided re-notification interval.
- `require_full_window` (Boolean) A Boolean indicating whether this monitor needs a full window of data before it’s evaluated. We highly recommend you set this to false for sparse metrics, otherwise some evaluations are skipped. Default is false.
- `threshold_windows` (Attributes) A struct of the alerting time window options. (see [below for nested schema](#nestedatt--spec--options--threshold_windows))
- `thresholds` (Attributes) A struct of the different monitor threshold values. (see [below for nested schema](#nestedatt--spec--options--thresholds))
diff --git a/docs/data-sources/enterprise_gloo_solo_io_auth_config_v1_manifest.md b/docs/data-sources/enterprise_gloo_solo_io_auth_config_v1_manifest.md
index 724f66472..6bf51e42e 100644
--- a/docs/data-sources/enterprise_gloo_solo_io_auth_config_v1_manifest.md
+++ b/docs/data-sources/enterprise_gloo_solo_io_auth_config_v1_manifest.md
@@ -53,10 +53,13 @@ Optional:
### Nested Schema for `spec`
+Required:
+
+- `configs` (Attributes List) (see [below for nested schema](#nestedatt--spec--configs))
+
Optional:
- `boolean_expr` (String)
-- `configs` (Attributes List) (see [below for nested schema](#nestedatt--spec--configs))
- `fail_on_redirect` (Boolean)
- `namespaced_statuses` (Attributes) (see [below for nested schema](#nestedatt--spec--namespaced_statuses))
@@ -249,15 +252,18 @@ Optional:
### Nested Schema for `spec.configs.hmac_auth`
+Required:
+
+- `secret_refs` (Attributes) (see [below for nested schema](#nestedatt--spec--configs--hmac_auth--secret_refs))
+
Optional:
- `parameters_in_headers` (Map of String)
-- `secret_refs` (Attributes) (see [below for nested schema](#nestedatt--spec--configs--hmac_auth--secret_refs))
### Nested Schema for `spec.configs.hmac_auth.secret_refs`
-Optional:
+Required:
- `secret_refs` (Attributes List) (see [below for nested schema](#nestedatt--spec--configs--hmac_auth--secret_refs--secret_refs))
@@ -275,9 +281,12 @@ Optional:
### Nested Schema for `spec.configs.ldap`
-Optional:
+Required:
- `address` (String)
+
+Optional:
+
- `allowed_groups` (List of String)
- `disable_group_checking` (Boolean)
- `group_lookup_settings` (Attributes) (see [below for nested schema](#nestedatt--spec--configs--ldap--group_lookup_settings))
@@ -317,9 +326,12 @@ Optional:
### Nested Schema for `spec.configs.oauth`
-Optional:
+Required:
- `app_url` (String)
+
+Optional:
+
- `auth_endpoint_query_params` (Map of String)
- `callback_path` (String)
- `client_id` (String)
@@ -362,12 +374,15 @@ Optional:
### Nested Schema for `spec.configs.oauth2.access_token_validation.introspection`
+Required:
+
+- `introspection_url` (String)
+
Optional:
- `client_id` (String)
- `client_secret_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--configs--oauth2--access_token_validation--introspection--client_secret_ref))
- `disable_client_secret` (Boolean)
-- `introspection_url` (String)
- `user_id_attribute_name` (String)
@@ -392,7 +407,7 @@ Optional:
### Nested Schema for `spec.configs.oauth2.access_token_validation.jwt.local_jwks`
-Optional:
+Required:
- `inline_string` (String)
@@ -400,10 +415,13 @@ Optional:
### Nested Schema for `spec.configs.oauth2.access_token_validation.jwt.remote_jwks`
+Required:
+
+- `url` (String)
+
Optional:
- `refresh_interval` (String)
-- `url` (String)
@@ -419,21 +437,24 @@ Optional:
### Nested Schema for `spec.configs.oauth2.oauth2`
-Optional:
+Required:
-- `after_logout_url` (String)
- `app_url` (String)
- `auth_endpoint` (String)
-- `auth_endpoint_query_params` (Map of String)
- `callback_path` (String)
- `client_id` (String)
+- `token_endpoint` (String)
+
+Optional:
+
+- `after_logout_url` (String)
+- `auth_endpoint_query_params` (Map of String)
- `client_secret_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--configs--oauth2--oauth2--client_secret_ref))
- `disable_client_secret` (Boolean)
- `logout_path` (String)
- `revocation_endpoint` (String)
- `scopes` (List of String)
- `session` (Attributes) (see [below for nested schema](#nestedatt--spec--configs--oauth2--oauth2--session))
-- `token_endpoint` (String)
- `token_endpoint_query_params` (Map of String)
@@ -527,17 +548,21 @@ Optional:
### Nested Schema for `spec.configs.oauth2.oidc_authorization_code`
+Required:
+
+- `app_url` (String)
+- `callback_path` (String)
+- `client_id` (String)
+- `issuer_url` (String)
+
Optional:
- `access_token` (Attributes) (see [below for nested schema](#nestedatt--spec--configs--oauth2--oidc_authorization_code--access_token))
- `after_logout_url` (String)
-- `app_url` (String)
- `auth_endpoint_query_params` (Map of String)
- `auto_map_from_metadata` (Attributes) (see [below for nested schema](#nestedatt--spec--configs--oauth2--oidc_authorization_code--auto_map_from_metadata))
- `azure` (Attributes) (see [below for nested schema](#nestedatt--spec--configs--oauth2--oidc_authorization_code--azure))
-- `callback_path` (String)
- `client_authentication` (Attributes) (see [below for nested schema](#nestedatt--spec--configs--oauth2--oidc_authorization_code--client_authentication))
-- `client_id` (String)
- `client_secret_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--configs--oauth2--oidc_authorization_code--client_secret_ref))
- `default` (Map of String)
- `disable_client_secret` (Boolean)
@@ -547,7 +572,6 @@ Optional:
- `end_session_properties` (Attributes) (see [below for nested schema](#nestedatt--spec--configs--oauth2--oidc_authorization_code--end_session_properties))
- `headers` (Attributes) (see [below for nested schema](#nestedatt--spec--configs--oauth2--oidc_authorization_code--headers))
- `identity_token` (Attributes) (see [below for nested schema](#nestedatt--spec--configs--oauth2--oidc_authorization_code--identity_token))
-- `issuer_url` (String)
- `jwks_cache_refresh_policy` (Attributes) (see [below for nested schema](#nestedatt--spec--configs--oauth2--oidc_authorization_code--jwks_cache_refresh_policy))
- `logout_path` (String)
- `parse_callback_path_as_regex` (Boolean)
@@ -643,9 +667,12 @@ Optional:
### Nested Schema for `spec.configs.oauth2.oidc_authorization_code.client_authentication.private_key_jwt`
-Optional:
+Required:
- `signing_key_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--configs--oauth2--oidc_authorization_code--client_authentication--private_key_jwt--signing_key_ref))
+
+Optional:
+
- `valid_for` (String)
@@ -815,11 +842,14 @@ Optional:
### Nested Schema for `spec.configs.opa_auth`
+Required:
+
+- `query` (String)
+
Optional:
- `modules` (Attributes List) (see [below for nested schema](#nestedatt--spec--configs--opa_auth--modules))
- `options` (Attributes) (see [below for nested schema](#nestedatt--spec--configs--opa_auth--options))
-- `query` (String)
### Nested Schema for `spec.configs.opa_auth.modules`
@@ -843,10 +873,13 @@ Optional:
### Nested Schema for `spec.configs.opa_server_auth`
+Required:
+
+- `package` (String)
+
Optional:
- `options` (Attributes) (see [below for nested schema](#nestedatt--spec--configs--opa_server_auth--options))
-- `package` (String)
- `rule_name` (String)
- `server_addr` (String)
@@ -873,9 +906,12 @@ Optional:
### Nested Schema for `spec.configs.pass_through_auth.grpc`
-Optional:
+Required:
- `address` (String)
+
+Optional:
+
- `connection_timeout` (String)
- `retry_policy` (Attributes) (see [below for nested schema](#nestedatt--spec--configs--pass_through_auth--grpc--retry_policy))
- `tls_config` (Map of String)
@@ -902,12 +938,15 @@ Optional:
### Nested Schema for `spec.configs.pass_through_auth.http`
+Required:
+
+- `url` (String)
+
Optional:
- `connection_timeout` (String)
- `request` (Attributes) (see [below for nested schema](#nestedatt--spec--configs--pass_through_auth--http--request))
- `response` (Attributes) (see [below for nested schema](#nestedatt--spec--configs--pass_through_auth--http--response))
-- `url` (String)
### Nested Schema for `spec.configs.pass_through_auth.http.request`
@@ -937,9 +976,12 @@ Optional:
### Nested Schema for `spec.configs.plugin_auth`
-Optional:
+Required:
- `config` (Map of String)
+
+Optional:
+
- `exported_symbol_name` (String)
- `name` (String)
- `plugin_file_name` (String)
diff --git a/docs/data-sources/executor_testkube_io_webhook_v1_manifest.md b/docs/data-sources/executor_testkube_io_webhook_v1_manifest.md
index f108177da..cb21a6d2b 100644
--- a/docs/data-sources/executor_testkube_io_webhook_v1_manifest.md
+++ b/docs/data-sources/executor_testkube_io_webhook_v1_manifest.md
@@ -58,6 +58,7 @@ Optional:
- `disabled` (Boolean) Disabled will disable the webhook
- `events` (List of String) Events declare list if events on which webhook should be called
- `headers` (Map of String) webhook headers (golang template supported)
+- `on_state_change` (Boolean) OnStateChange will trigger the webhook only when the result of the current execution differs from the previous result of the same test/test suite/workflow
- `payload_object_field` (String) will load the generated payload for notification inside the object
- `payload_template` (String) golang based template for notification payload
- `payload_template_reference` (String) name of the template resource
diff --git a/docs/data-sources/external_secrets_io_cluster_secret_store_v1beta1_manifest.md b/docs/data-sources/external_secrets_io_cluster_secret_store_v1beta1_manifest.md
index eb177640e..8aee8df5f 100644
--- a/docs/data-sources/external_secrets_io_cluster_secret_store_v1beta1_manifest.md
+++ b/docs/data-sources/external_secrets_io_cluster_secret_store_v1beta1_manifest.md
@@ -2005,6 +2005,7 @@ Optional:
Optional:
+- `namespace_regexes` (List of String) Choose namespaces by using regex matching
- `namespace_selector` (Attributes) Choose namespace using a labelSelector (see [below for nested schema](#nestedatt--spec--conditions--namespace_selector))
- `namespaces` (List of String) Choose namespaces by name
diff --git a/docs/data-sources/external_secrets_io_secret_store_v1beta1_manifest.md b/docs/data-sources/external_secrets_io_secret_store_v1beta1_manifest.md
index 4505dec85..44f98d7f4 100644
--- a/docs/data-sources/external_secrets_io_secret_store_v1beta1_manifest.md
+++ b/docs/data-sources/external_secrets_io_secret_store_v1beta1_manifest.md
@@ -1990,6 +1990,7 @@ Optional:
Optional:
+- `namespace_regexes` (List of String) Choose namespaces by using regex matching
- `namespace_selector` (Attributes) Choose namespace using a labelSelector (see [below for nested schema](#nestedatt--spec--conditions--namespace_selector))
- `namespaces` (List of String) Choose namespaces by name
diff --git a/docs/data-sources/flows_netobserv_io_flow_collector_v1beta2_manifest.md b/docs/data-sources/flows_netobserv_io_flow_collector_v1beta2_manifest.md
index 43adce1cd..6c6605698 100644
--- a/docs/data-sources/flows_netobserv_io_flow_collector_v1beta2_manifest.md
+++ b/docs/data-sources/flows_netobserv_io_flow_collector_v1beta2_manifest.md
@@ -242,8 +242,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods.If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--agent--ebpf--advanced--scheduling--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
-- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.Also, MatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
-- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MismatchLabelKeys and LabelSelector.Also, MismatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both matchLabelKeys and labelSelector.Also, matchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.Also, mismatchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--agent--ebpf--advanced--scheduling--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -303,8 +303,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods.If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--agent--ebpf--advanced--scheduling--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
-- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.Also, MatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
-- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MismatchLabelKeys and LabelSelector.Also, MismatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both matchLabelKeys and labelSelector.Also, matchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.Also, mismatchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--agent--ebpf--advanced--scheduling--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -380,8 +380,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods.If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--agent--ebpf--advanced--scheduling--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
-- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.Also, MatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
-- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MismatchLabelKeys and LabelSelector.Also, MismatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both matchLabelKeys and labelSelector.Also, matchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.Also, mismatchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--agent--ebpf--advanced--scheduling--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -441,8 +441,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods.If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--agent--ebpf--advanced--scheduling--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
-- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.Also, MatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
-- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MismatchLabelKeys and LabelSelector.Also, MismatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both matchLabelKeys and labelSelector.Also, matchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.Also, mismatchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--agent--ebpf--advanced--scheduling--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -796,8 +796,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods.If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--console_plugin--advanced--scheduling--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
-- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.Also, MatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
-- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MismatchLabelKeys and LabelSelector.Also, MismatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both matchLabelKeys and labelSelector.Also, matchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.Also, mismatchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--console_plugin--advanced--scheduling--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -857,8 +857,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods.If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--console_plugin--advanced--scheduling--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
-- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.Also, MatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
-- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MismatchLabelKeys and LabelSelector.Also, MismatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both matchLabelKeys and labelSelector.Also, matchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.Also, mismatchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--console_plugin--advanced--scheduling--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -934,8 +934,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods.If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--console_plugin--advanced--scheduling--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
-- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.Also, MatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
-- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MismatchLabelKeys and LabelSelector.Also, MismatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both matchLabelKeys and labelSelector.Also, matchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.Also, mismatchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--console_plugin--advanced--scheduling--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -995,8 +995,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods.If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--console_plugin--advanced--scheduling--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
-- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.Also, MatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
-- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MismatchLabelKeys and LabelSelector.Also, MismatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both matchLabelKeys and labelSelector.Also, matchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.Also, mismatchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--console_plugin--advanced--scheduling--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -1939,8 +1939,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods.If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--processor--advanced--scheduling--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
-- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.Also, MatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
-- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MismatchLabelKeys and LabelSelector.Also, MismatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both matchLabelKeys and labelSelector.Also, matchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.Also, mismatchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--processor--advanced--scheduling--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -2000,8 +2000,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods.If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--processor--advanced--scheduling--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
-- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.Also, MatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
-- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MismatchLabelKeys and LabelSelector.Also, MismatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both matchLabelKeys and labelSelector.Also, matchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.Also, mismatchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--processor--advanced--scheduling--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -2077,8 +2077,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods.If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--processor--advanced--scheduling--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
-- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.Also, MatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
-- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MismatchLabelKeys and LabelSelector.Also, MismatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both matchLabelKeys and labelSelector.Also, matchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.Also, mismatchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--processor--advanced--scheduling--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -2138,8 +2138,8 @@ Required:
Optional:
- `label_selector` (Attributes) A label query over a set of resources, in this case pods.If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--processor--advanced--scheduling--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
-- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.Also, MatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
-- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'LabelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both MismatchLabelKeys and LabelSelector.Also, MismatchLabelKeys cannot be set when LabelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both matchLabelKeys and labelSelector.Also, matchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.Also, mismatchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--processor--advanced--scheduling--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
diff --git a/docs/data-sources/fluentbit_fluent_io_cluster_input_v1alpha2_manifest.md b/docs/data-sources/fluentbit_fluent_io_cluster_input_v1alpha2_manifest.md
index dd9de67ad..27ec0e152 100644
--- a/docs/data-sources/fluentbit_fluent_io_cluster_input_v1alpha2_manifest.md
+++ b/docs/data-sources/fluentbit_fluent_io_cluster_input_v1alpha2_manifest.md
@@ -61,6 +61,7 @@ Optional:
- `fluent_bit_metrics` (Attributes) FluentBitMetrics defines Fluent Bit Metrics Input configuration. (see [below for nested schema](#nestedatt--spec--fluent_bit_metrics))
- `forward` (Attributes) Forward defines forward input plugin configuration (see [below for nested schema](#nestedatt--spec--forward))
- `http` (Attributes) HTTP defines the HTTP input plugin configuration (see [below for nested schema](#nestedatt--spec--http))
+- `kubernetes_events` (Attributes) KubernetesEvents defines the KubernetesEvents input plugin configuration (see [below for nested schema](#nestedatt--spec--kubernetes_events))
- `log_level` (String)
- `mqtt` (Attributes) MQTT defines the MQTT input plugin configuration (see [below for nested schema](#nestedatt--spec--mqtt))
- `nginx` (Attributes) Nginx defines the Nginx input plugin configuration (see [below for nested schema](#nestedatt--spec--nginx))
@@ -187,6 +188,29 @@ Optional:
+
+### Nested Schema for `spec.kubernetes_events`
+
+Optional:
+
+- `db` (String) Set a database file to keep track of recorded Kubernetes events
+- `db_sync` (String) Set a database sync method. values: extra, full, normal and off
+- `interval_nsec` (Number) Set the polling interval for each channel (sub seconds: nanoseconds).
+- `interval_sec` (Number) Set the polling interval for each channel.
+- `kube_ca_file` (String) CA certificate file
+- `kube_ca_path` (String) Absolute path to scan for certificate files
+- `kube_namespace` (String) Kubernetes namespace to query events from. Gets events from all namespaces by default
+- `kube_request_limit` (Number) kubernetes limit parameter for events query, no limit applied when set to 0.
+- `kube_retention_time` (String) Kubernetes retention time for events.
+- `kube_token_file` (String) Token file
+- `kube_token_ttl` (String) configurable 'time to live' for the K8s token. By default, it is set to 600 seconds. After this time, the token is reloaded from Kube_Token_File or the Kube_Token_Command.
+- `kube_url` (String) API Server end-point
+- `tag` (String) Tag name associated to all records comming from this plugin.
+- `tls_debug` (Number) Debug level between 0 (nothing) and 4 (every detail).
+- `tls_verify` (Boolean) When enabled, turns on certificate validation when connecting to the Kubernetes API server.
+- `tls_vhost` (String) Set optional TLS virtual host.
+
+
### Nested Schema for `spec.mqtt`
diff --git a/docs/data-sources/flux_framework_org_mini_cluster_v1alpha2_manifest.md b/docs/data-sources/flux_framework_org_mini_cluster_v1alpha2_manifest.md
index 8d19f9daa..c5980dca7 100644
--- a/docs/data-sources/flux_framework_org_mini_cluster_v1alpha2_manifest.md
+++ b/docs/data-sources/flux_framework_org_mini_cluster_v1alpha2_manifest.md
@@ -159,6 +159,8 @@ Optional:
- `claim_name` (String) Claim name if the existing volume is a PVC
- `config_map_name` (String) Config map name if the existing volume is a config mapYou should also define items if you are using this
+- `empty_dir` (Boolean)
+- `empty_dir_medium` (String) Add an empty directory custom type
- `host_path` (String) An existing hostPath to bind to path
- `items` (Map of String) Items (key and paths) for the config map
- `path` (String) Path and claim name are always required if a secret isn't defined
@@ -381,6 +383,8 @@ Optional:
- `claim_name` (String) Claim name if the existing volume is a PVC
- `config_map_name` (String) Config map name if the existing volume is a config mapYou should also define items if you are using this
+- `empty_dir` (Boolean)
+- `empty_dir_medium` (String) Add an empty directory custom type
- `host_path` (String) An existing hostPath to bind to path
- `items` (Map of String) Items (key and paths) for the config map
- `path` (String) Path and claim name are always required if a secret isn't defined
diff --git a/docs/data-sources/forklift_konveyor_io_plan_v1beta1_manifest.md b/docs/data-sources/forklift_konveyor_io_plan_v1beta1_manifest.md
index caa12bc68..b2abfb58e 100644
--- a/docs/data-sources/forklift_konveyor_io_plan_v1beta1_manifest.md
+++ b/docs/data-sources/forklift_konveyor_io_plan_v1beta1_manifest.md
@@ -153,6 +153,7 @@ Optional:
- `luks` (Attributes) Disk decryption LUKS keys (see [below for nested schema](#nestedatt--spec--vms--luks))
- `name` (String) An object Name.vsphere: A qualified name.
- `namespace` (String) The VM NamespaceOnly relevant for an openshift source.
+- `root_disk` (String) Choose the primary disk the VM boots from
- `type` (String) Type used to qualify the name.
diff --git a/docs/data-sources/gateway_solo_io_route_option_v1_manifest.md b/docs/data-sources/gateway_solo_io_route_option_v1_manifest.md
index b0ba76ddd..f1ac3cd82 100644
--- a/docs/data-sources/gateway_solo_io_route_option_v1_manifest.md
+++ b/docs/data-sources/gateway_solo_io_route_option_v1_manifest.md
@@ -85,6 +85,7 @@ Optional:
- `faults` (Attributes) (see [below for nested schema](#nestedatt--spec--options--faults))
- `header_manipulation` (Attributes) (see [below for nested schema](#nestedatt--spec--options--header_manipulation))
- `host_rewrite` (String)
+- `host_rewrite_header` (String)
- `host_rewrite_path_regex` (Attributes) (see [below for nested schema](#nestedatt--spec--options--host_rewrite_path_regex))
- `idle_timeout` (String)
- `jwt` (Attributes) (see [below for nested schema](#nestedatt--spec--options--jwt))
diff --git a/docs/data-sources/gateway_solo_io_route_table_v1_manifest.md b/docs/data-sources/gateway_solo_io_route_table_v1_manifest.md
index 0c3416079..6b05c38a1 100644
--- a/docs/data-sources/gateway_solo_io_route_table_v1_manifest.md
+++ b/docs/data-sources/gateway_solo_io_route_table_v1_manifest.md
@@ -196,6 +196,7 @@ Optional:
- `faults` (Attributes) (see [below for nested schema](#nestedatt--spec--routes--options--faults))
- `header_manipulation` (Attributes) (see [below for nested schema](#nestedatt--spec--routes--options--header_manipulation))
- `host_rewrite` (String)
+- `host_rewrite_header` (String)
- `host_rewrite_path_regex` (Attributes) (see [below for nested schema](#nestedatt--spec--routes--options--host_rewrite_path_regex))
- `idle_timeout` (String)
- `jwt` (Attributes) (see [below for nested schema](#nestedatt--spec--routes--options--jwt))
diff --git a/docs/data-sources/gateway_solo_io_virtual_service_v1_manifest.md b/docs/data-sources/gateway_solo_io_virtual_service_v1_manifest.md
index a021d9d8c..e87aad140 100644
--- a/docs/data-sources/gateway_solo_io_virtual_service_v1_manifest.md
+++ b/docs/data-sources/gateway_solo_io_virtual_service_v1_manifest.md
@@ -3456,6 +3456,7 @@ Optional:
- `faults` (Attributes) (see [below for nested schema](#nestedatt--spec--virtual_host--routes--options--faults))
- `header_manipulation` (Attributes) (see [below for nested schema](#nestedatt--spec--virtual_host--routes--options--header_manipulation))
- `host_rewrite` (String)
+- `host_rewrite_header` (String)
- `host_rewrite_path_regex` (Attributes) (see [below for nested schema](#nestedatt--spec--virtual_host--routes--options--host_rewrite_path_regex))
- `idle_timeout` (String)
- `jwt` (Attributes) (see [below for nested schema](#nestedatt--spec--virtual_host--routes--options--jwt))
diff --git a/docs/data-sources/gitops_hybrid_cloud_patterns_io_pattern_v1alpha1_manifest.md b/docs/data-sources/gitops_hybrid_cloud_patterns_io_pattern_v1alpha1_manifest.md
index 46bee1fd1..8b50d4965 100644
--- a/docs/data-sources/gitops_hybrid_cloud_patterns_io_pattern_v1alpha1_manifest.md
+++ b/docs/data-sources/gitops_hybrid_cloud_patterns_io_pattern_v1alpha1_manifest.md
@@ -70,16 +70,14 @@ Optional:
### Nested Schema for `spec.git_spec`
-Required:
-
-- `target_repo` (String) Git repo containing the pattern to deploy. Must use https/http or, for ssh, git@server:foo/bar.git
-
Optional:
- `hostname` (String) Optional. FQDN of the git server if automatic parsing from TargetRepo is broken
-- `origin_repo` (String) Upstream git repo containing the pattern to deploy. Used when in-cluster fork to point to the upstream pattern repository
-- `origin_revision` (String) Branch, tag or commit in the upstream git repository. Does not support short-sha's. Default to HEAD
+- `in_cluster_git_server` (Boolean) Enable in-cluster git server (avoids the need of forking the upstream repository)
+- `origin_repo` (String) Upstream git repo containing the pattern to deploy. Used when in-cluster fork to point to the upstream pattern repository.Takes precedence over TargetRepo
+- `origin_revision` (String) (DEPRECATED) Branch, tag or commit in the upstream git repository. Does not support short-sha's. Default to HEAD
- `poll_interval` (Number) Interval in seconds to poll for drifts between origin and target repositories. Default: 180 seconds
+- `target_repo` (String) Git repo containing the pattern to deploy. Must use https/http or, for ssh, git@server:foo/bar.git
- `target_revision` (String) Branch, tag, or commit to deploy. Does not support short-sha's. Default: HEAD
- `token_secret` (String) Optional. K8s secret name where the info for connecting to git can be found. The supported secrets are modeled after theprivate repositories in argo (https://argo-cd.readthedocs.io/en/stable/operator-manual/declarative-setup/#repositories)currently ssh and username+password are supported
- `token_secret_namespace` (String) Optional. K8s secret namespace where the token for connecting to git can be found
diff --git a/docs/data-sources/grafana_integreatly_org_grafana_dashboard_v1beta1_manifest.md b/docs/data-sources/grafana_integreatly_org_grafana_dashboard_v1beta1_manifest.md
index 1f3acb29d..3ae8439fd 100644
--- a/docs/data-sources/grafana_integreatly_org_grafana_dashboard_v1beta1_manifest.md
+++ b/docs/data-sources/grafana_integreatly_org_grafana_dashboard_v1beta1_manifest.md
@@ -3,12 +3,12 @@
page_title: "k8s_grafana_integreatly_org_grafana_dashboard_v1beta1_manifest Data Source - terraform-provider-k8s"
subcategory: "grafana.integreatly.org"
description: |-
-
+ GrafanaDashboard is the Schema for the grafanadashboards API
---
# k8s_grafana_integreatly_org_grafana_dashboard_v1beta1_manifest (Data Source)
-
+GrafanaDashboard is the Schema for the grafanadashboards API
## Example Usage
@@ -30,7 +30,7 @@ data "k8s_grafana_integreatly_org_grafana_dashboard_v1beta1_manifest" "example"
### Optional
-- `spec` (Attributes) (see [below for nested schema](#nestedatt--spec))
+- `spec` (Attributes) GrafanaDashboardSpec defines the desired state of GrafanaDashboard (see [below for nested schema](#nestedatt--spec))
### Read-Only
@@ -55,45 +55,45 @@ Optional:
Required:
-- `instance_selector` (Attributes) (see [below for nested schema](#nestedatt--spec--instance_selector))
+- `instance_selector` (Attributes) selects Grafanas for import (see [below for nested schema](#nestedatt--spec--instance_selector))
Optional:
-- `allow_cross_namespace_import` (Boolean)
-- `config_map_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--config_map_ref))
-- `content_cache_duration` (String)
-- `datasources` (Attributes List) (see [below for nested schema](#nestedatt--spec--datasources))
-- `env_from` (Attributes List) (see [below for nested schema](#nestedatt--spec--env_from))
-- `envs` (Attributes List) (see [below for nested schema](#nestedatt--spec--envs))
-- `folder` (String)
-- `grafana_com` (Attributes) (see [below for nested schema](#nestedatt--spec--grafana_com))
-- `gzip_json` (String)
-- `json` (String)
-- `jsonnet` (String)
-- `jsonnet_lib` (Attributes) (see [below for nested schema](#nestedatt--spec--jsonnet_lib))
-- `plugins` (Attributes List) (see [below for nested schema](#nestedatt--spec--plugins))
-- `resync_period` (String)
-- `url` (String)
+- `allow_cross_namespace_import` (Boolean) allow to import this resources from an operator in a different namespace
+- `config_map_ref` (Attributes) dashboard from configmap (see [below for nested schema](#nestedatt--spec--config_map_ref))
+- `content_cache_duration` (String) Cache duration for dashboards fetched from URLs
+- `datasources` (Attributes List) maps required data sources to existing ones (see [below for nested schema](#nestedatt--spec--datasources))
+- `env_from` (Attributes List) environments variables from secrets or config maps (see [below for nested schema](#nestedatt--spec--env_from))
+- `envs` (Attributes List) environments variables as a map (see [below for nested schema](#nestedatt--spec--envs))
+- `folder` (String) folder assignment for dashboard
+- `grafana_com` (Attributes) grafana.com/dashboards (see [below for nested schema](#nestedatt--spec--grafana_com))
+- `gzip_json` (String) GzipJson the dashboard's JSON compressed with Gzip. Base64-encoded when in YAML.
+- `json` (String) dashboard json
+- `jsonnet` (String) Jsonnet
+- `jsonnet_lib` (Attributes) Jsonnet project build (see [below for nested schema](#nestedatt--spec--jsonnet_lib))
+- `plugins` (Attributes List) plugins (see [below for nested schema](#nestedatt--spec--plugins))
+- `resync_period` (String) how often the dashboard is refreshed, defaults to 5m if not set
+- `url` (String) dashboard url
### Nested Schema for `spec.instance_selector`
Optional:
-- `match_expressions` (Attributes List) (see [below for nested schema](#nestedatt--spec--instance_selector--match_expressions))
-- `match_labels` (Map of String)
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--instance_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
### Nested Schema for `spec.instance_selector.match_expressions`
Required:
-- `key` (String)
-- `operator` (String)
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
Optional:
-- `values` (List of String)
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
@@ -102,12 +102,12 @@ Optional:
Required:
-- `key` (String)
+- `key` (String) The key to select.
Optional:
-- `name` (String)
-- `optional` (Boolean)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) Specify whether the ConfigMap or its key must be defined
@@ -124,20 +124,20 @@ Required:
Optional:
-- `config_map_key_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--env_from--config_map_key_ref))
-- `secret_key_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--env_from--secret_key_ref))
+- `config_map_key_ref` (Attributes) Selects a key of a ConfigMap. (see [below for nested schema](#nestedatt--spec--env_from--config_map_key_ref))
+- `secret_key_ref` (Attributes) Selects a key of a Secret. (see [below for nested schema](#nestedatt--spec--env_from--secret_key_ref))
### Nested Schema for `spec.env_from.config_map_key_ref`
Required:
-- `key` (String)
+- `key` (String) The key to select.
Optional:
-- `name` (String)
-- `optional` (Boolean)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) Specify whether the ConfigMap or its key must be defined
@@ -145,12 +145,12 @@ Optional:
Required:
-- `key` (String)
+- `key` (String) The key of the secret to select from. Must be a valid secret key.
Optional:
-- `name` (String)
-- `optional` (Boolean)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) Specify whether the Secret or its key must be defined
@@ -163,28 +163,28 @@ Required:
Optional:
-- `value` (String)
-- `value_from` (Attributes) (see [below for nested schema](#nestedatt--spec--envs--value_from))
+- `value` (String) Inline evn value
+- `value_from` (Attributes) Reference on value source, might be the reference on a secret or config map (see [below for nested schema](#nestedatt--spec--envs--value_from))
### Nested Schema for `spec.envs.value_from`
Optional:
-- `config_map_key_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--envs--value_from--config_map_key_ref))
-- `secret_key_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--envs--value_from--secret_key_ref))
+- `config_map_key_ref` (Attributes) Selects a key of a ConfigMap. (see [below for nested schema](#nestedatt--spec--envs--value_from--config_map_key_ref))
+- `secret_key_ref` (Attributes) Selects a key of a Secret. (see [below for nested schema](#nestedatt--spec--envs--value_from--secret_key_ref))
### Nested Schema for `spec.envs.value_from.config_map_key_ref`
Required:
-- `key` (String)
+- `key` (String) The key to select.
Optional:
-- `name` (String)
-- `optional` (Boolean)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) Specify whether the ConfigMap or its key must be defined
@@ -192,12 +192,12 @@ Optional:
Required:
-- `key` (String)
+- `key` (String) The key of the secret to select from. Must be a valid secret key.
Optional:
-- `name` (String)
-- `optional` (Boolean)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) Specify whether the Secret or its key must be defined
diff --git a/docs/data-sources/grafana_integreatly_org_grafana_datasource_v1beta1_manifest.md b/docs/data-sources/grafana_integreatly_org_grafana_datasource_v1beta1_manifest.md
index 38e6adbdb..36c182743 100644
--- a/docs/data-sources/grafana_integreatly_org_grafana_datasource_v1beta1_manifest.md
+++ b/docs/data-sources/grafana_integreatly_org_grafana_datasource_v1beta1_manifest.md
@@ -3,12 +3,12 @@
page_title: "k8s_grafana_integreatly_org_grafana_datasource_v1beta1_manifest Data Source - terraform-provider-k8s"
subcategory: "grafana.integreatly.org"
description: |-
-
+ GrafanaDatasource is the Schema for the grafanadatasources API
---
# k8s_grafana_integreatly_org_grafana_datasource_v1beta1_manifest (Data Source)
-
+GrafanaDatasource is the Schema for the grafanadatasources API
## Example Usage
@@ -30,7 +30,7 @@ data "k8s_grafana_integreatly_org_grafana_datasource_v1beta1_manifest" "example"
### Optional
-- `spec` (Attributes) (see [below for nested schema](#nestedatt--spec))
+- `spec` (Attributes) GrafanaDatasourceSpec defines the desired state of GrafanaDatasource (see [below for nested schema](#nestedatt--spec))
### Read-Only
@@ -56,14 +56,14 @@ Optional:
Required:
- `datasource` (Attributes) (see [below for nested schema](#nestedatt--spec--datasource))
-- `instance_selector` (Attributes) (see [below for nested schema](#nestedatt--spec--instance_selector))
+- `instance_selector` (Attributes) selects Grafana instances for import (see [below for nested schema](#nestedatt--spec--instance_selector))
Optional:
-- `allow_cross_namespace_import` (Boolean)
-- `plugins` (Attributes List) (see [below for nested schema](#nestedatt--spec--plugins))
-- `resync_period` (String)
-- `values_from` (Attributes List) (see [below for nested schema](#nestedatt--spec--values_from))
+- `allow_cross_namespace_import` (Boolean) allow to import this resources from an operator in a different namespace
+- `plugins` (Attributes List) plugins (see [below for nested schema](#nestedatt--spec--plugins))
+- `resync_period` (String) how often the datasource is refreshed, defaults to 5m if not set
+- `values_from` (Attributes List) environments variables from secrets or config maps (see [below for nested schema](#nestedatt--spec--values_from))
### Nested Schema for `spec.datasource`
@@ -74,11 +74,11 @@ Optional:
- `basic_auth` (Boolean)
- `basic_auth_user` (String)
- `database` (String)
-- `editable` (Boolean)
+- `editable` (Boolean) Deprecated field, it has no effect
- `is_default` (Boolean)
- `json_data` (Map of String)
- `name` (String)
-- `org_id` (Number)
+- `org_id` (Number) Deprecated field, it has no effect
- `secure_json_data` (Map of String)
- `type` (String)
- `uid` (String)
@@ -91,20 +91,20 @@ Optional:
Optional:
-- `match_expressions` (Attributes List) (see [below for nested schema](#nestedatt--spec--instance_selector--match_expressions))
-- `match_labels` (Map of String)
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--instance_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
### Nested Schema for `spec.instance_selector.match_expressions`
Required:
-- `key` (String)
-- `operator` (String)
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
Optional:
-- `values` (List of String)
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
@@ -130,20 +130,20 @@ Required:
Optional:
-- `config_map_key_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--values_from--value_from--config_map_key_ref))
-- `secret_key_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--values_from--value_from--secret_key_ref))
+- `config_map_key_ref` (Attributes) Selects a key of a ConfigMap. (see [below for nested schema](#nestedatt--spec--values_from--value_from--config_map_key_ref))
+- `secret_key_ref` (Attributes) Selects a key of a Secret. (see [below for nested schema](#nestedatt--spec--values_from--value_from--secret_key_ref))
### Nested Schema for `spec.values_from.value_from.config_map_key_ref`
Required:
-- `key` (String)
+- `key` (String) The key to select.
Optional:
-- `name` (String)
-- `optional` (Boolean)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) Specify whether the ConfigMap or its key must be defined
@@ -151,9 +151,9 @@ Optional:
Required:
-- `key` (String)
+- `key` (String) The key of the secret to select from. Must be a valid secret key.
Optional:
-- `name` (String)
-- `optional` (Boolean)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) Specify whether the Secret or its key must be defined
diff --git a/docs/data-sources/grafana_integreatly_org_grafana_folder_v1beta1_manifest.md b/docs/data-sources/grafana_integreatly_org_grafana_folder_v1beta1_manifest.md
index de6de6c8e..55d6c1339 100644
--- a/docs/data-sources/grafana_integreatly_org_grafana_folder_v1beta1_manifest.md
+++ b/docs/data-sources/grafana_integreatly_org_grafana_folder_v1beta1_manifest.md
@@ -3,12 +3,12 @@
page_title: "k8s_grafana_integreatly_org_grafana_folder_v1beta1_manifest Data Source - terraform-provider-k8s"
subcategory: "grafana.integreatly.org"
description: |-
-
+ GrafanaFolder is the Schema for the grafanafolders API
---
# k8s_grafana_integreatly_org_grafana_folder_v1beta1_manifest (Data Source)
-
+GrafanaFolder is the Schema for the grafanafolders API
## Example Usage
@@ -30,7 +30,7 @@ data "k8s_grafana_integreatly_org_grafana_folder_v1beta1_manifest" "example" {
### Optional
-- `spec` (Attributes) (see [below for nested schema](#nestedatt--spec))
+- `spec` (Attributes) GrafanaFolderSpec defines the desired state of GrafanaFolder (see [below for nested schema](#nestedatt--spec))
### Read-Only
@@ -55,13 +55,13 @@ Optional:
Required:
-- `instance_selector` (Attributes) (see [below for nested schema](#nestedatt--spec--instance_selector))
+- `instance_selector` (Attributes) selects Grafanas for import (see [below for nested schema](#nestedatt--spec--instance_selector))
Optional:
-- `allow_cross_namespace_import` (Boolean)
-- `permissions` (String)
-- `resync_period` (String)
+- `allow_cross_namespace_import` (Boolean) allow to import this resources from an operator in a different namespace
+- `permissions` (String) raw json with folder permissions
+- `resync_period` (String) how often the folder is synced, defaults to 5m if not set
- `title` (String)
@@ -69,17 +69,17 @@ Optional:
Optional:
-- `match_expressions` (Attributes List) (see [below for nested schema](#nestedatt--spec--instance_selector--match_expressions))
-- `match_labels` (Map of String)
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--instance_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
### Nested Schema for `spec.instance_selector.match_expressions`
Required:
-- `key` (String)
-- `operator` (String)
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
Optional:
-- `values` (List of String)
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
diff --git a/docs/data-sources/grafana_integreatly_org_grafana_v1beta1_manifest.md b/docs/data-sources/grafana_integreatly_org_grafana_v1beta1_manifest.md
index 4172e736c..49d8d21aa 100644
--- a/docs/data-sources/grafana_integreatly_org_grafana_v1beta1_manifest.md
+++ b/docs/data-sources/grafana_integreatly_org_grafana_v1beta1_manifest.md
@@ -3,12 +3,12 @@
page_title: "k8s_grafana_integreatly_org_grafana_v1beta1_manifest Data Source - terraform-provider-k8s"
subcategory: "grafana.integreatly.org"
description: |-
-
+ Grafana is the Schema for the grafanas API
---
# k8s_grafana_integreatly_org_grafana_v1beta1_manifest (Data Source)
-
+Grafana is the Schema for the grafanas API
## Example Usage
@@ -30,7 +30,7 @@ data "k8s_grafana_integreatly_org_grafana_v1beta1_manifest" "example" {
### Optional
-- `spec` (Attributes) (see [below for nested schema](#nestedatt--spec))
+- `spec` (Attributes) GrafanaSpec defines the desired state of Grafana (see [below for nested schema](#nestedatt--spec))
### Read-Only
@@ -55,25 +55,25 @@ Optional:
Optional:
-- `client` (Attributes) (see [below for nested schema](#nestedatt--spec--client))
-- `config` (Map of String)
-- `deployment` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment))
-- `external` (Attributes) (see [below for nested schema](#nestedatt--spec--external))
-- `ingress` (Attributes) (see [below for nested schema](#nestedatt--spec--ingress))
+- `client` (Attributes) Client defines how the grafana-operator talks to the grafana instance. (see [below for nested schema](#nestedatt--spec--client))
+- `config` (Map of String) Config defines how your grafana ini file should looks like.
+- `deployment` (Attributes) Deployment sets how the deployment object should look like with your grafana instance, contains a number of defaults. (see [below for nested schema](#nestedatt--spec--deployment))
+- `external` (Attributes) External enables you to configure external grafana instances that is not managed by the operator. (see [below for nested schema](#nestedatt--spec--external))
+- `ingress` (Attributes) Ingress sets how the ingress object should look like with your grafana instance. (see [below for nested schema](#nestedatt--spec--ingress))
- `jsonnet` (Attributes) (see [below for nested schema](#nestedatt--spec--jsonnet))
-- `persistent_volume_claim` (Attributes) (see [below for nested schema](#nestedatt--spec--persistent_volume_claim))
-- `preferences` (Attributes) (see [below for nested schema](#nestedatt--spec--preferences))
-- `route` (Attributes) (see [below for nested schema](#nestedatt--spec--route))
-- `service` (Attributes) (see [below for nested schema](#nestedatt--spec--service))
-- `service_account` (Attributes) (see [below for nested schema](#nestedatt--spec--service_account))
-- `version` (String)
+- `persistent_volume_claim` (Attributes) PersistentVolumeClaim creates a PVC if you need to attach one to your grafana instance. (see [below for nested schema](#nestedatt--spec--persistent_volume_claim))
+- `preferences` (Attributes) Preferences holds the Grafana Preferences settings (see [below for nested schema](#nestedatt--spec--preferences))
+- `route` (Attributes) Route sets how the ingress object should look like with your grafana instance, this only works in Openshift. (see [below for nested schema](#nestedatt--spec--route))
+- `service` (Attributes) Service sets how the service object should look like with your grafana instance, contains a number of defaults. (see [below for nested schema](#nestedatt--spec--service))
+- `service_account` (Attributes) ServiceAccount sets how the ServiceAccount object should look like with your grafana instance, contains a number of defaults. (see [below for nested schema](#nestedatt--spec--service_account))
+- `version` (String) Version specifies the version of Grafana to use for this deployment. It follows the same format as the docker.io/grafana/grafana tags
### Nested Schema for `spec.client`
Optional:
-- `prefer_ingress` (Boolean)
+- `prefer_ingress` (Boolean) If the operator should send it's request through the grafana instances ingress object instead of through the service.
- `timeout` (Number)
@@ -82,7 +82,7 @@ Optional:
Optional:
-- `metadata` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--metadata))
+- `metadata` (Attributes) ObjectMeta contains only a [subset of the fields included in k8s.io/apimachinery/pkg/apis/meta/v1.ObjectMeta](https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.27/#objectmeta-v1-meta). (see [below for nested schema](#nestedatt--spec--deployment--metadata))
- `spec` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec))
@@ -104,8 +104,8 @@ Optional:
- `progress_deadline_seconds` (Number)
- `replicas` (Number)
- `revision_history_limit` (Number)
-- `selector` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--selector))
-- `strategy` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--strategy))
+- `selector` (Attributes) A label selector is a label query over a set of resources. The result of matchLabels andmatchExpressions are ANDed. An empty label selector matches all objects. A nulllabel selector matches no objects. (see [below for nested schema](#nestedatt--spec--deployment--spec--selector))
+- `strategy` (Attributes) DeploymentStrategy describes how to replace existing pods with new ones. (see [below for nested schema](#nestedatt--spec--deployment--spec--strategy))
- `template` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template))
@@ -113,20 +113,20 @@ Optional:
Optional:
-- `match_expressions` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--selector--match_expressions))
-- `match_labels` (Map of String)
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--deployment--spec--selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
### Nested Schema for `spec.deployment.spec.selector.match_expressions`
Required:
-- `key` (String)
-- `operator` (String)
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
Optional:
-- `values` (List of String)
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
@@ -135,16 +135,16 @@ Optional:
Optional:
-- `rolling_update` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--strategy--rolling_update))
-- `type` (String)
+- `rolling_update` (Attributes) Rolling update config params. Present only if DeploymentStrategyType =RollingUpdate.---TODO: Update this to follow our convention for oneOf, whatever we decide itto be. (see [below for nested schema](#nestedatt--spec--deployment--spec--strategy--rolling_update))
+- `type` (String) Type of deployment. Can be 'Recreate' or 'RollingUpdate'. Default is RollingUpdate.
### Nested Schema for `spec.deployment.spec.strategy.rolling_update`
Optional:
-- `max_surge` (String)
-- `max_unavailable` (String)
+- `max_surge` (String) The maximum number of pods that can be scheduled above the desired number ofpods.Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%).This can not be 0 if MaxUnavailable is 0.Absolute number is calculated from percentage by rounding up.Defaults to 25%.Example: when this is set to 30%, the new ReplicaSet can be scaled up immediately whenthe rolling update starts, such that the total number of old and new pods do not exceed130% of desired pods. Once old pods have been killed,new ReplicaSet can be scaled up further, ensuring that total number of pods runningat any time during the update is at most 130% of desired pods.
+- `max_unavailable` (String) The maximum number of pods that can be unavailable during the update.Value can be an absolute number (ex: 5) or a percentage of desired pods (ex: 10%).Absolute number is calculated from percentage by rounding down.This can not be 0 if MaxSurge is 0.Defaults to 25%.Example: when this is set to 30%, the old ReplicaSet can be scaled down to 70% of desired podsimmediately when the rolling update starts. Once new pods are ready, old ReplicaSetcan be scaled down further, followed by scaling up the new ReplicaSet, ensuringthat the total number of pods available at all times during the update is atleast 70% of desired pods.
@@ -153,8 +153,8 @@ Optional:
Optional:
-- `metadata` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--metadata))
-- `spec` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec))
+- `metadata` (Attributes) Standard object's metadata.More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata (see [below for nested schema](#nestedatt--spec--deployment--spec--template--metadata))
+- `spec` (Attributes) Specification of the desired behavior of the pod.More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec))
### Nested Schema for `spec.deployment.spec.template.metadata`
@@ -171,41 +171,41 @@ Optional:
Optional:
- `active_deadline_seconds` (Number)
-- `affinity` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity))
-- `automount_service_account_token` (Boolean)
+- `affinity` (Attributes) If specified, the pod's scheduling constraints (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity))
+- `automount_service_account_token` (Boolean) AutomountServiceAccountToken indicates whether a service account token should be automatically mounted.
- `containers` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers))
-- `dns_config` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--dns_config))
-- `dns_policy` (String)
-- `enable_service_links` (Boolean)
+- `dns_config` (Attributes) Specifies the DNS parameters of a pod.Parameters specified here will be merged to the generated DNSconfiguration based on DNSPolicy. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--dns_config))
+- `dns_policy` (String) DNSPolicy defines how a pod's DNS will be configured.
+- `enable_service_links` (Boolean) EnableServiceLinks indicates whether information about services should be injected into pod'senvironment variables, matching the syntax of Docker links.Optional: Defaults to true.
- `ephemeral_containers` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers))
-- `host_aliases` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--host_aliases))
-- `host_ipc` (Boolean)
-- `host_network` (Boolean)
-- `host_pid` (Boolean)
-- `host_users` (Boolean)
-- `hostname` (String)
-- `image_pull_secrets` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--image_pull_secrets))
+- `host_aliases` (Attributes List) HostAliases is an optional list of hosts and IPs that will be injected into the pod's hostsfile if specified. This is only valid for non-hostNetwork pods. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--host_aliases))
+- `host_ipc` (Boolean) Use the host's ipc namespace.Optional: Default to false.
+- `host_network` (Boolean) Host networking requested for this pod. Use the host's network namespace.If this option is set, the ports that will be used must be specified.Default to false.
+- `host_pid` (Boolean) Use the host's pid namespace.Optional: Default to false.
+- `host_users` (Boolean) Use the host's user namespace.Optional: Default to true.If set to true or not present, the pod will be run in the host user namespace, usefulfor when the pod needs a feature only available to the host user namespace, such asloading a kernel module with CAP_SYS_MODULE.When set to false, a new userns is created for the pod. Setting false is useful formitigating container breakout vulnerabilities even allowing users to run theircontainers as root without actually having root privileges on the host.This field is alpha-level and is only honored by servers that enable the UserNamespacesSupport feature.
+- `hostname` (String) Specifies the hostname of the PodIf not specified, the pod's hostname will be set to a system-defined value.
+- `image_pull_secrets` (Attributes List) ImagePullSecrets is an optional list of references to secrets in the same namespace to use for pulling any of the images used by this PodSpec.If specified, these secrets will be passed to individual puller implementations for them to use.More info: https://kubernetes.io/docs/concepts/containers/images#specifying-imagepullsecrets-on-a-pod (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--image_pull_secrets))
- `init_containers` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers))
-- `node_name` (String)
-- `node_selector` (Map of String)
-- `os` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--os))
-- `overhead` (Map of String)
-- `preemption_policy` (String)
-- `priority` (Number)
-- `priority_class_name` (String)
-- `readiness_gates` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--readiness_gates))
-- `restart_policy` (String)
-- `runtime_class_name` (String)
-- `scheduler_name` (String)
-- `security_context` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--security_context))
-- `service_account` (String)
-- `service_account_name` (String)
-- `set_hostname_as_fqdn` (Boolean)
-- `share_process_namespace` (Boolean)
-- `subdomain` (String)
+- `node_name` (String) NodeName is a request to schedule this pod onto a specific node. If it is non-empty,the scheduler simply schedules this pod onto that node, assuming that it fits resourcerequirements.
+- `node_selector` (Map of String) NodeSelector is a selector which must be true for the pod to fit on a node.Selector which must match a node's labels for the pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
+- `os` (Attributes) Specifies the OS of the containers in the pod.Some pod and container fields are restricted if this is set.If the OS field is set to linux, the following fields must be unset:-securityContext.windowsOptionsIf the OS field is set to windows, following fields must be unset:- spec.hostPID- spec.hostIPC- spec.hostUsers- spec.securityContext.seLinuxOptions- spec.securityContext.seccompProfile- spec.securityContext.fsGroup- spec.securityContext.fsGroupChangePolicy- spec.securityContext.sysctls- spec.shareProcessNamespace- spec.securityContext.runAsUser- spec.securityContext.runAsGroup- spec.securityContext.supplementalGroups- spec.containers[*].securityContext.seLinuxOptions- spec.containers[*].securityContext.seccompProfile- spec.containers[*].securityContext.capabilities- spec.containers[*].securityContext.readOnlyRootFilesystem- spec.containers[*].securityContext.privileged- spec.containers[*].securityContext.allowPrivilegeEscalation- spec.containers[*].securityContext.procMount- spec.containers[*].securityContext.runAsUser- spec.containers[*].securityContext.runAsGroup (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--os))
+- `overhead` (Map of String) Overhead represents the resource overhead associated with running a pod for a given RuntimeClass.This field will be autopopulated at admission time by the RuntimeClass admission controller. Ifthe RuntimeClass admission controller is enabled, overhead must not be set in Pod create requests.The RuntimeClass admission controller will reject Pod create requests which have the overhead alreadyset. If RuntimeClass is configured and selected in the PodSpec, Overhead will be set to the valuedefined in the corresponding RuntimeClass, otherwise it will remain unset and treated as zero.More info: https://git.k8s.io/enhancements/keps/sig-node/688-pod-overhead/README.md
+- `preemption_policy` (String) PreemptionPolicy is the Policy for preempting pods with lower priority.One of Never, PreemptLowerPriority.Defaults to PreemptLowerPriority if unset.
+- `priority` (Number) The priority value. Various system components use this field to find thepriority of the pod. When Priority Admission Controller is enabled, itprevents users from setting this field. The admission controller populatesthis field from PriorityClassName.The higher the value, the higher the priority.
+- `priority_class_name` (String) If specified, indicates the pod's priority. 'system-node-critical' and'system-cluster-critical' are two special keywords which indicate thehighest priorities with the former being the highest priority. Any othername must be defined by creating a PriorityClass object with that name.If not specified, the pod priority will be default or zero if there is nodefault.
+- `readiness_gates` (Attributes List) If specified, all readiness gates will be evaluated for pod readiness.A pod is ready when all its containers are ready ANDall conditions specified in the readiness gates have status equal to 'True'More info: https://git.k8s.io/enhancements/keps/sig-network/580-pod-readiness-gates (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--readiness_gates))
+- `restart_policy` (String) RestartPolicy describes how the container should be restarted.Only one of the following restart policies may be specified.If none of the following policies is specified, the default oneis RestartPolicyAlways.
+- `runtime_class_name` (String) RuntimeClassName refers to a RuntimeClass object in the node.k8s.io group, which should be usedto run this pod. If no RuntimeClass resource matches the named class, the pod will not be run.If unset or empty, the 'legacy' RuntimeClass will be used, which is an implicit class with anempty definition that uses the default runtime handler.More info: https://git.k8s.io/enhancements/keps/sig-node/585-runtime-class
+- `scheduler_name` (String) If specified, the pod will be dispatched by specified scheduler.If not specified, the pod will be dispatched by default scheduler.
+- `security_context` (Attributes) SecurityContext holds pod-level security attributes and common container settings.Optional: Defaults to empty. See type description for default values of each field. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--security_context))
+- `service_account` (String) DeprecatedServiceAccount is a depreciated alias for ServiceAccountName.Deprecated: Use serviceAccountName instead.
+- `service_account_name` (String) ServiceAccountName is the name of the ServiceAccount to use to run this pod.More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/
+- `set_hostname_as_fqdn` (Boolean) If true the pod's hostname will be configured as the pod's FQDN, rather than the leaf name (the default).In Linux containers, this means setting the FQDN in the hostname field of the kernel (the nodename field of struct utsname).In Windows containers, this means setting the registry value of hostname for the registry key HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesTcpipParameters to FQDN.If a pod does not have FQDN, this has no effect.Default to false.
+- `share_process_namespace` (Boolean) Share a single process namespace between all of the containers in a pod.When this is set containers will be able to view and signal processes from other containersin the same pod, and the first process in each container will not be assigned PID 1.HostPID and ShareProcessNamespace cannot both be set.Optional: Default to false.
+- `subdomain` (String) If specified, the fully qualified Pod hostname will be '...svc.'.If not specified, the pod will not have a domainname at all.
- `termination_grace_period_seconds` (Number)
-- `tolerations` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--tolerations))
-- `topology_spread_constraints` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--topology_spread_constraints))
+- `tolerations` (Attributes List) If specified, the pod's tolerations. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--tolerations))
+- `topology_spread_constraints` (Attributes List) TopologySpreadConstraints describes how a group of pods ought to spread across topologydomains. Scheduler will schedule pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--topology_spread_constraints))
- `volumes` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes))
@@ -213,45 +213,45 @@ Optional:
Optional:
-- `node_affinity` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--node_affinity))
-- `pod_affinity` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity))
-- `pod_anti_affinity` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity))
+- `node_affinity` (Attributes) Describes node affinity scheduling rules for the pod. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--node_affinity))
+- `pod_affinity` (Attributes) Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)). (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity))
+- `pod_anti_affinity` (Attributes) Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)). (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity))
### Nested Schema for `spec.deployment.spec.template.spec.affinity.node_affinity`
Optional:
-- `preferred_during_scheduling_ignored_during_execution` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution))
-- `required_during_scheduling_ignored_during_execution` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--node_affinity--required_during_scheduling_ignored_during_execution))
+- `preferred_during_scheduling_ignored_during_execution` (Attributes List) The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution))
+- `required_during_scheduling_ignored_during_execution` (Attributes) If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--node_affinity--required_during_scheduling_ignored_during_execution))
### Nested Schema for `spec.deployment.spec.template.spec.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution`
Required:
-- `preference` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference))
-- `weight` (Number)
+- `preference` (Attributes) A node selector term, associated with the corresponding weight. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference))
+- `weight` (Number) Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.
### Nested Schema for `spec.deployment.spec.template.spec.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution.preference`
Optional:
-- `match_expressions` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference--match_expressions))
-- `match_fields` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference--match_fields))
+- `match_expressions` (Attributes List) A list of node selector requirements by node's labels. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference--match_expressions))
+- `match_fields` (Attributes List) A list of node selector requirements by node's fields. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--node_affinity--preferred_during_scheduling_ignored_during_execution--preference--match_fields))
### Nested Schema for `spec.deployment.spec.template.spec.affinity.node_affinity.preferred_during_scheduling_ignored_during_execution.preference.match_expressions`
Required:
-- `key` (String)
-- `operator` (String)
+- `key` (String) The label key that the selector applies to.
+- `operator` (String) Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
Optional:
-- `values` (List of String)
+- `values` (List of String) An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.
@@ -259,12 +259,12 @@ Optional:
Required:
-- `key` (String)
-- `operator` (String)
+- `key` (String) The label key that the selector applies to.
+- `operator` (String) Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
Optional:
-- `values` (List of String)
+- `values` (List of String) An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.
@@ -274,27 +274,27 @@ Optional:
Required:
-- `node_selector_terms` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms))
+- `node_selector_terms` (Attributes List) Required. A list of node selector terms. The terms are ORed. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms))
### Nested Schema for `spec.deployment.spec.template.spec.affinity.node_affinity.required_during_scheduling_ignored_during_execution.node_selector_terms`
Optional:
-- `match_expressions` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms--match_expressions))
-- `match_fields` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms--match_fields))
+- `match_expressions` (Attributes List) A list of node selector requirements by node's labels. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms--match_expressions))
+- `match_fields` (Attributes List) A list of node selector requirements by node's fields. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--node_affinity--required_during_scheduling_ignored_during_execution--node_selector_terms--match_fields))
### Nested Schema for `spec.deployment.spec.template.spec.affinity.node_affinity.required_during_scheduling_ignored_during_execution.node_selector_terms.match_expressions`
Required:
-- `key` (String)
-- `operator` (String)
+- `key` (String) The label key that the selector applies to.
+- `operator` (String) Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
Optional:
-- `values` (List of String)
+- `values` (List of String) An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.
@@ -302,12 +302,12 @@ Optional:
Required:
-- `key` (String)
-- `operator` (String)
+- `key` (String) The label key that the selector applies to.
+- `operator` (String) Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.
Optional:
-- `values` (List of String)
+- `values` (List of String) An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.
@@ -318,51 +318,51 @@ Optional:
Optional:
-- `preferred_during_scheduling_ignored_during_execution` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution))
-- `required_during_scheduling_ignored_during_execution` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity--required_during_scheduling_ignored_during_execution))
+- `preferred_during_scheduling_ignored_during_execution` (Attributes List) The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution))
+- `required_during_scheduling_ignored_during_execution` (Attributes List) If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity--required_during_scheduling_ignored_during_execution))
### Nested Schema for `spec.deployment.spec.template.spec.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution`
Required:
-- `pod_affinity_term` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term))
-- `weight` (Number)
+- `pod_affinity_term` (Attributes) Required. A pod affinity term, associated with the corresponding weight. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term))
+- `weight` (Number) weight associated with matching the corresponding podAffinityTerm,in the range 1-100.
### Nested Schema for `spec.deployment.spec.template.spec.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term`
Required:
-- `topology_key` (String)
+- `topology_key` (String) This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.
Optional:
-- `label_selector` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
-- `match_label_keys` (List of String)
-- `mismatch_label_keys` (List of String)
-- `namespace_selector` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
-- `namespaces` (List of String)
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods.If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both matchLabelKeys and labelSelector.Also, matchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.Also, mismatchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
### Nested Schema for `spec.deployment.spec.template.spec.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector`
Optional:
-- `match_expressions` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector--match_expressions))
-- `match_labels` (Map of String)
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
### Nested Schema for `spec.deployment.spec.template.spec.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector.match_expressions`
Required:
-- `key` (String)
-- `operator` (String)
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
Optional:
-- `values` (List of String)
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
@@ -371,20 +371,20 @@ Optional:
Optional:
-- `match_expressions` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector--match_expressions))
-- `match_labels` (Map of String)
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
### Nested Schema for `spec.deployment.spec.template.spec.affinity.pod_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector.match_expressions`
Required:
-- `key` (String)
-- `operator` (String)
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
Optional:
-- `values` (List of String)
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
@@ -395,35 +395,35 @@ Optional:
Required:
-- `topology_key` (String)
+- `topology_key` (String) This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.
Optional:
-- `label_selector` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
-- `match_label_keys` (List of String)
-- `mismatch_label_keys` (List of String)
-- `namespace_selector` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
-- `namespaces` (List of String)
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods.If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both matchLabelKeys and labelSelector.Also, matchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.Also, mismatchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
### Nested Schema for `spec.deployment.spec.template.spec.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.label_selector`
Optional:
-- `match_expressions` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector--match_expressions))
-- `match_labels` (Map of String)
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
### Nested Schema for `spec.deployment.spec.template.spec.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.label_selector.match_expressions`
Required:
-- `key` (String)
-- `operator` (String)
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
Optional:
-- `values` (List of String)
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
@@ -432,20 +432,20 @@ Optional:
Optional:
-- `match_expressions` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector--match_expressions))
-- `match_labels` (Map of String)
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
### Nested Schema for `spec.deployment.spec.template.spec.affinity.pod_affinity.required_during_scheduling_ignored_during_execution.namespace_selector.match_expressions`
Required:
-- `key` (String)
-- `operator` (String)
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
Optional:
-- `values` (List of String)
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
@@ -456,51 +456,51 @@ Optional:
Optional:
-- `preferred_during_scheduling_ignored_during_execution` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution))
-- `required_during_scheduling_ignored_during_execution` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution))
+- `preferred_during_scheduling_ignored_during_execution` (Attributes List) The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution))
+- `required_during_scheduling_ignored_during_execution` (Attributes List) If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution))
### Nested Schema for `spec.deployment.spec.template.spec.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution`
Required:
-- `pod_affinity_term` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term))
-- `weight` (Number)
+- `pod_affinity_term` (Attributes) Required. A pod affinity term, associated with the corresponding weight. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term))
+- `weight` (Number) weight associated with matching the corresponding podAffinityTerm,in the range 1-100.
### Nested Schema for `spec.deployment.spec.template.spec.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term`
Required:
-- `topology_key` (String)
+- `topology_key` (String) This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.
Optional:
-- `label_selector` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
-- `match_label_keys` (List of String)
-- `mismatch_label_keys` (List of String)
-- `namespace_selector` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
-- `namespaces` (List of String)
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods.If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both matchLabelKeys and labelSelector.Also, matchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.Also, mismatchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
### Nested Schema for `spec.deployment.spec.template.spec.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector`
Optional:
-- `match_expressions` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector--match_expressions))
-- `match_labels` (Map of String)
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
### Nested Schema for `spec.deployment.spec.template.spec.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.label_selector.match_expressions`
Required:
-- `key` (String)
-- `operator` (String)
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
Optional:
-- `values` (List of String)
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
@@ -509,20 +509,20 @@ Optional:
Optional:
-- `match_expressions` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector--match_expressions))
-- `match_labels` (Map of String)
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
### Nested Schema for `spec.deployment.spec.template.spec.affinity.pod_anti_affinity.preferred_during_scheduling_ignored_during_execution.pod_affinity_term.namespace_selector.match_expressions`
Required:
-- `key` (String)
-- `operator` (String)
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
Optional:
-- `values` (List of String)
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
@@ -533,35 +533,35 @@ Optional:
Required:
-- `topology_key` (String)
+- `topology_key` (String) This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.
Optional:
-- `label_selector` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
-- `match_label_keys` (List of String)
-- `mismatch_label_keys` (List of String)
-- `namespace_selector` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
-- `namespaces` (List of String)
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods.If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both matchLabelKeys and labelSelector.Also, matchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods willbe taken into consideration. The keys are used to lookup values from theincoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)'to select the group of existing pods which pods will be taken into considerationfor the incoming pod's pod (anti) affinity. Keys that don't exist in the incomingpod labels will be ignored. The default value is empty.The same key is forbidden to exist in both mismatchLabelKeys and labelSelector.Also, mismatchLabelKeys cannot be set when labelSelector isn't set.This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
+- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
### Nested Schema for `spec.deployment.spec.template.spec.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.label_selector`
Optional:
-- `match_expressions` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector--match_expressions))
-- `match_labels` (Map of String)
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
### Nested Schema for `spec.deployment.spec.template.spec.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.label_selector.match_expressions`
Required:
-- `key` (String)
-- `operator` (String)
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
Optional:
-- `values` (List of String)
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
@@ -570,20 +570,20 @@ Optional:
Optional:
-- `match_expressions` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector--match_expressions))
-- `match_labels` (Map of String)
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
### Nested Schema for `spec.deployment.spec.template.spec.affinity.pod_anti_affinity.required_during_scheduling_ignored_during_execution.namespace_selector.match_expressions`
Required:
-- `key` (String)
-- `operator` (String)
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
Optional:
-- `values` (List of String)
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
@@ -595,67 +595,67 @@ Optional:
Required:
-- `name` (String)
+- `name` (String) Name of the container specified as a DNS_LABEL.Each container in a pod must have a unique name (DNS_LABEL).Cannot be updated.
Optional:
-- `args` (List of String)
-- `command` (List of String)
-- `env` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--env))
-- `env_from` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--env_from))
-- `image` (String)
-- `image_pull_policy` (String)
-- `lifecycle` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle))
-- `liveness_probe` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--liveness_probe))
-- `ports` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--ports))
-- `readiness_probe` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--readiness_probe))
-- `resize_policy` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--resize_policy))
-- `resources` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--resources))
-- `restart_policy` (String)
-- `security_context` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--security_context))
-- `startup_probe` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--startup_probe))
-- `stdin` (Boolean)
-- `stdin_once` (Boolean)
-- `termination_message_path` (String)
-- `termination_message_policy` (String)
-- `tty` (Boolean)
-- `volume_devices` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--volume_devices))
-- `volume_mounts` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--volume_mounts))
-- `working_dir` (String)
+- `args` (List of String) Arguments to the entrypoint.The container image's CMD is used if this is not provided.Variable references $(VAR_NAME) are expanded using the container's environment. If a variablecannot be resolved, the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. '$$(VAR_NAME)' willproduce the string literal '$(VAR_NAME)'. Escaped references will never be expanded, regardlessof whether the variable exists or not. Cannot be updated.More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
+- `command` (List of String) Entrypoint array. Not executed within a shell.The container image's ENTRYPOINT is used if this is not provided.Variable references $(VAR_NAME) are expanded using the container's environment. If a variablecannot be resolved, the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. '$$(VAR_NAME)' willproduce the string literal '$(VAR_NAME)'. Escaped references will never be expanded, regardlessof whether the variable exists or not. Cannot be updated.More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
+- `env` (Attributes List) List of environment variables to set in the container.Cannot be updated. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--env))
+- `env_from` (Attributes List) List of sources to populate environment variables in the container.The keys defined within a source must be a C_IDENTIFIER. All invalid keyswill be reported as an event when the container is starting. When a key exists in multiplesources, the value associated with the last source will take precedence.Values defined by an Env with a duplicate key will take precedence.Cannot be updated. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--env_from))
+- `image` (String) Container image name.More info: https://kubernetes.io/docs/concepts/containers/imagesThis field is optional to allow higher level config management to default or overridecontainer images in workload controllers like Deployments and StatefulSets.
+- `image_pull_policy` (String) Image pull policy.One of Always, Never, IfNotPresent.Defaults to Always if :latest tag is specified, or IfNotPresent otherwise.Cannot be updated.More info: https://kubernetes.io/docs/concepts/containers/images#updating-images
+- `lifecycle` (Attributes) Actions that the management system should take in response to container lifecycle events.Cannot be updated. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle))
+- `liveness_probe` (Attributes) Periodic probe of container liveness.Container will be restarted if the probe fails.Cannot be updated.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--liveness_probe))
+- `ports` (Attributes List) List of ports to expose from the container. Not specifying a port hereDOES NOT prevent that port from being exposed. Any port which islistening on the default '0.0.0.0' address inside a container will beaccessible from the network.Modifying this array with strategic merge patch may corrupt the data.For more information See https://github.com/kubernetes/kubernetes/issues/108255.Cannot be updated. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--ports))
+- `readiness_probe` (Attributes) Periodic probe of container service readiness.Container will be removed from service endpoints if the probe fails.Cannot be updated.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--readiness_probe))
+- `resize_policy` (Attributes List) Resources resize policy for the container. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--resize_policy))
+- `resources` (Attributes) Compute Resources required by this container.Cannot be updated.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/ (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--resources))
+- `restart_policy` (String) RestartPolicy defines the restart behavior of individual containers in a pod.This field may only be set for init containers, and the only allowed value is 'Always'.For non-init containers or when this field is not specified,the restart behavior is defined by the Pod's restart policy and the container type.Setting the RestartPolicy as 'Always' for the init container will have the following effect:this init container will be continually restarted onexit until all regular containers have terminated. Once all regularcontainers have completed, all init containers with restartPolicy 'Always'will be shut down. This lifecycle differs from normal init containers andis often referred to as a 'sidecar' container. Although this initcontainer still starts in the init container sequence, it does not waitfor the container to complete before proceeding to the next initcontainer. Instead, the next init container starts immediately after thisinit container is started, or after any startupProbe has successfullycompleted.
+- `security_context` (Attributes) SecurityContext defines the security options the container should be run with.If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/ (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--security_context))
+- `startup_probe` (Attributes) StartupProbe indicates that the Pod has successfully initialized.If specified, no other probes are executed until this completes successfully.If this probe fails, the Pod will be restarted, just as if the livenessProbe failed.This can be used to provide different probe parameters at the beginning of a Pod's lifecycle,when it might take a long time to load data or warm a cache, than during steady-state operation.This cannot be updated.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--startup_probe))
+- `stdin` (Boolean) Whether this container should allocate a buffer for stdin in the container runtime. If thisis not set, reads from stdin in the container will always result in EOF.Default is false.
+- `stdin_once` (Boolean) Whether the container runtime should close the stdin channel after it has been opened bya single attach. When stdin is true the stdin stream will remain open across multiple attachsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until thefirst client attaches to stdin, and then remains open and accepts data until the client disconnects,at which time stdin is closed and remains closed until the container is restarted. If thisflag is false, a container processes that reads from stdin will never receive an EOF.Default is false
+- `termination_message_path` (String) Optional: Path at which the file to which the container's termination messagewill be written is mounted into the container's filesystem.Message written is intended to be brief final status, such as an assertion failure message.Will be truncated by the node if greater than 4096 bytes. The total message length acrossall containers will be limited to 12kb.Defaults to /dev/termination-log.Cannot be updated.
+- `termination_message_policy` (String) Indicate how the termination message should be populated. File will use the contents ofterminationMessagePath to populate the container status message on both success and failure.FallbackToLogsOnError will use the last chunk of container log output if the terminationmessage file is empty and the container exited with an error.The log output is limited to 2048 bytes or 80 lines, whichever is smaller.Defaults to File.Cannot be updated.
+- `tty` (Boolean) Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.Default is false.
+- `volume_devices` (Attributes List) volumeDevices is the list of block devices to be used by the container. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--volume_devices))
+- `volume_mounts` (Attributes List) Pod volumes to mount into the container's filesystem.Cannot be updated. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--volume_mounts))
+- `working_dir` (String) Container's working directory.If not specified, the container runtime's default will be used, whichmight be configured in the container image.Cannot be updated.
### Nested Schema for `spec.deployment.spec.template.spec.containers.env`
Required:
-- `name` (String)
+- `name` (String) Name of the environment variable. Must be a C_IDENTIFIER.
Optional:
-- `value` (String)
-- `value_from` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--env--value_from))
+- `value` (String) Variable references $(VAR_NAME) are expandedusing the previously defined environment variables in the container andany service environment variables. If a variable cannot be resolved,the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.'$$(VAR_NAME)' will produce the string literal '$(VAR_NAME)'.Escaped references will never be expanded, regardless of whether the variableexists or not.Defaults to ''.
+- `value_from` (Attributes) Source for the environment variable's value. Cannot be used if value is not empty. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--env--value_from))
### Nested Schema for `spec.deployment.spec.template.spec.containers.env.value_from`
Optional:
-- `config_map_key_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--env--value_from--config_map_key_ref))
-- `field_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--env--value_from--field_ref))
-- `resource_field_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--env--value_from--resource_field_ref))
-- `secret_key_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--env--value_from--secret_key_ref))
+- `config_map_key_ref` (Attributes) Selects a key of a ConfigMap. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--env--value_from--config_map_key_ref))
+- `field_ref` (Attributes) Selects a field of the pod: supports metadata.name, metadata.namespace, 'metadata.labels['']', 'metadata.annotations['']',spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--env--value_from--field_ref))
+- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--env--value_from--resource_field_ref))
+- `secret_key_ref` (Attributes) Selects a key of a secret in the pod's namespace (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--env--value_from--secret_key_ref))
### Nested Schema for `spec.deployment.spec.template.spec.containers.env.value_from.config_map_key_ref`
Required:
-- `key` (String)
+- `key` (String) The key to select.
Optional:
-- `name` (String)
-- `optional` (Boolean)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) Specify whether the ConfigMap or its key must be defined
@@ -663,11 +663,11 @@ Optional:
Required:
-- `field_path` (String)
+- `field_path` (String) Path of the field to select in the specified API version.
Optional:
-- `api_version` (String)
+- `api_version` (String) Version of the schema the FieldPath is written in terms of, defaults to 'v1'.
@@ -675,12 +675,12 @@ Optional:
Required:
-- `resource` (String)
+- `resource` (String) Required: resource to select
Optional:
-- `container_name` (String)
-- `divisor` (String)
+- `container_name` (String) Container name: required for volumes, optional for env vars
+- `divisor` (String) Specifies the output format of the exposed resources, defaults to '1'
@@ -688,12 +688,12 @@ Optional:
Required:
-- `key` (String)
+- `key` (String) The key of the secret to select from. Must be a valid secret key.
Optional:
-- `name` (String)
-- `optional` (Boolean)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) Specify whether the Secret or its key must be defined
@@ -703,17 +703,17 @@ Optional:
Optional:
-- `config_map_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--env_from--config_map_ref))
-- `prefix` (String)
-- `secret_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--env_from--secret_ref))
+- `config_map_ref` (Attributes) The ConfigMap to select from (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--env_from--config_map_ref))
+- `prefix` (String) An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.
+- `secret_ref` (Attributes) The Secret to select from (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--env_from--secret_ref))
### Nested Schema for `spec.deployment.spec.template.spec.containers.env_from.config_map_ref`
Optional:
-- `name` (String)
-- `optional` (Boolean)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) Specify whether the ConfigMap must be defined
@@ -721,8 +721,8 @@ Optional:
Optional:
-- `name` (String)
-- `optional` (Boolean)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) Specify whether the Secret must be defined
@@ -731,25 +731,25 @@ Optional:
Optional:
-- `post_start` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--post_start))
-- `pre_stop` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--pre_stop))
+- `post_start` (Attributes) PostStart is called immediately after a container is created. If the handler fails,the container is terminated and restarted according to its restart policy.Other management of the container blocks until the hook completes.More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--post_start))
+- `pre_stop` (Attributes) PreStop is called immediately before a container is terminated due to anAPI request or management event such as liveness/startup probe failure,preemption, resource contention, etc. The handler is not called if thecontainer crashes or exits. The Pod's termination grace period countdown begins before thePreStop hook is executed. Regardless of the outcome of the handler, thecontainer will eventually terminate within the Pod's termination graceperiod (unless delayed by finalizers). Other management of the container blocks until the hook completesor until the termination grace period is reached.More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--pre_stop))
### Nested Schema for `spec.deployment.spec.template.spec.containers.lifecycle.post_start`
Optional:
-- `exec` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--post_start--exec))
-- `http_get` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--post_start--http_get))
-- `sleep` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--post_start--sleep))
-- `tcp_socket` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--post_start--tcp_socket))
+- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--post_start--exec))
+- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--post_start--http_get))
+- `sleep` (Attributes) Sleep represents the duration that the container should sleep before being terminated. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--post_start--sleep))
+- `tcp_socket` (Attributes) Deprecated. TCPSocket is NOT supported as a LifecycleHandler and keptfor the backward compatibility. There are no validation of this field andlifecycle hooks will fail in runtime when tcp handler is specified. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--post_start--tcp_socket))
### Nested Schema for `spec.deployment.spec.template.spec.containers.lifecycle.post_start.exec`
Optional:
-- `command` (List of String)
+- `command` (List of String) Command is the command line to execute inside the container, the working directory for thecommand is root ('/') in the container's filesystem. The command is simply exec'd, it isnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To usea shell, you need to explicitly call out to that shell.Exit status of 0 is treated as live/healthy and non-zero is unhealthy.
@@ -757,22 +757,22 @@ Optional:
Required:
-- `port` (String)
+- `port` (String) Name or number of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
-- `http_headers` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--post_start--http_get--http_headers))
-- `path` (String)
-- `scheme` (String)
+- `host` (String) Host name to connect to, defaults to the pod IP. You probably want to set'Host' in httpHeaders instead.
+- `http_headers` (Attributes List) Custom headers to set in the request. HTTP allows repeated headers. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--post_start--http_get--http_headers))
+- `path` (String) Path to access on the HTTP server.
+- `scheme` (String) Scheme to use for connecting to the host.Defaults to HTTP.
### Nested Schema for `spec.deployment.spec.template.spec.containers.lifecycle.post_start.http_get.http_headers`
Required:
-- `name` (String)
-- `value` (String)
+- `name` (String) The header field name.This will be canonicalized upon output, so case-variant names will be understood as the same header.
+- `value` (String) The header field value
@@ -781,7 +781,7 @@ Required:
Required:
-- `seconds` (Number)
+- `seconds` (Number) Seconds is the number of seconds to sleep.
@@ -789,11 +789,11 @@ Required:
Required:
-- `port` (String)
+- `port` (String) Number or name of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
+- `host` (String) Optional: Host name to connect to, defaults to the pod IP.
@@ -802,17 +802,17 @@ Optional:
Optional:
-- `exec` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--pre_stop--exec))
-- `http_get` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--pre_stop--http_get))
-- `sleep` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--pre_stop--sleep))
-- `tcp_socket` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--pre_stop--tcp_socket))
+- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--pre_stop--exec))
+- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--pre_stop--http_get))
+- `sleep` (Attributes) Sleep represents the duration that the container should sleep before being terminated. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--pre_stop--sleep))
+- `tcp_socket` (Attributes) Deprecated. TCPSocket is NOT supported as a LifecycleHandler and keptfor the backward compatibility. There are no validation of this field andlifecycle hooks will fail in runtime when tcp handler is specified. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--pre_stop--tcp_socket))
### Nested Schema for `spec.deployment.spec.template.spec.containers.lifecycle.pre_stop.exec`
Optional:
-- `command` (List of String)
+- `command` (List of String) Command is the command line to execute inside the container, the working directory for thecommand is root ('/') in the container's filesystem. The command is simply exec'd, it isnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To usea shell, you need to explicitly call out to that shell.Exit status of 0 is treated as live/healthy and non-zero is unhealthy.
@@ -820,22 +820,22 @@ Optional:
Required:
-- `port` (String)
+- `port` (String) Name or number of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
-- `http_headers` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--pre_stop--http_get--http_headers))
-- `path` (String)
-- `scheme` (String)
+- `host` (String) Host name to connect to, defaults to the pod IP. You probably want to set'Host' in httpHeaders instead.
+- `http_headers` (Attributes List) Custom headers to set in the request. HTTP allows repeated headers. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--lifecycle--pre_stop--http_get--http_headers))
+- `path` (String) Path to access on the HTTP server.
+- `scheme` (String) Scheme to use for connecting to the host.Defaults to HTTP.
### Nested Schema for `spec.deployment.spec.template.spec.containers.lifecycle.pre_stop.http_get.http_headers`
Required:
-- `name` (String)
-- `value` (String)
+- `name` (String) The header field name.This will be canonicalized upon output, so case-variant names will be understood as the same header.
+- `value` (String) The header field value
@@ -844,7 +844,7 @@ Required:
Required:
-- `seconds` (Number)
+- `seconds` (Number) Seconds is the number of seconds to sleep.
@@ -852,11 +852,11 @@ Required:
Required:
-- `port` (String)
+- `port` (String) Number or name of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
+- `host` (String) Optional: Host name to connect to, defaults to the pod IP.
@@ -866,23 +866,23 @@ Optional:
Optional:
-- `exec` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--liveness_probe--exec))
-- `failure_threshold` (Number)
-- `grpc` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--liveness_probe--grpc))
-- `http_get` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--liveness_probe--http_get))
-- `initial_delay_seconds` (Number)
-- `period_seconds` (Number)
-- `success_threshold` (Number)
-- `tcp_socket` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--liveness_probe--tcp_socket))
-- `termination_grace_period_seconds` (Number)
-- `timeout_seconds` (Number)
+- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--liveness_probe--exec))
+- `failure_threshold` (Number) Minimum consecutive failures for the probe to be considered failed after having succeeded.Defaults to 3. Minimum value is 1.
+- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--liveness_probe--grpc))
+- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--liveness_probe--http_get))
+- `initial_delay_seconds` (Number) Number of seconds after the container has started before liveness probes are initiated.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
+- `period_seconds` (Number) How often (in seconds) to perform the probe.Default to 10 seconds. Minimum value is 1.
+- `success_threshold` (Number) Minimum consecutive successes for the probe to be considered successful after having failed.Defaults to 1. Must be 1 for liveness and startup. Minimum value is 1.
+- `tcp_socket` (Attributes) TCPSocket specifies an action involving a TCP port. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--liveness_probe--tcp_socket))
+- `termination_grace_period_seconds` (Number) Optional duration in seconds the pod needs to terminate gracefully upon probe failure.The grace period is the duration in seconds after the processes running in the pod are senta termination signal and the time when the processes are forcibly halted with a kill signal.Set this value longer than the expected cleanup time for your process.If this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, thisvalue overrides the value provided by the pod spec.Value must be non-negative integer. The value zero indicates stop immediately viathe kill signal (no opportunity to shut down).This is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.Minimum value is 1. spec.terminationGracePeriodSeconds is used if unset.
+- `timeout_seconds` (Number) Number of seconds after which the probe times out.Defaults to 1 second. Minimum value is 1.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
### Nested Schema for `spec.deployment.spec.template.spec.containers.liveness_probe.exec`
Optional:
-- `command` (List of String)
+- `command` (List of String) Command is the command line to execute inside the container, the working directory for thecommand is root ('/') in the container's filesystem. The command is simply exec'd, it isnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To usea shell, you need to explicitly call out to that shell.Exit status of 0 is treated as live/healthy and non-zero is unhealthy.
@@ -890,11 +890,11 @@ Optional:
Required:
-- `port` (Number)
+- `port` (Number) Port number of the gRPC service. Number must be in the range 1 to 65535.
Optional:
-- `service` (String)
+- `service` (String) Service is the name of the service to place in the gRPC HealthCheckRequest(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).If this is not specified, the default behavior is defined by gRPC.
@@ -902,22 +902,22 @@ Optional:
Required:
-- `port` (String)
+- `port` (String) Name or number of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
-- `http_headers` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--liveness_probe--http_get--http_headers))
-- `path` (String)
-- `scheme` (String)
+- `host` (String) Host name to connect to, defaults to the pod IP. You probably want to set'Host' in httpHeaders instead.
+- `http_headers` (Attributes List) Custom headers to set in the request. HTTP allows repeated headers. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--liveness_probe--http_get--http_headers))
+- `path` (String) Path to access on the HTTP server.
+- `scheme` (String) Scheme to use for connecting to the host.Defaults to HTTP.
### Nested Schema for `spec.deployment.spec.template.spec.containers.liveness_probe.http_get.http_headers`
Required:
-- `name` (String)
-- `value` (String)
+- `name` (String) The header field name.This will be canonicalized upon output, so case-variant names will be understood as the same header.
+- `value` (String) The header field value
@@ -926,11 +926,11 @@ Required:
Required:
-- `port` (String)
+- `port` (String) Number or name of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
+- `host` (String) Optional: Host name to connect to, defaults to the pod IP.
@@ -939,14 +939,14 @@ Optional:
Required:
-- `container_port` (Number)
+- `container_port` (Number) Number of port to expose on the pod's IP address.This must be a valid port number, 0 < x < 65536.
Optional:
-- `host_ip` (String)
-- `host_port` (Number)
-- `name` (String)
-- `protocol` (String)
+- `host_ip` (String) What host IP to bind the external port to.
+- `host_port` (Number) Number of port to expose on the host.If specified, this must be a valid port number, 0 < x < 65536.If HostNetwork is specified, this must match ContainerPort.Most containers do not need this.
+- `name` (String) If specified, this must be an IANA_SVC_NAME and unique within the pod. Eachnamed port in a pod must have a unique name. Name for the port that can bereferred to by services.
+- `protocol` (String) Protocol for port. Must be UDP, TCP, or SCTP.Defaults to 'TCP'.
@@ -954,23 +954,23 @@ Optional:
Optional:
-- `exec` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--readiness_probe--exec))
-- `failure_threshold` (Number)
-- `grpc` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--readiness_probe--grpc))
-- `http_get` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--readiness_probe--http_get))
-- `initial_delay_seconds` (Number)
-- `period_seconds` (Number)
-- `success_threshold` (Number)
-- `tcp_socket` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--readiness_probe--tcp_socket))
-- `termination_grace_period_seconds` (Number)
-- `timeout_seconds` (Number)
+- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--readiness_probe--exec))
+- `failure_threshold` (Number) Minimum consecutive failures for the probe to be considered failed after having succeeded.Defaults to 3. Minimum value is 1.
+- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--readiness_probe--grpc))
+- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--readiness_probe--http_get))
+- `initial_delay_seconds` (Number) Number of seconds after the container has started before liveness probes are initiated.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
+- `period_seconds` (Number) How often (in seconds) to perform the probe.Default to 10 seconds. Minimum value is 1.
+- `success_threshold` (Number) Minimum consecutive successes for the probe to be considered successful after having failed.Defaults to 1. Must be 1 for liveness and startup. Minimum value is 1.
+- `tcp_socket` (Attributes) TCPSocket specifies an action involving a TCP port. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--readiness_probe--tcp_socket))
+- `termination_grace_period_seconds` (Number) Optional duration in seconds the pod needs to terminate gracefully upon probe failure.The grace period is the duration in seconds after the processes running in the pod are senta termination signal and the time when the processes are forcibly halted with a kill signal.Set this value longer than the expected cleanup time for your process.If this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, thisvalue overrides the value provided by the pod spec.Value must be non-negative integer. The value zero indicates stop immediately viathe kill signal (no opportunity to shut down).This is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.Minimum value is 1. spec.terminationGracePeriodSeconds is used if unset.
+- `timeout_seconds` (Number) Number of seconds after which the probe times out.Defaults to 1 second. Minimum value is 1.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
### Nested Schema for `spec.deployment.spec.template.spec.containers.readiness_probe.exec`
Optional:
-- `command` (List of String)
+- `command` (List of String) Command is the command line to execute inside the container, the working directory for thecommand is root ('/') in the container's filesystem. The command is simply exec'd, it isnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To usea shell, you need to explicitly call out to that shell.Exit status of 0 is treated as live/healthy and non-zero is unhealthy.
@@ -978,11 +978,11 @@ Optional:
Required:
-- `port` (Number)
+- `port` (Number) Port number of the gRPC service. Number must be in the range 1 to 65535.
Optional:
-- `service` (String)
+- `service` (String) Service is the name of the service to place in the gRPC HealthCheckRequest(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).If this is not specified, the default behavior is defined by gRPC.
@@ -990,22 +990,22 @@ Optional:
Required:
-- `port` (String)
+- `port` (String) Name or number of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
-- `http_headers` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--readiness_probe--http_get--http_headers))
-- `path` (String)
-- `scheme` (String)
+- `host` (String) Host name to connect to, defaults to the pod IP. You probably want to set'Host' in httpHeaders instead.
+- `http_headers` (Attributes List) Custom headers to set in the request. HTTP allows repeated headers. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--readiness_probe--http_get--http_headers))
+- `path` (String) Path to access on the HTTP server.
+- `scheme` (String) Scheme to use for connecting to the host.Defaults to HTTP.
### Nested Schema for `spec.deployment.spec.template.spec.containers.readiness_probe.http_get.http_headers`
Required:
-- `name` (String)
-- `value` (String)
+- `name` (String) The header field name.This will be canonicalized upon output, so case-variant names will be understood as the same header.
+- `value` (String) The header field value
@@ -1014,11 +1014,11 @@ Required:
Required:
-- `port` (String)
+- `port` (String) Number or name of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
+- `host` (String) Optional: Host name to connect to, defaults to the pod IP.
@@ -1027,8 +1027,8 @@ Optional:
Required:
-- `resource_name` (String)
-- `restart_policy` (String)
+- `resource_name` (String) Name of the resource to which this resource resize policy applies.Supported values: cpu, memory.
+- `restart_policy` (String) Restart policy to apply when specified resource is resized.If not specified, it defaults to NotRequired.
@@ -1036,16 +1036,16 @@ Required:
Optional:
-- `claims` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--resources--claims))
-- `limits` (Map of String)
-- `requests` (Map of String)
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--resources--claims))
+- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
### Nested Schema for `spec.deployment.spec.template.spec.containers.resources.claims`
Required:
-- `name` (String)
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.
@@ -1054,29 +1054,29 @@ Required:
Optional:
-- `allow_privilege_escalation` (Boolean)
-- `app_armor_profile` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--security_context--app_armor_profile))
-- `capabilities` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--security_context--capabilities))
-- `privileged` (Boolean)
-- `proc_mount` (String)
-- `read_only_root_filesystem` (Boolean)
-- `run_as_group` (Number)
-- `run_as_non_root` (Boolean)
-- `run_as_user` (Number)
-- `se_linux_options` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--security_context--se_linux_options))
-- `seccomp_profile` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--security_context--seccomp_profile))
-- `windows_options` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--security_context--windows_options))
+- `allow_privilege_escalation` (Boolean) AllowPrivilegeEscalation controls whether a process can gain moreprivileges than its parent process. This bool directly controls ifthe no_new_privs flag will be set on the container process.AllowPrivilegeEscalation is true always when the container is:1) run as Privileged2) has CAP_SYS_ADMINNote that this field cannot be set when spec.os.name is windows.
+- `app_armor_profile` (Attributes) appArmorProfile is the AppArmor options to use by this container. If set, this profileoverrides the pod's appArmorProfile.Note that this field cannot be set when spec.os.name is windows. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--security_context--app_armor_profile))
+- `capabilities` (Attributes) The capabilities to add/drop when running containers.Defaults to the default set of capabilities granted by the container runtime.Note that this field cannot be set when spec.os.name is windows. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--security_context--capabilities))
+- `privileged` (Boolean) Run container in privileged mode.Processes in privileged containers are essentially equivalent to root on the host.Defaults to false.Note that this field cannot be set when spec.os.name is windows.
+- `proc_mount` (String) procMount denotes the type of proc mount to use for the containers.The default is DefaultProcMount which uses the container runtime defaults forreadonly paths and masked paths.This requires the ProcMountType feature flag to be enabled.Note that this field cannot be set when spec.os.name is windows.
+- `read_only_root_filesystem` (Boolean) Whether this container has a read-only root filesystem.Default is false.Note that this field cannot be set when spec.os.name is windows.
+- `run_as_group` (Number) The GID to run the entrypoint of the container process.Uses runtime default if unset.May also be set in PodSecurityContext. If set in both SecurityContext andPodSecurityContext, the value specified in SecurityContext takes precedence.Note that this field cannot be set when spec.os.name is windows.
+- `run_as_non_root` (Boolean) Indicates that the container must run as a non-root user.If true, the Kubelet will validate the image at runtime to ensure that itdoes not run as UID 0 (root) and fail to start the container if it does.If unset or false, no such validation will be performed.May also be set in PodSecurityContext. If set in both SecurityContext andPodSecurityContext, the value specified in SecurityContext takes precedence.
+- `run_as_user` (Number) The UID to run the entrypoint of the container process.Defaults to user specified in image metadata if unspecified.May also be set in PodSecurityContext. If set in both SecurityContext andPodSecurityContext, the value specified in SecurityContext takes precedence.Note that this field cannot be set when spec.os.name is windows.
+- `se_linux_options` (Attributes) The SELinux context to be applied to the container.If unspecified, the container runtime will allocate a random SELinux context for eachcontainer. May also be set in PodSecurityContext. If set in both SecurityContext andPodSecurityContext, the value specified in SecurityContext takes precedence.Note that this field cannot be set when spec.os.name is windows. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--security_context--se_linux_options))
+- `seccomp_profile` (Attributes) The seccomp options to use by this container. If seccomp options areprovided at both the pod & container level, the container optionsoverride the pod options.Note that this field cannot be set when spec.os.name is windows. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--security_context--seccomp_profile))
+- `windows_options` (Attributes) The Windows specific settings applied to all containers.If unspecified, the options from the PodSecurityContext will be used.If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.Note that this field cannot be set when spec.os.name is linux. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--security_context--windows_options))
### Nested Schema for `spec.deployment.spec.template.spec.containers.security_context.app_armor_profile`
Required:
-- `type` (String)
+- `type` (String) type indicates which kind of AppArmor profile will be applied.Valid options are: Localhost - a profile pre-loaded on the node. RuntimeDefault - the container runtime's default profile. Unconfined - no AppArmor enforcement.
Optional:
-- `localhost_profile` (String)
+- `localhost_profile` (String) localhostProfile indicates a profile loaded on the node that should be used.The profile must be preconfigured on the node to work.Must match the loaded name of the profile.Must be set if and only if type is 'Localhost'.
@@ -1084,8 +1084,8 @@ Optional:
Optional:
-- `add` (List of String)
-- `drop` (List of String)
+- `add` (List of String) Added capabilities
+- `drop` (List of String) Removed capabilities
@@ -1093,10 +1093,10 @@ Optional:
Optional:
-- `level` (String)
-- `role` (String)
-- `type` (String)
-- `user` (String)
+- `level` (String) Level is SELinux level label that applies to the container.
+- `role` (String) Role is a SELinux role label that applies to the container.
+- `type` (String) Type is a SELinux type label that applies to the container.
+- `user` (String) User is a SELinux user label that applies to the container.
@@ -1104,11 +1104,11 @@ Optional:
Required:
-- `type` (String)
+- `type` (String) type indicates which kind of seccomp profile will be applied.Valid options are:Localhost - a profile defined in a file on the node should be used.RuntimeDefault - the container runtime default profile should be used.Unconfined - no profile should be applied.
Optional:
-- `localhost_profile` (String)
+- `localhost_profile` (String) localhostProfile indicates a profile defined in a file on the node should be used.The profile must be preconfigured on the node to work.Must be a descending path, relative to the kubelet's configured seccomp profile location.Must be set if type is 'Localhost'. Must NOT be set for any other type.
@@ -1116,10 +1116,10 @@ Optional:
Optional:
-- `gmsa_credential_spec` (String)
-- `gmsa_credential_spec_name` (String)
-- `host_process` (Boolean)
-- `run_as_user_name` (String)
+- `gmsa_credential_spec` (String) GMSACredentialSpec is where the GMSA admission webhook(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of theGMSA credential spec named by the GMSACredentialSpecName field.
+- `gmsa_credential_spec_name` (String) GMSACredentialSpecName is the name of the GMSA credential spec to use.
+- `host_process` (Boolean) HostProcess determines if a container should be run as a 'Host Process' container.All of a Pod's containers must have the same effective HostProcess value(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).In addition, if HostProcess is true then HostNetwork must also be set to true.
+- `run_as_user_name` (String) The UserName in Windows to run the entrypoint of the container process.Defaults to the user specified in image metadata if unspecified.May also be set in PodSecurityContext. If set in both SecurityContext andPodSecurityContext, the value specified in SecurityContext takes precedence.
@@ -1128,23 +1128,23 @@ Optional:
Optional:
-- `exec` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--startup_probe--exec))
-- `failure_threshold` (Number)
-- `grpc` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--startup_probe--grpc))
-- `http_get` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--startup_probe--http_get))
-- `initial_delay_seconds` (Number)
-- `period_seconds` (Number)
-- `success_threshold` (Number)
-- `tcp_socket` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--startup_probe--tcp_socket))
-- `termination_grace_period_seconds` (Number)
-- `timeout_seconds` (Number)
+- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--startup_probe--exec))
+- `failure_threshold` (Number) Minimum consecutive failures for the probe to be considered failed after having succeeded.Defaults to 3. Minimum value is 1.
+- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--startup_probe--grpc))
+- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--startup_probe--http_get))
+- `initial_delay_seconds` (Number) Number of seconds after the container has started before liveness probes are initiated.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
+- `period_seconds` (Number) How often (in seconds) to perform the probe.Default to 10 seconds. Minimum value is 1.
+- `success_threshold` (Number) Minimum consecutive successes for the probe to be considered successful after having failed.Defaults to 1. Must be 1 for liveness and startup. Minimum value is 1.
+- `tcp_socket` (Attributes) TCPSocket specifies an action involving a TCP port. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--startup_probe--tcp_socket))
+- `termination_grace_period_seconds` (Number) Optional duration in seconds the pod needs to terminate gracefully upon probe failure.The grace period is the duration in seconds after the processes running in the pod are senta termination signal and the time when the processes are forcibly halted with a kill signal.Set this value longer than the expected cleanup time for your process.If this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, thisvalue overrides the value provided by the pod spec.Value must be non-negative integer. The value zero indicates stop immediately viathe kill signal (no opportunity to shut down).This is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.Minimum value is 1. spec.terminationGracePeriodSeconds is used if unset.
+- `timeout_seconds` (Number) Number of seconds after which the probe times out.Defaults to 1 second. Minimum value is 1.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
### Nested Schema for `spec.deployment.spec.template.spec.containers.startup_probe.exec`
Optional:
-- `command` (List of String)
+- `command` (List of String) Command is the command line to execute inside the container, the working directory for thecommand is root ('/') in the container's filesystem. The command is simply exec'd, it isnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To usea shell, you need to explicitly call out to that shell.Exit status of 0 is treated as live/healthy and non-zero is unhealthy.
@@ -1152,11 +1152,11 @@ Optional:
Required:
-- `port` (Number)
+- `port` (Number) Port number of the gRPC service. Number must be in the range 1 to 65535.
Optional:
-- `service` (String)
+- `service` (String) Service is the name of the service to place in the gRPC HealthCheckRequest(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).If this is not specified, the default behavior is defined by gRPC.
@@ -1164,22 +1164,22 @@ Optional:
Required:
-- `port` (String)
+- `port` (String) Name or number of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
-- `http_headers` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--startup_probe--http_get--http_headers))
-- `path` (String)
-- `scheme` (String)
+- `host` (String) Host name to connect to, defaults to the pod IP. You probably want to set'Host' in httpHeaders instead.
+- `http_headers` (Attributes List) Custom headers to set in the request. HTTP allows repeated headers. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--containers--startup_probe--http_get--http_headers))
+- `path` (String) Path to access on the HTTP server.
+- `scheme` (String) Scheme to use for connecting to the host.Defaults to HTTP.
### Nested Schema for `spec.deployment.spec.template.spec.containers.startup_probe.http_get.http_headers`
Required:
-- `name` (String)
-- `value` (String)
+- `name` (String) The header field name.This will be canonicalized upon output, so case-variant names will be understood as the same header.
+- `value` (String) The header field value
@@ -1188,11 +1188,11 @@ Required:
Required:
-- `port` (String)
+- `port` (String) Number or name of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
+- `host` (String) Optional: Host name to connect to, defaults to the pod IP.
@@ -1201,8 +1201,8 @@ Optional:
Required:
-- `device_path` (String)
-- `name` (String)
+- `device_path` (String) devicePath is the path inside of the container that the device will be mapped to.
+- `name` (String) name must match the name of a persistentVolumeClaim in the pod
@@ -1210,16 +1210,16 @@ Required:
Required:
-- `mount_path` (String)
-- `name` (String)
+- `mount_path` (String) Path within the container at which the volume should be mounted. Mustnot contain ':'.
+- `name` (String) This must match the Name of a Volume.
Optional:
-- `mount_propagation` (String)
-- `read_only` (Boolean)
-- `recursive_read_only` (String)
-- `sub_path` (String)
-- `sub_path_expr` (String)
+- `mount_propagation` (String) mountPropagation determines how mounts are propagated from the hostto container and the other way around.When not set, MountPropagationNone is used.This field is beta in 1.10.When RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified(which defaults to None).
+- `read_only` (Boolean) Mounted read-only if true, read-write otherwise (false or unspecified).Defaults to false.
+- `recursive_read_only` (String) RecursiveReadOnly specifies whether read-only mounts should be handledrecursively.If ReadOnly is false, this field has no meaning and must be unspecified.If ReadOnly is true, and this field is set to Disabled, the mount is not maderecursively read-only. If this field is set to IfPossible, the mount is maderecursively read-only, if it is supported by the container runtime. If thisfield is set to Enabled, the mount is made recursively read-only if it issupported by the container runtime, otherwise the pod will not be started andan error will be generated to indicate the reason.If this field is set to IfPossible or Enabled, MountPropagation must be set toNone (or be unspecified, which defaults to None).If this field is not specified, it is treated as an equivalent of Disabled.
+- `sub_path` (String) Path within the volume from which the container's volume should be mounted.Defaults to '' (volume's root).
+- `sub_path_expr` (String) Expanded path within the volume from which the container's volume should be mounted.Behaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.Defaults to '' (volume's root).SubPathExpr and SubPath are mutually exclusive.
@@ -1228,16 +1228,16 @@ Optional:
Optional:
-- `nameservers` (List of String)
-- `options` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--dns_config--options))
-- `searches` (List of String)
+- `nameservers` (List of String) A list of DNS name server IP addresses.This will be appended to the base nameservers generated from DNSPolicy.Duplicated nameservers will be removed.
+- `options` (Attributes List) A list of DNS resolver options.This will be merged with the base options generated from DNSPolicy.Duplicated entries will be removed. Resolution options given in Optionswill override those that appear in the base DNSPolicy. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--dns_config--options))
+- `searches` (List of String) A list of DNS search domains for host-name lookup.This will be appended to the base search paths generated from DNSPolicy.Duplicated search paths will be removed.
### Nested Schema for `spec.deployment.spec.template.spec.dns_config.options`
Optional:
-- `name` (String)
+- `name` (String) Required.
- `value` (String)
@@ -1247,68 +1247,68 @@ Optional:
Required:
-- `name` (String)
-
-Optional:
-
-- `args` (List of String)
-- `command` (List of String)
-- `env` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--env))
-- `env_from` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--env_from))
-- `image` (String)
-- `image_pull_policy` (String)
-- `lifecycle` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle))
-- `liveness_probe` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--liveness_probe))
-- `ports` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--ports))
-- `readiness_probe` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--readiness_probe))
-- `resize_policy` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--resize_policy))
-- `resources` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--resources))
-- `restart_policy` (String)
-- `security_context` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--security_context))
-- `startup_probe` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--startup_probe))
-- `stdin` (Boolean)
-- `stdin_once` (Boolean)
-- `target_container_name` (String)
-- `termination_message_path` (String)
-- `termination_message_policy` (String)
-- `tty` (Boolean)
-- `volume_devices` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--volume_devices))
-- `volume_mounts` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--volume_mounts))
-- `working_dir` (String)
+- `name` (String) Name of the ephemeral container specified as a DNS_LABEL.This name must be unique among all containers, init containers and ephemeral containers.
+
+Optional:
+
+- `args` (List of String) Arguments to the entrypoint.The image's CMD is used if this is not provided.Variable references $(VAR_NAME) are expanded using the container's environment. If a variablecannot be resolved, the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. '$$(VAR_NAME)' willproduce the string literal '$(VAR_NAME)'. Escaped references will never be expanded, regardlessof whether the variable exists or not. Cannot be updated.More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
+- `command` (List of String) Entrypoint array. Not executed within a shell.The image's ENTRYPOINT is used if this is not provided.Variable references $(VAR_NAME) are expanded using the container's environment. If a variablecannot be resolved, the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. '$$(VAR_NAME)' willproduce the string literal '$(VAR_NAME)'. Escaped references will never be expanded, regardlessof whether the variable exists or not. Cannot be updated.More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
+- `env` (Attributes List) List of environment variables to set in the container.Cannot be updated. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--env))
+- `env_from` (Attributes List) List of sources to populate environment variables in the container.The keys defined within a source must be a C_IDENTIFIER. All invalid keyswill be reported as an event when the container is starting. When a key exists in multiplesources, the value associated with the last source will take precedence.Values defined by an Env with a duplicate key will take precedence.Cannot be updated. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--env_from))
+- `image` (String) Container image name.More info: https://kubernetes.io/docs/concepts/containers/images
+- `image_pull_policy` (String) Image pull policy.One of Always, Never, IfNotPresent.Defaults to Always if :latest tag is specified, or IfNotPresent otherwise.Cannot be updated.More info: https://kubernetes.io/docs/concepts/containers/images#updating-images
+- `lifecycle` (Attributes) Lifecycle is not allowed for ephemeral containers. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle))
+- `liveness_probe` (Attributes) Probes are not allowed for ephemeral containers. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--liveness_probe))
+- `ports` (Attributes List) Ports are not allowed for ephemeral containers. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--ports))
+- `readiness_probe` (Attributes) Probes are not allowed for ephemeral containers. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--readiness_probe))
+- `resize_policy` (Attributes List) Resources resize policy for the container. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--resize_policy))
+- `resources` (Attributes) Resources are not allowed for ephemeral containers. Ephemeral containers use spare resourcesalready allocated to the pod. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--resources))
+- `restart_policy` (String) Restart policy for the container to manage the restart behavior of eachcontainer within a pod.This may only be set for init containers. You cannot set this field onephemeral containers.
+- `security_context` (Attributes) Optional: SecurityContext defines the security options the ephemeral container should be run with.If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--security_context))
+- `startup_probe` (Attributes) Probes are not allowed for ephemeral containers. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--startup_probe))
+- `stdin` (Boolean) Whether this container should allocate a buffer for stdin in the container runtime. If thisis not set, reads from stdin in the container will always result in EOF.Default is false.
+- `stdin_once` (Boolean) Whether the container runtime should close the stdin channel after it has been opened bya single attach. When stdin is true the stdin stream will remain open across multiple attachsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until thefirst client attaches to stdin, and then remains open and accepts data until the client disconnects,at which time stdin is closed and remains closed until the container is restarted. If thisflag is false, a container processes that reads from stdin will never receive an EOF.Default is false
+- `target_container_name` (String) If set, the name of the container from PodSpec that this ephemeral container targets.The ephemeral container will be run in the namespaces (IPC, PID, etc) of this container.If not set then the ephemeral container uses the namespaces configured in the Pod spec.The container runtime must implement support for this feature. If the runtime does notsupport namespace targeting then the result of setting this field is undefined.
+- `termination_message_path` (String) Optional: Path at which the file to which the container's termination messagewill be written is mounted into the container's filesystem.Message written is intended to be brief final status, such as an assertion failure message.Will be truncated by the node if greater than 4096 bytes. The total message length acrossall containers will be limited to 12kb.Defaults to /dev/termination-log.Cannot be updated.
+- `termination_message_policy` (String) Indicate how the termination message should be populated. File will use the contents ofterminationMessagePath to populate the container status message on both success and failure.FallbackToLogsOnError will use the last chunk of container log output if the terminationmessage file is empty and the container exited with an error.The log output is limited to 2048 bytes or 80 lines, whichever is smaller.Defaults to File.Cannot be updated.
+- `tty` (Boolean) Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.Default is false.
+- `volume_devices` (Attributes List) volumeDevices is the list of block devices to be used by the container. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--volume_devices))
+- `volume_mounts` (Attributes List) Pod volumes to mount into the container's filesystem. Subpath mounts are not allowed for ephemeral containers.Cannot be updated. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--volume_mounts))
+- `working_dir` (String) Container's working directory.If not specified, the container runtime's default will be used, whichmight be configured in the container image.Cannot be updated.
### Nested Schema for `spec.deployment.spec.template.spec.ephemeral_containers.env`
Required:
-- `name` (String)
+- `name` (String) Name of the environment variable. Must be a C_IDENTIFIER.
Optional:
-- `value` (String)
-- `value_from` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--env--value_from))
+- `value` (String) Variable references $(VAR_NAME) are expandedusing the previously defined environment variables in the container andany service environment variables. If a variable cannot be resolved,the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.'$$(VAR_NAME)' will produce the string literal '$(VAR_NAME)'.Escaped references will never be expanded, regardless of whether the variableexists or not.Defaults to ''.
+- `value_from` (Attributes) Source for the environment variable's value. Cannot be used if value is not empty. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--env--value_from))
### Nested Schema for `spec.deployment.spec.template.spec.ephemeral_containers.env.value_from`
Optional:
-- `config_map_key_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--env--value_from--config_map_key_ref))
-- `field_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--env--value_from--field_ref))
-- `resource_field_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--env--value_from--resource_field_ref))
-- `secret_key_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--env--value_from--secret_key_ref))
+- `config_map_key_ref` (Attributes) Selects a key of a ConfigMap. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--env--value_from--config_map_key_ref))
+- `field_ref` (Attributes) Selects a field of the pod: supports metadata.name, metadata.namespace, 'metadata.labels['']', 'metadata.annotations['']',spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--env--value_from--field_ref))
+- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--env--value_from--resource_field_ref))
+- `secret_key_ref` (Attributes) Selects a key of a secret in the pod's namespace (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--env--value_from--secret_key_ref))
### Nested Schema for `spec.deployment.spec.template.spec.ephemeral_containers.env.value_from.config_map_key_ref`
Required:
-- `key` (String)
+- `key` (String) The key to select.
Optional:
-- `name` (String)
-- `optional` (Boolean)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) Specify whether the ConfigMap or its key must be defined
@@ -1316,11 +1316,11 @@ Optional:
Required:
-- `field_path` (String)
+- `field_path` (String) Path of the field to select in the specified API version.
Optional:
-- `api_version` (String)
+- `api_version` (String) Version of the schema the FieldPath is written in terms of, defaults to 'v1'.
@@ -1328,12 +1328,12 @@ Optional:
Required:
-- `resource` (String)
+- `resource` (String) Required: resource to select
Optional:
-- `container_name` (String)
-- `divisor` (String)
+- `container_name` (String) Container name: required for volumes, optional for env vars
+- `divisor` (String) Specifies the output format of the exposed resources, defaults to '1'
@@ -1341,12 +1341,12 @@ Optional:
Required:
-- `key` (String)
+- `key` (String) The key of the secret to select from. Must be a valid secret key.
Optional:
-- `name` (String)
-- `optional` (Boolean)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) Specify whether the Secret or its key must be defined
@@ -1356,17 +1356,17 @@ Optional:
Optional:
-- `config_map_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--env_from--config_map_ref))
-- `prefix` (String)
-- `secret_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--env_from--secret_ref))
+- `config_map_ref` (Attributes) The ConfigMap to select from (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--env_from--config_map_ref))
+- `prefix` (String) An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.
+- `secret_ref` (Attributes) The Secret to select from (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--env_from--secret_ref))
### Nested Schema for `spec.deployment.spec.template.spec.ephemeral_containers.env_from.config_map_ref`
Optional:
-- `name` (String)
-- `optional` (Boolean)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) Specify whether the ConfigMap must be defined
@@ -1374,8 +1374,8 @@ Optional:
Optional:
-- `name` (String)
-- `optional` (Boolean)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) Specify whether the Secret must be defined
@@ -1384,25 +1384,25 @@ Optional:
Optional:
-- `post_start` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--post_start))
-- `pre_stop` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--pre_stop))
+- `post_start` (Attributes) PostStart is called immediately after a container is created. If the handler fails,the container is terminated and restarted according to its restart policy.Other management of the container blocks until the hook completes.More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--post_start))
+- `pre_stop` (Attributes) PreStop is called immediately before a container is terminated due to anAPI request or management event such as liveness/startup probe failure,preemption, resource contention, etc. The handler is not called if thecontainer crashes or exits. The Pod's termination grace period countdown begins before thePreStop hook is executed. Regardless of the outcome of the handler, thecontainer will eventually terminate within the Pod's termination graceperiod (unless delayed by finalizers). Other management of the container blocks until the hook completesor until the termination grace period is reached.More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--pre_stop))
### Nested Schema for `spec.deployment.spec.template.spec.ephemeral_containers.lifecycle.post_start`
Optional:
-- `exec` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--post_start--exec))
-- `http_get` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--post_start--http_get))
-- `sleep` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--post_start--sleep))
-- `tcp_socket` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--post_start--tcp_socket))
+- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--post_start--exec))
+- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--post_start--http_get))
+- `sleep` (Attributes) Sleep represents the duration that the container should sleep before being terminated. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--post_start--sleep))
+- `tcp_socket` (Attributes) Deprecated. TCPSocket is NOT supported as a LifecycleHandler and keptfor the backward compatibility. There are no validation of this field andlifecycle hooks will fail in runtime when tcp handler is specified. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--post_start--tcp_socket))
### Nested Schema for `spec.deployment.spec.template.spec.ephemeral_containers.lifecycle.post_start.exec`
Optional:
-- `command` (List of String)
+- `command` (List of String) Command is the command line to execute inside the container, the working directory for thecommand is root ('/') in the container's filesystem. The command is simply exec'd, it isnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To usea shell, you need to explicitly call out to that shell.Exit status of 0 is treated as live/healthy and non-zero is unhealthy.
@@ -1410,22 +1410,22 @@ Optional:
Required:
-- `port` (String)
+- `port` (String) Name or number of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
-- `http_headers` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--post_start--http_get--http_headers))
-- `path` (String)
-- `scheme` (String)
+- `host` (String) Host name to connect to, defaults to the pod IP. You probably want to set'Host' in httpHeaders instead.
+- `http_headers` (Attributes List) Custom headers to set in the request. HTTP allows repeated headers. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--post_start--http_get--http_headers))
+- `path` (String) Path to access on the HTTP server.
+- `scheme` (String) Scheme to use for connecting to the host.Defaults to HTTP.
### Nested Schema for `spec.deployment.spec.template.spec.ephemeral_containers.lifecycle.post_start.http_get.http_headers`
Required:
-- `name` (String)
-- `value` (String)
+- `name` (String) The header field name.This will be canonicalized upon output, so case-variant names will be understood as the same header.
+- `value` (String) The header field value
@@ -1434,7 +1434,7 @@ Required:
Required:
-- `seconds` (Number)
+- `seconds` (Number) Seconds is the number of seconds to sleep.
@@ -1442,11 +1442,11 @@ Required:
Required:
-- `port` (String)
+- `port` (String) Number or name of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
+- `host` (String) Optional: Host name to connect to, defaults to the pod IP.
@@ -1455,17 +1455,17 @@ Optional:
Optional:
-- `exec` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--pre_stop--exec))
-- `http_get` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--pre_stop--http_get))
-- `sleep` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--pre_stop--sleep))
-- `tcp_socket` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--pre_stop--tcp_socket))
+- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--pre_stop--exec))
+- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--pre_stop--http_get))
+- `sleep` (Attributes) Sleep represents the duration that the container should sleep before being terminated. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--pre_stop--sleep))
+- `tcp_socket` (Attributes) Deprecated. TCPSocket is NOT supported as a LifecycleHandler and keptfor the backward compatibility. There are no validation of this field andlifecycle hooks will fail in runtime when tcp handler is specified. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--pre_stop--tcp_socket))
### Nested Schema for `spec.deployment.spec.template.spec.ephemeral_containers.lifecycle.pre_stop.exec`
Optional:
-- `command` (List of String)
+- `command` (List of String) Command is the command line to execute inside the container, the working directory for thecommand is root ('/') in the container's filesystem. The command is simply exec'd, it isnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To usea shell, you need to explicitly call out to that shell.Exit status of 0 is treated as live/healthy and non-zero is unhealthy.
@@ -1473,22 +1473,22 @@ Optional:
Required:
-- `port` (String)
+- `port` (String) Name or number of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
-- `http_headers` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--pre_stop--http_get--http_headers))
-- `path` (String)
-- `scheme` (String)
+- `host` (String) Host name to connect to, defaults to the pod IP. You probably want to set'Host' in httpHeaders instead.
+- `http_headers` (Attributes List) Custom headers to set in the request. HTTP allows repeated headers. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--lifecycle--pre_stop--http_get--http_headers))
+- `path` (String) Path to access on the HTTP server.
+- `scheme` (String) Scheme to use for connecting to the host.Defaults to HTTP.
### Nested Schema for `spec.deployment.spec.template.spec.ephemeral_containers.lifecycle.pre_stop.http_get.http_headers`
Required:
-- `name` (String)
-- `value` (String)
+- `name` (String) The header field name.This will be canonicalized upon output, so case-variant names will be understood as the same header.
+- `value` (String) The header field value
@@ -1497,7 +1497,7 @@ Required:
Required:
-- `seconds` (Number)
+- `seconds` (Number) Seconds is the number of seconds to sleep.
@@ -1505,11 +1505,11 @@ Required:
Required:
-- `port` (String)
+- `port` (String) Number or name of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
+- `host` (String) Optional: Host name to connect to, defaults to the pod IP.
@@ -1519,23 +1519,23 @@ Optional:
Optional:
-- `exec` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--liveness_probe--exec))
-- `failure_threshold` (Number)
-- `grpc` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--liveness_probe--grpc))
-- `http_get` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--liveness_probe--http_get))
-- `initial_delay_seconds` (Number)
-- `period_seconds` (Number)
-- `success_threshold` (Number)
-- `tcp_socket` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--liveness_probe--tcp_socket))
-- `termination_grace_period_seconds` (Number)
-- `timeout_seconds` (Number)
+- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--liveness_probe--exec))
+- `failure_threshold` (Number) Minimum consecutive failures for the probe to be considered failed after having succeeded.Defaults to 3. Minimum value is 1.
+- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--liveness_probe--grpc))
+- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--liveness_probe--http_get))
+- `initial_delay_seconds` (Number) Number of seconds after the container has started before liveness probes are initiated.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
+- `period_seconds` (Number) How often (in seconds) to perform the probe.Default to 10 seconds. Minimum value is 1.
+- `success_threshold` (Number) Minimum consecutive successes for the probe to be considered successful after having failed.Defaults to 1. Must be 1 for liveness and startup. Minimum value is 1.
+- `tcp_socket` (Attributes) TCPSocket specifies an action involving a TCP port. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--liveness_probe--tcp_socket))
+- `termination_grace_period_seconds` (Number) Optional duration in seconds the pod needs to terminate gracefully upon probe failure.The grace period is the duration in seconds after the processes running in the pod are senta termination signal and the time when the processes are forcibly halted with a kill signal.Set this value longer than the expected cleanup time for your process.If this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, thisvalue overrides the value provided by the pod spec.Value must be non-negative integer. The value zero indicates stop immediately viathe kill signal (no opportunity to shut down).This is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.Minimum value is 1. spec.terminationGracePeriodSeconds is used if unset.
+- `timeout_seconds` (Number) Number of seconds after which the probe times out.Defaults to 1 second. Minimum value is 1.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
### Nested Schema for `spec.deployment.spec.template.spec.ephemeral_containers.liveness_probe.exec`
Optional:
-- `command` (List of String)
+- `command` (List of String) Command is the command line to execute inside the container, the working directory for thecommand is root ('/') in the container's filesystem. The command is simply exec'd, it isnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To usea shell, you need to explicitly call out to that shell.Exit status of 0 is treated as live/healthy and non-zero is unhealthy.
@@ -1543,11 +1543,11 @@ Optional:
Required:
-- `port` (Number)
+- `port` (Number) Port number of the gRPC service. Number must be in the range 1 to 65535.
Optional:
-- `service` (String)
+- `service` (String) Service is the name of the service to place in the gRPC HealthCheckRequest(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).If this is not specified, the default behavior is defined by gRPC.
@@ -1555,22 +1555,22 @@ Optional:
Required:
-- `port` (String)
+- `port` (String) Name or number of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
-- `http_headers` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--liveness_probe--http_get--http_headers))
-- `path` (String)
-- `scheme` (String)
+- `host` (String) Host name to connect to, defaults to the pod IP. You probably want to set'Host' in httpHeaders instead.
+- `http_headers` (Attributes List) Custom headers to set in the request. HTTP allows repeated headers. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--liveness_probe--http_get--http_headers))
+- `path` (String) Path to access on the HTTP server.
+- `scheme` (String) Scheme to use for connecting to the host.Defaults to HTTP.
### Nested Schema for `spec.deployment.spec.template.spec.ephemeral_containers.liveness_probe.http_get.http_headers`
Required:
-- `name` (String)
-- `value` (String)
+- `name` (String) The header field name.This will be canonicalized upon output, so case-variant names will be understood as the same header.
+- `value` (String) The header field value
@@ -1579,11 +1579,11 @@ Required:
Required:
-- `port` (String)
+- `port` (String) Number or name of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
+- `host` (String) Optional: Host name to connect to, defaults to the pod IP.
@@ -1592,14 +1592,14 @@ Optional:
Required:
-- `container_port` (Number)
+- `container_port` (Number) Number of port to expose on the pod's IP address.This must be a valid port number, 0 < x < 65536.
Optional:
-- `host_ip` (String)
-- `host_port` (Number)
-- `name` (String)
-- `protocol` (String)
+- `host_ip` (String) What host IP to bind the external port to.
+- `host_port` (Number) Number of port to expose on the host.If specified, this must be a valid port number, 0 < x < 65536.If HostNetwork is specified, this must match ContainerPort.Most containers do not need this.
+- `name` (String) If specified, this must be an IANA_SVC_NAME and unique within the pod. Eachnamed port in a pod must have a unique name. Name for the port that can bereferred to by services.
+- `protocol` (String) Protocol for port. Must be UDP, TCP, or SCTP.Defaults to 'TCP'.
@@ -1607,23 +1607,23 @@ Optional:
Optional:
-- `exec` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--readiness_probe--exec))
-- `failure_threshold` (Number)
-- `grpc` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--readiness_probe--grpc))
-- `http_get` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--readiness_probe--http_get))
-- `initial_delay_seconds` (Number)
-- `period_seconds` (Number)
-- `success_threshold` (Number)
-- `tcp_socket` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--readiness_probe--tcp_socket))
-- `termination_grace_period_seconds` (Number)
-- `timeout_seconds` (Number)
+- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--readiness_probe--exec))
+- `failure_threshold` (Number) Minimum consecutive failures for the probe to be considered failed after having succeeded.Defaults to 3. Minimum value is 1.
+- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--readiness_probe--grpc))
+- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--readiness_probe--http_get))
+- `initial_delay_seconds` (Number) Number of seconds after the container has started before liveness probes are initiated.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
+- `period_seconds` (Number) How often (in seconds) to perform the probe.Default to 10 seconds. Minimum value is 1.
+- `success_threshold` (Number) Minimum consecutive successes for the probe to be considered successful after having failed.Defaults to 1. Must be 1 for liveness and startup. Minimum value is 1.
+- `tcp_socket` (Attributes) TCPSocket specifies an action involving a TCP port. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--readiness_probe--tcp_socket))
+- `termination_grace_period_seconds` (Number) Optional duration in seconds the pod needs to terminate gracefully upon probe failure.The grace period is the duration in seconds after the processes running in the pod are senta termination signal and the time when the processes are forcibly halted with a kill signal.Set this value longer than the expected cleanup time for your process.If this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, thisvalue overrides the value provided by the pod spec.Value must be non-negative integer. The value zero indicates stop immediately viathe kill signal (no opportunity to shut down).This is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.Minimum value is 1. spec.terminationGracePeriodSeconds is used if unset.
+- `timeout_seconds` (Number) Number of seconds after which the probe times out.Defaults to 1 second. Minimum value is 1.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
### Nested Schema for `spec.deployment.spec.template.spec.ephemeral_containers.readiness_probe.exec`
Optional:
-- `command` (List of String)
+- `command` (List of String) Command is the command line to execute inside the container, the working directory for thecommand is root ('/') in the container's filesystem. The command is simply exec'd, it isnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To usea shell, you need to explicitly call out to that shell.Exit status of 0 is treated as live/healthy and non-zero is unhealthy.
@@ -1631,11 +1631,11 @@ Optional:
Required:
-- `port` (Number)
+- `port` (Number) Port number of the gRPC service. Number must be in the range 1 to 65535.
Optional:
-- `service` (String)
+- `service` (String) Service is the name of the service to place in the gRPC HealthCheckRequest(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).If this is not specified, the default behavior is defined by gRPC.
@@ -1643,22 +1643,22 @@ Optional:
Required:
-- `port` (String)
+- `port` (String) Name or number of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
-- `http_headers` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--readiness_probe--http_get--http_headers))
-- `path` (String)
-- `scheme` (String)
+- `host` (String) Host name to connect to, defaults to the pod IP. You probably want to set'Host' in httpHeaders instead.
+- `http_headers` (Attributes List) Custom headers to set in the request. HTTP allows repeated headers. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--readiness_probe--http_get--http_headers))
+- `path` (String) Path to access on the HTTP server.
+- `scheme` (String) Scheme to use for connecting to the host.Defaults to HTTP.
### Nested Schema for `spec.deployment.spec.template.spec.ephemeral_containers.readiness_probe.http_get.http_headers`
Required:
-- `name` (String)
-- `value` (String)
+- `name` (String) The header field name.This will be canonicalized upon output, so case-variant names will be understood as the same header.
+- `value` (String) The header field value
@@ -1667,11 +1667,11 @@ Required:
Required:
-- `port` (String)
+- `port` (String) Number or name of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
+- `host` (String) Optional: Host name to connect to, defaults to the pod IP.
@@ -1680,8 +1680,8 @@ Optional:
Required:
-- `resource_name` (String)
-- `restart_policy` (String)
+- `resource_name` (String) Name of the resource to which this resource resize policy applies.Supported values: cpu, memory.
+- `restart_policy` (String) Restart policy to apply when specified resource is resized.If not specified, it defaults to NotRequired.
@@ -1689,16 +1689,16 @@ Required:
Optional:
-- `claims` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--resources--claims))
-- `limits` (Map of String)
-- `requests` (Map of String)
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--resources--claims))
+- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
### Nested Schema for `spec.deployment.spec.template.spec.ephemeral_containers.resources.claims`
Required:
-- `name` (String)
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.
@@ -1707,29 +1707,29 @@ Required:
Optional:
-- `allow_privilege_escalation` (Boolean)
-- `app_armor_profile` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--security_context--app_armor_profile))
-- `capabilities` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--security_context--capabilities))
-- `privileged` (Boolean)
-- `proc_mount` (String)
-- `read_only_root_filesystem` (Boolean)
-- `run_as_group` (Number)
-- `run_as_non_root` (Boolean)
-- `run_as_user` (Number)
-- `se_linux_options` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--security_context--se_linux_options))
-- `seccomp_profile` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--security_context--seccomp_profile))
-- `windows_options` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--security_context--windows_options))
+- `allow_privilege_escalation` (Boolean) AllowPrivilegeEscalation controls whether a process can gain moreprivileges than its parent process. This bool directly controls ifthe no_new_privs flag will be set on the container process.AllowPrivilegeEscalation is true always when the container is:1) run as Privileged2) has CAP_SYS_ADMINNote that this field cannot be set when spec.os.name is windows.
+- `app_armor_profile` (Attributes) appArmorProfile is the AppArmor options to use by this container. If set, this profileoverrides the pod's appArmorProfile.Note that this field cannot be set when spec.os.name is windows. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--security_context--app_armor_profile))
+- `capabilities` (Attributes) The capabilities to add/drop when running containers.Defaults to the default set of capabilities granted by the container runtime.Note that this field cannot be set when spec.os.name is windows. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--security_context--capabilities))
+- `privileged` (Boolean) Run container in privileged mode.Processes in privileged containers are essentially equivalent to root on the host.Defaults to false.Note that this field cannot be set when spec.os.name is windows.
+- `proc_mount` (String) procMount denotes the type of proc mount to use for the containers.The default is DefaultProcMount which uses the container runtime defaults forreadonly paths and masked paths.This requires the ProcMountType feature flag to be enabled.Note that this field cannot be set when spec.os.name is windows.
+- `read_only_root_filesystem` (Boolean) Whether this container has a read-only root filesystem.Default is false.Note that this field cannot be set when spec.os.name is windows.
+- `run_as_group` (Number) The GID to run the entrypoint of the container process.Uses runtime default if unset.May also be set in PodSecurityContext. If set in both SecurityContext andPodSecurityContext, the value specified in SecurityContext takes precedence.Note that this field cannot be set when spec.os.name is windows.
+- `run_as_non_root` (Boolean) Indicates that the container must run as a non-root user.If true, the Kubelet will validate the image at runtime to ensure that itdoes not run as UID 0 (root) and fail to start the container if it does.If unset or false, no such validation will be performed.May also be set in PodSecurityContext. If set in both SecurityContext andPodSecurityContext, the value specified in SecurityContext takes precedence.
+- `run_as_user` (Number) The UID to run the entrypoint of the container process.Defaults to user specified in image metadata if unspecified.May also be set in PodSecurityContext. If set in both SecurityContext andPodSecurityContext, the value specified in SecurityContext takes precedence.Note that this field cannot be set when spec.os.name is windows.
+- `se_linux_options` (Attributes) The SELinux context to be applied to the container.If unspecified, the container runtime will allocate a random SELinux context for eachcontainer. May also be set in PodSecurityContext. If set in both SecurityContext andPodSecurityContext, the value specified in SecurityContext takes precedence.Note that this field cannot be set when spec.os.name is windows. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--security_context--se_linux_options))
+- `seccomp_profile` (Attributes) The seccomp options to use by this container. If seccomp options areprovided at both the pod & container level, the container optionsoverride the pod options.Note that this field cannot be set when spec.os.name is windows. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--security_context--seccomp_profile))
+- `windows_options` (Attributes) The Windows specific settings applied to all containers.If unspecified, the options from the PodSecurityContext will be used.If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.Note that this field cannot be set when spec.os.name is linux. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--security_context--windows_options))
### Nested Schema for `spec.deployment.spec.template.spec.ephemeral_containers.security_context.app_armor_profile`
Required:
-- `type` (String)
+- `type` (String) type indicates which kind of AppArmor profile will be applied.Valid options are: Localhost - a profile pre-loaded on the node. RuntimeDefault - the container runtime's default profile. Unconfined - no AppArmor enforcement.
Optional:
-- `localhost_profile` (String)
+- `localhost_profile` (String) localhostProfile indicates a profile loaded on the node that should be used.The profile must be preconfigured on the node to work.Must match the loaded name of the profile.Must be set if and only if type is 'Localhost'.
@@ -1737,8 +1737,8 @@ Optional:
Optional:
-- `add` (List of String)
-- `drop` (List of String)
+- `add` (List of String) Added capabilities
+- `drop` (List of String) Removed capabilities
@@ -1746,10 +1746,10 @@ Optional:
Optional:
-- `level` (String)
-- `role` (String)
-- `type` (String)
-- `user` (String)
+- `level` (String) Level is SELinux level label that applies to the container.
+- `role` (String) Role is a SELinux role label that applies to the container.
+- `type` (String) Type is a SELinux type label that applies to the container.
+- `user` (String) User is a SELinux user label that applies to the container.
@@ -1757,11 +1757,11 @@ Optional:
Required:
-- `type` (String)
+- `type` (String) type indicates which kind of seccomp profile will be applied.Valid options are:Localhost - a profile defined in a file on the node should be used.RuntimeDefault - the container runtime default profile should be used.Unconfined - no profile should be applied.
Optional:
-- `localhost_profile` (String)
+- `localhost_profile` (String) localhostProfile indicates a profile defined in a file on the node should be used.The profile must be preconfigured on the node to work.Must be a descending path, relative to the kubelet's configured seccomp profile location.Must be set if type is 'Localhost'. Must NOT be set for any other type.
@@ -1769,10 +1769,10 @@ Optional:
Optional:
-- `gmsa_credential_spec` (String)
-- `gmsa_credential_spec_name` (String)
-- `host_process` (Boolean)
-- `run_as_user_name` (String)
+- `gmsa_credential_spec` (String) GMSACredentialSpec is where the GMSA admission webhook(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of theGMSA credential spec named by the GMSACredentialSpecName field.
+- `gmsa_credential_spec_name` (String) GMSACredentialSpecName is the name of the GMSA credential spec to use.
+- `host_process` (Boolean) HostProcess determines if a container should be run as a 'Host Process' container.All of a Pod's containers must have the same effective HostProcess value(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).In addition, if HostProcess is true then HostNetwork must also be set to true.
+- `run_as_user_name` (String) The UserName in Windows to run the entrypoint of the container process.Defaults to the user specified in image metadata if unspecified.May also be set in PodSecurityContext. If set in both SecurityContext andPodSecurityContext, the value specified in SecurityContext takes precedence.
@@ -1781,23 +1781,23 @@ Optional:
Optional:
-- `exec` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--startup_probe--exec))
-- `failure_threshold` (Number)
-- `grpc` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--startup_probe--grpc))
-- `http_get` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--startup_probe--http_get))
-- `initial_delay_seconds` (Number)
-- `period_seconds` (Number)
-- `success_threshold` (Number)
-- `tcp_socket` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--startup_probe--tcp_socket))
-- `termination_grace_period_seconds` (Number)
-- `timeout_seconds` (Number)
+- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--startup_probe--exec))
+- `failure_threshold` (Number) Minimum consecutive failures for the probe to be considered failed after having succeeded.Defaults to 3. Minimum value is 1.
+- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--startup_probe--grpc))
+- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--startup_probe--http_get))
+- `initial_delay_seconds` (Number) Number of seconds after the container has started before liveness probes are initiated.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
+- `period_seconds` (Number) How often (in seconds) to perform the probe.Default to 10 seconds. Minimum value is 1.
+- `success_threshold` (Number) Minimum consecutive successes for the probe to be considered successful after having failed.Defaults to 1. Must be 1 for liveness and startup. Minimum value is 1.
+- `tcp_socket` (Attributes) TCPSocket specifies an action involving a TCP port. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--startup_probe--tcp_socket))
+- `termination_grace_period_seconds` (Number) Optional duration in seconds the pod needs to terminate gracefully upon probe failure.The grace period is the duration in seconds after the processes running in the pod are senta termination signal and the time when the processes are forcibly halted with a kill signal.Set this value longer than the expected cleanup time for your process.If this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, thisvalue overrides the value provided by the pod spec.Value must be non-negative integer. The value zero indicates stop immediately viathe kill signal (no opportunity to shut down).This is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.Minimum value is 1. spec.terminationGracePeriodSeconds is used if unset.
+- `timeout_seconds` (Number) Number of seconds after which the probe times out.Defaults to 1 second. Minimum value is 1.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
### Nested Schema for `spec.deployment.spec.template.spec.ephemeral_containers.startup_probe.exec`
Optional:
-- `command` (List of String)
+- `command` (List of String) Command is the command line to execute inside the container, the working directory for thecommand is root ('/') in the container's filesystem. The command is simply exec'd, it isnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To usea shell, you need to explicitly call out to that shell.Exit status of 0 is treated as live/healthy and non-zero is unhealthy.
@@ -1805,11 +1805,11 @@ Optional:
Required:
-- `port` (Number)
+- `port` (Number) Port number of the gRPC service. Number must be in the range 1 to 65535.
Optional:
-- `service` (String)
+- `service` (String) Service is the name of the service to place in the gRPC HealthCheckRequest(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).If this is not specified, the default behavior is defined by gRPC.
@@ -1817,22 +1817,22 @@ Optional:
Required:
-- `port` (String)
+- `port` (String) Name or number of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
-- `http_headers` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--startup_probe--http_get--http_headers))
-- `path` (String)
-- `scheme` (String)
+- `host` (String) Host name to connect to, defaults to the pod IP. You probably want to set'Host' in httpHeaders instead.
+- `http_headers` (Attributes List) Custom headers to set in the request. HTTP allows repeated headers. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--ephemeral_containers--startup_probe--http_get--http_headers))
+- `path` (String) Path to access on the HTTP server.
+- `scheme` (String) Scheme to use for connecting to the host.Defaults to HTTP.
### Nested Schema for `spec.deployment.spec.template.spec.ephemeral_containers.startup_probe.http_get.http_headers`
Required:
-- `name` (String)
-- `value` (String)
+- `name` (String) The header field name.This will be canonicalized upon output, so case-variant names will be understood as the same header.
+- `value` (String) The header field value
@@ -1841,11 +1841,11 @@ Required:
Required:
-- `port` (String)
+- `port` (String) Number or name of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
+- `host` (String) Optional: Host name to connect to, defaults to the pod IP.
@@ -1854,8 +1854,8 @@ Optional:
Required:
-- `device_path` (String)
-- `name` (String)
+- `device_path` (String) devicePath is the path inside of the container that the device will be mapped to.
+- `name` (String) name must match the name of a persistentVolumeClaim in the pod
@@ -1863,16 +1863,16 @@ Required:
Required:
-- `mount_path` (String)
-- `name` (String)
+- `mount_path` (String) Path within the container at which the volume should be mounted. Mustnot contain ':'.
+- `name` (String) This must match the Name of a Volume.
Optional:
-- `mount_propagation` (String)
-- `read_only` (Boolean)
-- `recursive_read_only` (String)
-- `sub_path` (String)
-- `sub_path_expr` (String)
+- `mount_propagation` (String) mountPropagation determines how mounts are propagated from the hostto container and the other way around.When not set, MountPropagationNone is used.This field is beta in 1.10.When RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified(which defaults to None).
+- `read_only` (Boolean) Mounted read-only if true, read-write otherwise (false or unspecified).Defaults to false.
+- `recursive_read_only` (String) RecursiveReadOnly specifies whether read-only mounts should be handledrecursively.If ReadOnly is false, this field has no meaning and must be unspecified.If ReadOnly is true, and this field is set to Disabled, the mount is not maderecursively read-only. If this field is set to IfPossible, the mount is maderecursively read-only, if it is supported by the container runtime. If thisfield is set to Enabled, the mount is made recursively read-only if it issupported by the container runtime, otherwise the pod will not be started andan error will be generated to indicate the reason.If this field is set to IfPossible or Enabled, MountPropagation must be set toNone (or be unspecified, which defaults to None).If this field is not specified, it is treated as an equivalent of Disabled.
+- `sub_path` (String) Path within the volume from which the container's volume should be mounted.Defaults to '' (volume's root).
+- `sub_path_expr` (String) Expanded path within the volume from which the container's volume should be mounted.Behaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.Defaults to '' (volume's root).SubPathExpr and SubPath are mutually exclusive.
@@ -1881,11 +1881,11 @@ Optional:
Required:
-- `ip` (String)
+- `ip` (String) IP address of the host file entry.
Optional:
-- `hostnames` (List of String)
+- `hostnames` (List of String) Hostnames for the above IP address.
@@ -1893,7 +1893,7 @@ Optional:
Optional:
-- `name` (String)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
@@ -1901,67 +1901,67 @@ Optional:
Required:
-- `name` (String)
+- `name` (String) Name of the container specified as a DNS_LABEL.Each container in a pod must have a unique name (DNS_LABEL).Cannot be updated.
Optional:
-- `args` (List of String)
-- `command` (List of String)
-- `env` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--env))
-- `env_from` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--env_from))
-- `image` (String)
-- `image_pull_policy` (String)
-- `lifecycle` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle))
-- `liveness_probe` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--liveness_probe))
-- `ports` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--ports))
-- `readiness_probe` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--readiness_probe))
-- `resize_policy` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--resize_policy))
-- `resources` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--resources))
-- `restart_policy` (String)
-- `security_context` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--security_context))
-- `startup_probe` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--startup_probe))
-- `stdin` (Boolean)
-- `stdin_once` (Boolean)
-- `termination_message_path` (String)
-- `termination_message_policy` (String)
-- `tty` (Boolean)
-- `volume_devices` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--volume_devices))
-- `volume_mounts` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--volume_mounts))
-- `working_dir` (String)
+- `args` (List of String) Arguments to the entrypoint.The container image's CMD is used if this is not provided.Variable references $(VAR_NAME) are expanded using the container's environment. If a variablecannot be resolved, the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. '$$(VAR_NAME)' willproduce the string literal '$(VAR_NAME)'. Escaped references will never be expanded, regardlessof whether the variable exists or not. Cannot be updated.More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
+- `command` (List of String) Entrypoint array. Not executed within a shell.The container image's ENTRYPOINT is used if this is not provided.Variable references $(VAR_NAME) are expanded using the container's environment. If a variablecannot be resolved, the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. '$$(VAR_NAME)' willproduce the string literal '$(VAR_NAME)'. Escaped references will never be expanded, regardlessof whether the variable exists or not. Cannot be updated.More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell
+- `env` (Attributes List) List of environment variables to set in the container.Cannot be updated. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--env))
+- `env_from` (Attributes List) List of sources to populate environment variables in the container.The keys defined within a source must be a C_IDENTIFIER. All invalid keyswill be reported as an event when the container is starting. When a key exists in multiplesources, the value associated with the last source will take precedence.Values defined by an Env with a duplicate key will take precedence.Cannot be updated. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--env_from))
+- `image` (String) Container image name.More info: https://kubernetes.io/docs/concepts/containers/imagesThis field is optional to allow higher level config management to default or overridecontainer images in workload controllers like Deployments and StatefulSets.
+- `image_pull_policy` (String) Image pull policy.One of Always, Never, IfNotPresent.Defaults to Always if :latest tag is specified, or IfNotPresent otherwise.Cannot be updated.More info: https://kubernetes.io/docs/concepts/containers/images#updating-images
+- `lifecycle` (Attributes) Actions that the management system should take in response to container lifecycle events.Cannot be updated. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle))
+- `liveness_probe` (Attributes) Periodic probe of container liveness.Container will be restarted if the probe fails.Cannot be updated.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--liveness_probe))
+- `ports` (Attributes List) List of ports to expose from the container. Not specifying a port hereDOES NOT prevent that port from being exposed. Any port which islistening on the default '0.0.0.0' address inside a container will beaccessible from the network.Modifying this array with strategic merge patch may corrupt the data.For more information See https://github.com/kubernetes/kubernetes/issues/108255.Cannot be updated. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--ports))
+- `readiness_probe` (Attributes) Periodic probe of container service readiness.Container will be removed from service endpoints if the probe fails.Cannot be updated.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--readiness_probe))
+- `resize_policy` (Attributes List) Resources resize policy for the container. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--resize_policy))
+- `resources` (Attributes) Compute Resources required by this container.Cannot be updated.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/ (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--resources))
+- `restart_policy` (String) RestartPolicy defines the restart behavior of individual containers in a pod.This field may only be set for init containers, and the only allowed value is 'Always'.For non-init containers or when this field is not specified,the restart behavior is defined by the Pod's restart policy and the container type.Setting the RestartPolicy as 'Always' for the init container will have the following effect:this init container will be continually restarted onexit until all regular containers have terminated. Once all regularcontainers have completed, all init containers with restartPolicy 'Always'will be shut down. This lifecycle differs from normal init containers andis often referred to as a 'sidecar' container. Although this initcontainer still starts in the init container sequence, it does not waitfor the container to complete before proceeding to the next initcontainer. Instead, the next init container starts immediately after thisinit container is started, or after any startupProbe has successfullycompleted.
+- `security_context` (Attributes) SecurityContext defines the security options the container should be run with.If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext.More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/ (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--security_context))
+- `startup_probe` (Attributes) StartupProbe indicates that the Pod has successfully initialized.If specified, no other probes are executed until this completes successfully.If this probe fails, the Pod will be restarted, just as if the livenessProbe failed.This can be used to provide different probe parameters at the beginning of a Pod's lifecycle,when it might take a long time to load data or warm a cache, than during steady-state operation.This cannot be updated.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--startup_probe))
+- `stdin` (Boolean) Whether this container should allocate a buffer for stdin in the container runtime. If thisis not set, reads from stdin in the container will always result in EOF.Default is false.
+- `stdin_once` (Boolean) Whether the container runtime should close the stdin channel after it has been opened bya single attach. When stdin is true the stdin stream will remain open across multiple attachsessions. If stdinOnce is set to true, stdin is opened on container start, is empty until thefirst client attaches to stdin, and then remains open and accepts data until the client disconnects,at which time stdin is closed and remains closed until the container is restarted. If thisflag is false, a container processes that reads from stdin will never receive an EOF.Default is false
+- `termination_message_path` (String) Optional: Path at which the file to which the container's termination messagewill be written is mounted into the container's filesystem.Message written is intended to be brief final status, such as an assertion failure message.Will be truncated by the node if greater than 4096 bytes. The total message length acrossall containers will be limited to 12kb.Defaults to /dev/termination-log.Cannot be updated.
+- `termination_message_policy` (String) Indicate how the termination message should be populated. File will use the contents ofterminationMessagePath to populate the container status message on both success and failure.FallbackToLogsOnError will use the last chunk of container log output if the terminationmessage file is empty and the container exited with an error.The log output is limited to 2048 bytes or 80 lines, whichever is smaller.Defaults to File.Cannot be updated.
+- `tty` (Boolean) Whether this container should allocate a TTY for itself, also requires 'stdin' to be true.Default is false.
+- `volume_devices` (Attributes List) volumeDevices is the list of block devices to be used by the container. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--volume_devices))
+- `volume_mounts` (Attributes List) Pod volumes to mount into the container's filesystem.Cannot be updated. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--volume_mounts))
+- `working_dir` (String) Container's working directory.If not specified, the container runtime's default will be used, whichmight be configured in the container image.Cannot be updated.
### Nested Schema for `spec.deployment.spec.template.spec.init_containers.env`
Required:
-- `name` (String)
+- `name` (String) Name of the environment variable. Must be a C_IDENTIFIER.
Optional:
-- `value` (String)
-- `value_from` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--env--value_from))
+- `value` (String) Variable references $(VAR_NAME) are expandedusing the previously defined environment variables in the container andany service environment variables. If a variable cannot be resolved,the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.'$$(VAR_NAME)' will produce the string literal '$(VAR_NAME)'.Escaped references will never be expanded, regardless of whether the variableexists or not.Defaults to ''.
+- `value_from` (Attributes) Source for the environment variable's value. Cannot be used if value is not empty. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--env--value_from))
### Nested Schema for `spec.deployment.spec.template.spec.init_containers.env.value_from`
Optional:
-- `config_map_key_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--env--value_from--config_map_key_ref))
-- `field_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--env--value_from--field_ref))
-- `resource_field_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--env--value_from--resource_field_ref))
-- `secret_key_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--env--value_from--secret_key_ref))
+- `config_map_key_ref` (Attributes) Selects a key of a ConfigMap. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--env--value_from--config_map_key_ref))
+- `field_ref` (Attributes) Selects a field of the pod: supports metadata.name, metadata.namespace, 'metadata.labels['']', 'metadata.annotations['']',spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--env--value_from--field_ref))
+- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--env--value_from--resource_field_ref))
+- `secret_key_ref` (Attributes) Selects a key of a secret in the pod's namespace (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--env--value_from--secret_key_ref))
### Nested Schema for `spec.deployment.spec.template.spec.init_containers.env.value_from.config_map_key_ref`
Required:
-- `key` (String)
+- `key` (String) The key to select.
Optional:
-- `name` (String)
-- `optional` (Boolean)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) Specify whether the ConfigMap or its key must be defined
@@ -1969,11 +1969,11 @@ Optional:
Required:
-- `field_path` (String)
+- `field_path` (String) Path of the field to select in the specified API version.
Optional:
-- `api_version` (String)
+- `api_version` (String) Version of the schema the FieldPath is written in terms of, defaults to 'v1'.
@@ -1981,12 +1981,12 @@ Optional:
Required:
-- `resource` (String)
+- `resource` (String) Required: resource to select
Optional:
-- `container_name` (String)
-- `divisor` (String)
+- `container_name` (String) Container name: required for volumes, optional for env vars
+- `divisor` (String) Specifies the output format of the exposed resources, defaults to '1'
@@ -1994,12 +1994,12 @@ Optional:
Required:
-- `key` (String)
+- `key` (String) The key of the secret to select from. Must be a valid secret key.
Optional:
-- `name` (String)
-- `optional` (Boolean)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) Specify whether the Secret or its key must be defined
@@ -2009,17 +2009,17 @@ Optional:
Optional:
-- `config_map_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--env_from--config_map_ref))
-- `prefix` (String)
-- `secret_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--env_from--secret_ref))
+- `config_map_ref` (Attributes) The ConfigMap to select from (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--env_from--config_map_ref))
+- `prefix` (String) An optional identifier to prepend to each key in the ConfigMap. Must be a C_IDENTIFIER.
+- `secret_ref` (Attributes) The Secret to select from (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--env_from--secret_ref))
### Nested Schema for `spec.deployment.spec.template.spec.init_containers.env_from.config_map_ref`
Optional:
-- `name` (String)
-- `optional` (Boolean)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) Specify whether the ConfigMap must be defined
@@ -2027,8 +2027,8 @@ Optional:
Optional:
-- `name` (String)
-- `optional` (Boolean)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) Specify whether the Secret must be defined
@@ -2037,25 +2037,25 @@ Optional:
Optional:
-- `post_start` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--post_start))
-- `pre_stop` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--pre_stop))
+- `post_start` (Attributes) PostStart is called immediately after a container is created. If the handler fails,the container is terminated and restarted according to its restart policy.Other management of the container blocks until the hook completes.More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--post_start))
+- `pre_stop` (Attributes) PreStop is called immediately before a container is terminated due to anAPI request or management event such as liveness/startup probe failure,preemption, resource contention, etc. The handler is not called if thecontainer crashes or exits. The Pod's termination grace period countdown begins before thePreStop hook is executed. Regardless of the outcome of the handler, thecontainer will eventually terminate within the Pod's termination graceperiod (unless delayed by finalizers). Other management of the container blocks until the hook completesor until the termination grace period is reached.More info: https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooks (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--pre_stop))
### Nested Schema for `spec.deployment.spec.template.spec.init_containers.lifecycle.post_start`
Optional:
-- `exec` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--post_start--exec))
-- `http_get` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--post_start--http_get))
-- `sleep` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--post_start--sleep))
-- `tcp_socket` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--post_start--tcp_socket))
+- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--post_start--exec))
+- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--post_start--http_get))
+- `sleep` (Attributes) Sleep represents the duration that the container should sleep before being terminated. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--post_start--sleep))
+- `tcp_socket` (Attributes) Deprecated. TCPSocket is NOT supported as a LifecycleHandler and keptfor the backward compatibility. There are no validation of this field andlifecycle hooks will fail in runtime when tcp handler is specified. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--post_start--tcp_socket))
### Nested Schema for `spec.deployment.spec.template.spec.init_containers.lifecycle.post_start.exec`
Optional:
-- `command` (List of String)
+- `command` (List of String) Command is the command line to execute inside the container, the working directory for thecommand is root ('/') in the container's filesystem. The command is simply exec'd, it isnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To usea shell, you need to explicitly call out to that shell.Exit status of 0 is treated as live/healthy and non-zero is unhealthy.
@@ -2063,22 +2063,22 @@ Optional:
Required:
-- `port` (String)
+- `port` (String) Name or number of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
-- `http_headers` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--post_start--http_get--http_headers))
-- `path` (String)
-- `scheme` (String)
+- `host` (String) Host name to connect to, defaults to the pod IP. You probably want to set'Host' in httpHeaders instead.
+- `http_headers` (Attributes List) Custom headers to set in the request. HTTP allows repeated headers. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--post_start--http_get--http_headers))
+- `path` (String) Path to access on the HTTP server.
+- `scheme` (String) Scheme to use for connecting to the host.Defaults to HTTP.
### Nested Schema for `spec.deployment.spec.template.spec.init_containers.lifecycle.post_start.http_get.http_headers`
Required:
-- `name` (String)
-- `value` (String)
+- `name` (String) The header field name.This will be canonicalized upon output, so case-variant names will be understood as the same header.
+- `value` (String) The header field value
@@ -2087,7 +2087,7 @@ Required:
Required:
-- `seconds` (Number)
+- `seconds` (Number) Seconds is the number of seconds to sleep.
@@ -2095,11 +2095,11 @@ Required:
Required:
-- `port` (String)
+- `port` (String) Number or name of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
+- `host` (String) Optional: Host name to connect to, defaults to the pod IP.
@@ -2108,17 +2108,17 @@ Optional:
Optional:
-- `exec` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--pre_stop--exec))
-- `http_get` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--pre_stop--http_get))
-- `sleep` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--pre_stop--sleep))
-- `tcp_socket` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--pre_stop--tcp_socket))
+- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--pre_stop--exec))
+- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--pre_stop--http_get))
+- `sleep` (Attributes) Sleep represents the duration that the container should sleep before being terminated. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--pre_stop--sleep))
+- `tcp_socket` (Attributes) Deprecated. TCPSocket is NOT supported as a LifecycleHandler and keptfor the backward compatibility. There are no validation of this field andlifecycle hooks will fail in runtime when tcp handler is specified. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--pre_stop--tcp_socket))
### Nested Schema for `spec.deployment.spec.template.spec.init_containers.lifecycle.pre_stop.exec`
Optional:
-- `command` (List of String)
+- `command` (List of String) Command is the command line to execute inside the container, the working directory for thecommand is root ('/') in the container's filesystem. The command is simply exec'd, it isnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To usea shell, you need to explicitly call out to that shell.Exit status of 0 is treated as live/healthy and non-zero is unhealthy.
@@ -2126,22 +2126,22 @@ Optional:
Required:
-- `port` (String)
+- `port` (String) Name or number of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
-- `http_headers` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--pre_stop--http_get--http_headers))
-- `path` (String)
-- `scheme` (String)
+- `host` (String) Host name to connect to, defaults to the pod IP. You probably want to set'Host' in httpHeaders instead.
+- `http_headers` (Attributes List) Custom headers to set in the request. HTTP allows repeated headers. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--lifecycle--pre_stop--http_get--http_headers))
+- `path` (String) Path to access on the HTTP server.
+- `scheme` (String) Scheme to use for connecting to the host.Defaults to HTTP.
### Nested Schema for `spec.deployment.spec.template.spec.init_containers.lifecycle.pre_stop.http_get.http_headers`
Required:
-- `name` (String)
-- `value` (String)
+- `name` (String) The header field name.This will be canonicalized upon output, so case-variant names will be understood as the same header.
+- `value` (String) The header field value
@@ -2150,7 +2150,7 @@ Required:
Required:
-- `seconds` (Number)
+- `seconds` (Number) Seconds is the number of seconds to sleep.
@@ -2158,11 +2158,11 @@ Required:
Required:
-- `port` (String)
+- `port` (String) Number or name of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
+- `host` (String) Optional: Host name to connect to, defaults to the pod IP.
@@ -2172,23 +2172,23 @@ Optional:
Optional:
-- `exec` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--liveness_probe--exec))
-- `failure_threshold` (Number)
-- `grpc` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--liveness_probe--grpc))
-- `http_get` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--liveness_probe--http_get))
-- `initial_delay_seconds` (Number)
-- `period_seconds` (Number)
-- `success_threshold` (Number)
-- `tcp_socket` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--liveness_probe--tcp_socket))
-- `termination_grace_period_seconds` (Number)
-- `timeout_seconds` (Number)
+- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--liveness_probe--exec))
+- `failure_threshold` (Number) Minimum consecutive failures for the probe to be considered failed after having succeeded.Defaults to 3. Minimum value is 1.
+- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--liveness_probe--grpc))
+- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--liveness_probe--http_get))
+- `initial_delay_seconds` (Number) Number of seconds after the container has started before liveness probes are initiated.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
+- `period_seconds` (Number) How often (in seconds) to perform the probe.Default to 10 seconds. Minimum value is 1.
+- `success_threshold` (Number) Minimum consecutive successes for the probe to be considered successful after having failed.Defaults to 1. Must be 1 for liveness and startup. Minimum value is 1.
+- `tcp_socket` (Attributes) TCPSocket specifies an action involving a TCP port. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--liveness_probe--tcp_socket))
+- `termination_grace_period_seconds` (Number) Optional duration in seconds the pod needs to terminate gracefully upon probe failure.The grace period is the duration in seconds after the processes running in the pod are senta termination signal and the time when the processes are forcibly halted with a kill signal.Set this value longer than the expected cleanup time for your process.If this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, thisvalue overrides the value provided by the pod spec.Value must be non-negative integer. The value zero indicates stop immediately viathe kill signal (no opportunity to shut down).This is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.Minimum value is 1. spec.terminationGracePeriodSeconds is used if unset.
+- `timeout_seconds` (Number) Number of seconds after which the probe times out.Defaults to 1 second. Minimum value is 1.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
### Nested Schema for `spec.deployment.spec.template.spec.init_containers.liveness_probe.exec`
Optional:
-- `command` (List of String)
+- `command` (List of String) Command is the command line to execute inside the container, the working directory for thecommand is root ('/') in the container's filesystem. The command is simply exec'd, it isnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To usea shell, you need to explicitly call out to that shell.Exit status of 0 is treated as live/healthy and non-zero is unhealthy.
@@ -2196,11 +2196,11 @@ Optional:
Required:
-- `port` (Number)
+- `port` (Number) Port number of the gRPC service. Number must be in the range 1 to 65535.
Optional:
-- `service` (String)
+- `service` (String) Service is the name of the service to place in the gRPC HealthCheckRequest(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).If this is not specified, the default behavior is defined by gRPC.
@@ -2208,22 +2208,22 @@ Optional:
Required:
-- `port` (String)
+- `port` (String) Name or number of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
-- `http_headers` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--liveness_probe--http_get--http_headers))
-- `path` (String)
-- `scheme` (String)
+- `host` (String) Host name to connect to, defaults to the pod IP. You probably want to set'Host' in httpHeaders instead.
+- `http_headers` (Attributes List) Custom headers to set in the request. HTTP allows repeated headers. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--liveness_probe--http_get--http_headers))
+- `path` (String) Path to access on the HTTP server.
+- `scheme` (String) Scheme to use for connecting to the host.Defaults to HTTP.
### Nested Schema for `spec.deployment.spec.template.spec.init_containers.liveness_probe.http_get.http_headers`
Required:
-- `name` (String)
-- `value` (String)
+- `name` (String) The header field name.This will be canonicalized upon output, so case-variant names will be understood as the same header.
+- `value` (String) The header field value
@@ -2232,11 +2232,11 @@ Required:
Required:
-- `port` (String)
+- `port` (String) Number or name of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
+- `host` (String) Optional: Host name to connect to, defaults to the pod IP.
@@ -2245,14 +2245,14 @@ Optional:
Required:
-- `container_port` (Number)
+- `container_port` (Number) Number of port to expose on the pod's IP address.This must be a valid port number, 0 < x < 65536.
Optional:
-- `host_ip` (String)
-- `host_port` (Number)
-- `name` (String)
-- `protocol` (String)
+- `host_ip` (String) What host IP to bind the external port to.
+- `host_port` (Number) Number of port to expose on the host.If specified, this must be a valid port number, 0 < x < 65536.If HostNetwork is specified, this must match ContainerPort.Most containers do not need this.
+- `name` (String) If specified, this must be an IANA_SVC_NAME and unique within the pod. Eachnamed port in a pod must have a unique name. Name for the port that can bereferred to by services.
+- `protocol` (String) Protocol for port. Must be UDP, TCP, or SCTP.Defaults to 'TCP'.
@@ -2260,23 +2260,23 @@ Optional:
Optional:
-- `exec` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--readiness_probe--exec))
-- `failure_threshold` (Number)
-- `grpc` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--readiness_probe--grpc))
-- `http_get` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--readiness_probe--http_get))
-- `initial_delay_seconds` (Number)
-- `period_seconds` (Number)
-- `success_threshold` (Number)
-- `tcp_socket` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--readiness_probe--tcp_socket))
-- `termination_grace_period_seconds` (Number)
-- `timeout_seconds` (Number)
+- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--readiness_probe--exec))
+- `failure_threshold` (Number) Minimum consecutive failures for the probe to be considered failed after having succeeded.Defaults to 3. Minimum value is 1.
+- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--readiness_probe--grpc))
+- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--readiness_probe--http_get))
+- `initial_delay_seconds` (Number) Number of seconds after the container has started before liveness probes are initiated.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
+- `period_seconds` (Number) How often (in seconds) to perform the probe.Default to 10 seconds. Minimum value is 1.
+- `success_threshold` (Number) Minimum consecutive successes for the probe to be considered successful after having failed.Defaults to 1. Must be 1 for liveness and startup. Minimum value is 1.
+- `tcp_socket` (Attributes) TCPSocket specifies an action involving a TCP port. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--readiness_probe--tcp_socket))
+- `termination_grace_period_seconds` (Number) Optional duration in seconds the pod needs to terminate gracefully upon probe failure.The grace period is the duration in seconds after the processes running in the pod are senta termination signal and the time when the processes are forcibly halted with a kill signal.Set this value longer than the expected cleanup time for your process.If this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, thisvalue overrides the value provided by the pod spec.Value must be non-negative integer. The value zero indicates stop immediately viathe kill signal (no opportunity to shut down).This is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.Minimum value is 1. spec.terminationGracePeriodSeconds is used if unset.
+- `timeout_seconds` (Number) Number of seconds after which the probe times out.Defaults to 1 second. Minimum value is 1.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
### Nested Schema for `spec.deployment.spec.template.spec.init_containers.readiness_probe.exec`
Optional:
-- `command` (List of String)
+- `command` (List of String) Command is the command line to execute inside the container, the working directory for thecommand is root ('/') in the container's filesystem. The command is simply exec'd, it isnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To usea shell, you need to explicitly call out to that shell.Exit status of 0 is treated as live/healthy and non-zero is unhealthy.
@@ -2284,11 +2284,11 @@ Optional:
Required:
-- `port` (Number)
+- `port` (Number) Port number of the gRPC service. Number must be in the range 1 to 65535.
Optional:
-- `service` (String)
+- `service` (String) Service is the name of the service to place in the gRPC HealthCheckRequest(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).If this is not specified, the default behavior is defined by gRPC.
@@ -2296,22 +2296,22 @@ Optional:
Required:
-- `port` (String)
+- `port` (String) Name or number of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
-- `http_headers` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--readiness_probe--http_get--http_headers))
-- `path` (String)
-- `scheme` (String)
+- `host` (String) Host name to connect to, defaults to the pod IP. You probably want to set'Host' in httpHeaders instead.
+- `http_headers` (Attributes List) Custom headers to set in the request. HTTP allows repeated headers. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--readiness_probe--http_get--http_headers))
+- `path` (String) Path to access on the HTTP server.
+- `scheme` (String) Scheme to use for connecting to the host.Defaults to HTTP.
### Nested Schema for `spec.deployment.spec.template.spec.init_containers.readiness_probe.http_get.http_headers`
Required:
-- `name` (String)
-- `value` (String)
+- `name` (String) The header field name.This will be canonicalized upon output, so case-variant names will be understood as the same header.
+- `value` (String) The header field value
@@ -2320,11 +2320,11 @@ Required:
Required:
-- `port` (String)
+- `port` (String) Number or name of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
+- `host` (String) Optional: Host name to connect to, defaults to the pod IP.
@@ -2333,8 +2333,8 @@ Optional:
Required:
-- `resource_name` (String)
-- `restart_policy` (String)
+- `resource_name` (String) Name of the resource to which this resource resize policy applies.Supported values: cpu, memory.
+- `restart_policy` (String) Restart policy to apply when specified resource is resized.If not specified, it defaults to NotRequired.
@@ -2342,16 +2342,16 @@ Required:
Optional:
-- `claims` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--resources--claims))
-- `limits` (Map of String)
-- `requests` (Map of String)
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--resources--claims))
+- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
### Nested Schema for `spec.deployment.spec.template.spec.init_containers.resources.claims`
Required:
-- `name` (String)
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.
@@ -2360,29 +2360,29 @@ Required:
Optional:
-- `allow_privilege_escalation` (Boolean)
-- `app_armor_profile` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--security_context--app_armor_profile))
-- `capabilities` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--security_context--capabilities))
-- `privileged` (Boolean)
-- `proc_mount` (String)
-- `read_only_root_filesystem` (Boolean)
-- `run_as_group` (Number)
-- `run_as_non_root` (Boolean)
-- `run_as_user` (Number)
-- `se_linux_options` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--security_context--se_linux_options))
-- `seccomp_profile` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--security_context--seccomp_profile))
-- `windows_options` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--security_context--windows_options))
+- `allow_privilege_escalation` (Boolean) AllowPrivilegeEscalation controls whether a process can gain moreprivileges than its parent process. This bool directly controls ifthe no_new_privs flag will be set on the container process.AllowPrivilegeEscalation is true always when the container is:1) run as Privileged2) has CAP_SYS_ADMINNote that this field cannot be set when spec.os.name is windows.
+- `app_armor_profile` (Attributes) appArmorProfile is the AppArmor options to use by this container. If set, this profileoverrides the pod's appArmorProfile.Note that this field cannot be set when spec.os.name is windows. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--security_context--app_armor_profile))
+- `capabilities` (Attributes) The capabilities to add/drop when running containers.Defaults to the default set of capabilities granted by the container runtime.Note that this field cannot be set when spec.os.name is windows. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--security_context--capabilities))
+- `privileged` (Boolean) Run container in privileged mode.Processes in privileged containers are essentially equivalent to root on the host.Defaults to false.Note that this field cannot be set when spec.os.name is windows.
+- `proc_mount` (String) procMount denotes the type of proc mount to use for the containers.The default is DefaultProcMount which uses the container runtime defaults forreadonly paths and masked paths.This requires the ProcMountType feature flag to be enabled.Note that this field cannot be set when spec.os.name is windows.
+- `read_only_root_filesystem` (Boolean) Whether this container has a read-only root filesystem.Default is false.Note that this field cannot be set when spec.os.name is windows.
+- `run_as_group` (Number) The GID to run the entrypoint of the container process.Uses runtime default if unset.May also be set in PodSecurityContext. If set in both SecurityContext andPodSecurityContext, the value specified in SecurityContext takes precedence.Note that this field cannot be set when spec.os.name is windows.
+- `run_as_non_root` (Boolean) Indicates that the container must run as a non-root user.If true, the Kubelet will validate the image at runtime to ensure that itdoes not run as UID 0 (root) and fail to start the container if it does.If unset or false, no such validation will be performed.May also be set in PodSecurityContext. If set in both SecurityContext andPodSecurityContext, the value specified in SecurityContext takes precedence.
+- `run_as_user` (Number) The UID to run the entrypoint of the container process.Defaults to user specified in image metadata if unspecified.May also be set in PodSecurityContext. If set in both SecurityContext andPodSecurityContext, the value specified in SecurityContext takes precedence.Note that this field cannot be set when spec.os.name is windows.
+- `se_linux_options` (Attributes) The SELinux context to be applied to the container.If unspecified, the container runtime will allocate a random SELinux context for eachcontainer. May also be set in PodSecurityContext. If set in both SecurityContext andPodSecurityContext, the value specified in SecurityContext takes precedence.Note that this field cannot be set when spec.os.name is windows. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--security_context--se_linux_options))
+- `seccomp_profile` (Attributes) The seccomp options to use by this container. If seccomp options areprovided at both the pod & container level, the container optionsoverride the pod options.Note that this field cannot be set when spec.os.name is windows. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--security_context--seccomp_profile))
+- `windows_options` (Attributes) The Windows specific settings applied to all containers.If unspecified, the options from the PodSecurityContext will be used.If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.Note that this field cannot be set when spec.os.name is linux. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--security_context--windows_options))
### Nested Schema for `spec.deployment.spec.template.spec.init_containers.security_context.app_armor_profile`
Required:
-- `type` (String)
+- `type` (String) type indicates which kind of AppArmor profile will be applied.Valid options are: Localhost - a profile pre-loaded on the node. RuntimeDefault - the container runtime's default profile. Unconfined - no AppArmor enforcement.
Optional:
-- `localhost_profile` (String)
+- `localhost_profile` (String) localhostProfile indicates a profile loaded on the node that should be used.The profile must be preconfigured on the node to work.Must match the loaded name of the profile.Must be set if and only if type is 'Localhost'.
@@ -2390,8 +2390,8 @@ Optional:
Optional:
-- `add` (List of String)
-- `drop` (List of String)
+- `add` (List of String) Added capabilities
+- `drop` (List of String) Removed capabilities
@@ -2399,10 +2399,10 @@ Optional:
Optional:
-- `level` (String)
-- `role` (String)
-- `type` (String)
-- `user` (String)
+- `level` (String) Level is SELinux level label that applies to the container.
+- `role` (String) Role is a SELinux role label that applies to the container.
+- `type` (String) Type is a SELinux type label that applies to the container.
+- `user` (String) User is a SELinux user label that applies to the container.
@@ -2410,11 +2410,11 @@ Optional:
Required:
-- `type` (String)
+- `type` (String) type indicates which kind of seccomp profile will be applied.Valid options are:Localhost - a profile defined in a file on the node should be used.RuntimeDefault - the container runtime default profile should be used.Unconfined - no profile should be applied.
Optional:
-- `localhost_profile` (String)
+- `localhost_profile` (String) localhostProfile indicates a profile defined in a file on the node should be used.The profile must be preconfigured on the node to work.Must be a descending path, relative to the kubelet's configured seccomp profile location.Must be set if type is 'Localhost'. Must NOT be set for any other type.
@@ -2422,10 +2422,10 @@ Optional:
Optional:
-- `gmsa_credential_spec` (String)
-- `gmsa_credential_spec_name` (String)
-- `host_process` (Boolean)
-- `run_as_user_name` (String)
+- `gmsa_credential_spec` (String) GMSACredentialSpec is where the GMSA admission webhook(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of theGMSA credential spec named by the GMSACredentialSpecName field.
+- `gmsa_credential_spec_name` (String) GMSACredentialSpecName is the name of the GMSA credential spec to use.
+- `host_process` (Boolean) HostProcess determines if a container should be run as a 'Host Process' container.All of a Pod's containers must have the same effective HostProcess value(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).In addition, if HostProcess is true then HostNetwork must also be set to true.
+- `run_as_user_name` (String) The UserName in Windows to run the entrypoint of the container process.Defaults to the user specified in image metadata if unspecified.May also be set in PodSecurityContext. If set in both SecurityContext andPodSecurityContext, the value specified in SecurityContext takes precedence.
@@ -2434,23 +2434,23 @@ Optional:
Optional:
-- `exec` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--startup_probe--exec))
-- `failure_threshold` (Number)
-- `grpc` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--startup_probe--grpc))
-- `http_get` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--startup_probe--http_get))
-- `initial_delay_seconds` (Number)
-- `period_seconds` (Number)
-- `success_threshold` (Number)
-- `tcp_socket` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--startup_probe--tcp_socket))
-- `termination_grace_period_seconds` (Number)
-- `timeout_seconds` (Number)
+- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--startup_probe--exec))
+- `failure_threshold` (Number) Minimum consecutive failures for the probe to be considered failed after having succeeded.Defaults to 3. Minimum value is 1.
+- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--startup_probe--grpc))
+- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--startup_probe--http_get))
+- `initial_delay_seconds` (Number) Number of seconds after the container has started before liveness probes are initiated.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
+- `period_seconds` (Number) How often (in seconds) to perform the probe.Default to 10 seconds. Minimum value is 1.
+- `success_threshold` (Number) Minimum consecutive successes for the probe to be considered successful after having failed.Defaults to 1. Must be 1 for liveness and startup. Minimum value is 1.
+- `tcp_socket` (Attributes) TCPSocket specifies an action involving a TCP port. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--startup_probe--tcp_socket))
+- `termination_grace_period_seconds` (Number) Optional duration in seconds the pod needs to terminate gracefully upon probe failure.The grace period is the duration in seconds after the processes running in the pod are senta termination signal and the time when the processes are forcibly halted with a kill signal.Set this value longer than the expected cleanup time for your process.If this value is nil, the pod's terminationGracePeriodSeconds will be used. Otherwise, thisvalue overrides the value provided by the pod spec.Value must be non-negative integer. The value zero indicates stop immediately viathe kill signal (no opportunity to shut down).This is a beta field and requires enabling ProbeTerminationGracePeriod feature gate.Minimum value is 1. spec.terminationGracePeriodSeconds is used if unset.
+- `timeout_seconds` (Number) Number of seconds after which the probe times out.Defaults to 1 second. Minimum value is 1.More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
### Nested Schema for `spec.deployment.spec.template.spec.init_containers.startup_probe.exec`
Optional:
-- `command` (List of String)
+- `command` (List of String) Command is the command line to execute inside the container, the working directory for thecommand is root ('/') in the container's filesystem. The command is simply exec'd, it isnot run inside a shell, so traditional shell instructions ('|', etc) won't work. To usea shell, you need to explicitly call out to that shell.Exit status of 0 is treated as live/healthy and non-zero is unhealthy.
@@ -2458,11 +2458,11 @@ Optional:
Required:
-- `port` (Number)
+- `port` (Number) Port number of the gRPC service. Number must be in the range 1 to 65535.
Optional:
-- `service` (String)
+- `service` (String) Service is the name of the service to place in the gRPC HealthCheckRequest(see https://github.com/grpc/grpc/blob/master/doc/health-checking.md).If this is not specified, the default behavior is defined by gRPC.
@@ -2470,22 +2470,22 @@ Optional:
Required:
-- `port` (String)
+- `port` (String) Name or number of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
-- `http_headers` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--startup_probe--http_get--http_headers))
-- `path` (String)
-- `scheme` (String)
+- `host` (String) Host name to connect to, defaults to the pod IP. You probably want to set'Host' in httpHeaders instead.
+- `http_headers` (Attributes List) Custom headers to set in the request. HTTP allows repeated headers. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--init_containers--startup_probe--http_get--http_headers))
+- `path` (String) Path to access on the HTTP server.
+- `scheme` (String) Scheme to use for connecting to the host.Defaults to HTTP.
### Nested Schema for `spec.deployment.spec.template.spec.init_containers.startup_probe.http_get.http_headers`
Required:
-- `name` (String)
-- `value` (String)
+- `name` (String) The header field name.This will be canonicalized upon output, so case-variant names will be understood as the same header.
+- `value` (String) The header field value
@@ -2494,11 +2494,11 @@ Required:
Required:
-- `port` (String)
+- `port` (String) Number or name of the port to access on the container.Number must be in the range 1 to 65535.Name must be an IANA_SVC_NAME.
Optional:
-- `host` (String)
+- `host` (String) Optional: Host name to connect to, defaults to the pod IP.
@@ -2507,8 +2507,8 @@ Optional:
Required:
-- `device_path` (String)
-- `name` (String)
+- `device_path` (String) devicePath is the path inside of the container that the device will be mapped to.
+- `name` (String) name must match the name of a persistentVolumeClaim in the pod
@@ -2516,16 +2516,16 @@ Required:
Required:
-- `mount_path` (String)
-- `name` (String)
+- `mount_path` (String) Path within the container at which the volume should be mounted. Mustnot contain ':'.
+- `name` (String) This must match the Name of a Volume.
Optional:
-- `mount_propagation` (String)
-- `read_only` (Boolean)
-- `recursive_read_only` (String)
-- `sub_path` (String)
-- `sub_path_expr` (String)
+- `mount_propagation` (String) mountPropagation determines how mounts are propagated from the hostto container and the other way around.When not set, MountPropagationNone is used.This field is beta in 1.10.When RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified(which defaults to None).
+- `read_only` (Boolean) Mounted read-only if true, read-write otherwise (false or unspecified).Defaults to false.
+- `recursive_read_only` (String) RecursiveReadOnly specifies whether read-only mounts should be handledrecursively.If ReadOnly is false, this field has no meaning and must be unspecified.If ReadOnly is true, and this field is set to Disabled, the mount is not maderecursively read-only. If this field is set to IfPossible, the mount is maderecursively read-only, if it is supported by the container runtime. If thisfield is set to Enabled, the mount is made recursively read-only if it issupported by the container runtime, otherwise the pod will not be started andan error will be generated to indicate the reason.If this field is set to IfPossible or Enabled, MountPropagation must be set toNone (or be unspecified, which defaults to None).If this field is not specified, it is treated as an equivalent of Disabled.
+- `sub_path` (String) Path within the volume from which the container's volume should be mounted.Defaults to '' (volume's root).
+- `sub_path_expr` (String) Expanded path within the volume from which the container's volume should be mounted.Behaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.Defaults to '' (volume's root).SubPathExpr and SubPath are mutually exclusive.
@@ -2534,7 +2534,7 @@ Optional:
Required:
-- `name` (String)
+- `name` (String) Name is the name of the operating system. The currently supported values are linux and windows.Additional value may be defined in future and can be one of:https://github.com/opencontainers/runtime-spec/blob/master/config.md#platform-specific-configurationClients should expect to handle additional values and treat unrecognized values in this field as os: null
@@ -2542,7 +2542,7 @@ Required:
Required:
-- `condition_type` (String)
+- `condition_type` (String) ConditionType refers to a condition in the pod's condition list with matching type.
@@ -2550,28 +2550,28 @@ Required:
Optional:
-- `app_armor_profile` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--security_context--app_armor_profile))
-- `fs_group` (Number)
-- `fs_group_change_policy` (String)
-- `run_as_group` (Number)
-- `run_as_non_root` (Boolean)
-- `run_as_user` (Number)
-- `se_linux_options` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--security_context--se_linux_options))
-- `seccomp_profile` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--security_context--seccomp_profile))
-- `supplemental_groups` (List of String)
-- `sysctls` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--security_context--sysctls))
-- `windows_options` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--security_context--windows_options))
+- `app_armor_profile` (Attributes) appArmorProfile is the AppArmor options to use by the containers in this pod.Note that this field cannot be set when spec.os.name is windows. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--security_context--app_armor_profile))
+- `fs_group` (Number) A special supplemental group that applies to all containers in a pod.Some volume types allow the Kubelet to change the ownership of that volumeto be owned by the pod:1. The owning GID will be the FSGroup2. The setgid bit is set (new files created in the volume will be owned by FSGroup)3. The permission bits are OR'd with rw-rw----If unset, the Kubelet will not modify the ownership and permissions of any volume.Note that this field cannot be set when spec.os.name is windows.
+- `fs_group_change_policy` (String) fsGroupChangePolicy defines behavior of changing ownership and permission of the volumebefore being exposed inside Pod. This field will only apply tovolume types which support fsGroup based ownership(and permissions).It will have no effect on ephemeral volume types such as: secret, configmapsand emptydir.Valid values are 'OnRootMismatch' and 'Always'. If not specified, 'Always' is used.Note that this field cannot be set when spec.os.name is windows.
+- `run_as_group` (Number) The GID to run the entrypoint of the container process.Uses runtime default if unset.May also be set in SecurityContext. If set in both SecurityContext andPodSecurityContext, the value specified in SecurityContext takes precedencefor that container.Note that this field cannot be set when spec.os.name is windows.
+- `run_as_non_root` (Boolean) Indicates that the container must run as a non-root user.If true, the Kubelet will validate the image at runtime to ensure that itdoes not run as UID 0 (root) and fail to start the container if it does.If unset or false, no such validation will be performed.May also be set in SecurityContext. If set in both SecurityContext andPodSecurityContext, the value specified in SecurityContext takes precedence.
+- `run_as_user` (Number) The UID to run the entrypoint of the container process.Defaults to user specified in image metadata if unspecified.May also be set in SecurityContext. If set in both SecurityContext andPodSecurityContext, the value specified in SecurityContext takes precedencefor that container.Note that this field cannot be set when spec.os.name is windows.
+- `se_linux_options` (Attributes) The SELinux context to be applied to all containers.If unspecified, the container runtime will allocate a random SELinux context for eachcontainer. May also be set in SecurityContext. If set inboth SecurityContext and PodSecurityContext, the value specified in SecurityContexttakes precedence for that container.Note that this field cannot be set when spec.os.name is windows. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--security_context--se_linux_options))
+- `seccomp_profile` (Attributes) The seccomp options to use by the containers in this pod.Note that this field cannot be set when spec.os.name is windows. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--security_context--seccomp_profile))
+- `supplemental_groups` (List of String) A list of groups applied to the first process run in each container, in additionto the container's primary GID, the fsGroup (if specified), and group membershipsdefined in the container image for the uid of the container process. If unspecified,no additional groups are added to any container. Note that group membershipsdefined in the container image for the uid of the container process are still effective,even if they are not included in this list.Note that this field cannot be set when spec.os.name is windows.
+- `sysctls` (Attributes List) Sysctls hold a list of namespaced sysctls used for the pod. Pods with unsupportedsysctls (by the container runtime) might fail to launch.Note that this field cannot be set when spec.os.name is windows. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--security_context--sysctls))
+- `windows_options` (Attributes) The Windows specific settings applied to all containers.If unspecified, the options within a container's SecurityContext will be used.If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.Note that this field cannot be set when spec.os.name is linux. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--security_context--windows_options))
### Nested Schema for `spec.deployment.spec.template.spec.security_context.app_armor_profile`
Required:
-- `type` (String)
+- `type` (String) type indicates which kind of AppArmor profile will be applied.Valid options are: Localhost - a profile pre-loaded on the node. RuntimeDefault - the container runtime's default profile. Unconfined - no AppArmor enforcement.
Optional:
-- `localhost_profile` (String)
+- `localhost_profile` (String) localhostProfile indicates a profile loaded on the node that should be used.The profile must be preconfigured on the node to work.Must match the loaded name of the profile.Must be set if and only if type is 'Localhost'.
@@ -2579,10 +2579,10 @@ Optional:
Optional:
-- `level` (String)
-- `role` (String)
-- `type` (String)
-- `user` (String)
+- `level` (String) Level is SELinux level label that applies to the container.
+- `role` (String) Role is a SELinux role label that applies to the container.
+- `type` (String) Type is a SELinux type label that applies to the container.
+- `user` (String) User is a SELinux user label that applies to the container.
@@ -2590,11 +2590,11 @@ Optional:
Required:
-- `type` (String)
+- `type` (String) type indicates which kind of seccomp profile will be applied.Valid options are:Localhost - a profile defined in a file on the node should be used.RuntimeDefault - the container runtime default profile should be used.Unconfined - no profile should be applied.
Optional:
-- `localhost_profile` (String)
+- `localhost_profile` (String) localhostProfile indicates a profile defined in a file on the node should be used.The profile must be preconfigured on the node to work.Must be a descending path, relative to the kubelet's configured seccomp profile location.Must be set if type is 'Localhost'. Must NOT be set for any other type.
@@ -2602,8 +2602,8 @@ Optional:
Required:
-- `name` (String)
-- `value` (String)
+- `name` (String) Name of a property to set
+- `value` (String) Value of a property to set
@@ -2611,10 +2611,10 @@ Required:
Optional:
-- `gmsa_credential_spec` (String)
-- `gmsa_credential_spec_name` (String)
-- `host_process` (Boolean)
-- `run_as_user_name` (String)
+- `gmsa_credential_spec` (String) GMSACredentialSpec is where the GMSA admission webhook(https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of theGMSA credential spec named by the GMSACredentialSpecName field.
+- `gmsa_credential_spec_name` (String) GMSACredentialSpecName is the name of the GMSA credential spec to use.
+- `host_process` (Boolean) HostProcess determines if a container should be run as a 'Host Process' container.All of a Pod's containers must have the same effective HostProcess value(it is not allowed to have a mix of HostProcess containers and non-HostProcess containers).In addition, if HostProcess is true then HostNetwork must also be set to true.
+- `run_as_user_name` (String) The UserName in Windows to run the entrypoint of the container process.Defaults to the user specified in image metadata if unspecified.May also be set in PodSecurityContext. If set in both SecurityContext andPodSecurityContext, the value specified in SecurityContext takes precedence.
@@ -2623,11 +2623,11 @@ Optional:
Optional:
-- `effect` (String)
-- `key` (String)
-- `operator` (String)
-- `toleration_seconds` (Number)
-- `value` (String)
+- `effect` (String) Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.
+- `key` (String) Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.
+- `operator` (String) Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.
+- `toleration_seconds` (Number) TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.
+- `value` (String) Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.
@@ -2635,37 +2635,37 @@ Optional:
Required:
-- `max_skew` (Number)
-- `topology_key` (String)
-- `when_unsatisfiable` (String)
+- `max_skew` (Number) MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.
+- `topology_key` (String) TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.
+- `when_unsatisfiable` (String) WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.
Optional:
-- `label_selector` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--topology_spread_constraints--label_selector))
-- `match_label_keys` (List of String)
-- `min_domains` (Number)
-- `node_affinity_policy` (String)
-- `node_taints_policy` (String)
+- `label_selector` (Attributes) LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--topology_spread_constraints--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).
+- `min_domains` (Number) MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.
+- `node_affinity_policy` (String) NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.
+- `node_taints_policy` (String) NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.
### Nested Schema for `spec.deployment.spec.template.spec.topology_spread_constraints.label_selector`
Optional:
-- `match_expressions` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--topology_spread_constraints--label_selector--match_expressions))
-- `match_labels` (Map of String)
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--topology_spread_constraints--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
### Nested Schema for `spec.deployment.spec.template.spec.topology_spread_constraints.label_selector.match_expressions`
Required:
-- `key` (String)
-- `operator` (String)
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
Optional:
-- `values` (List of String)
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
@@ -2675,52 +2675,52 @@ Optional:
Required:
-- `name` (String)
-
-Optional:
-
-- `aws_elastic_block_store` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--aws_elastic_block_store))
-- `azure_disk` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--azure_disk))
-- `azure_file` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--azure_file))
-- `cephfs` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--cephfs))
-- `cinder` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--cinder))
-- `config_map` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--config_map))
-- `csi` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--csi))
-- `downward_api` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--downward_api))
-- `empty_dir` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--empty_dir))
-- `ephemeral` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--ephemeral))
-- `fc` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--fc))
-- `flex_volume` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--flex_volume))
-- `flocker` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--flocker))
-- `gce_persistent_disk` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--gce_persistent_disk))
-- `git_repo` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--git_repo))
-- `glusterfs` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--glusterfs))
-- `host_path` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--host_path))
-- `iscsi` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--iscsi))
-- `nfs` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--nfs))
-- `persistent_volume_claim` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--persistent_volume_claim))
-- `photon_persistent_disk` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--photon_persistent_disk))
-- `portworx_volume` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--portworx_volume))
-- `projected` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected))
-- `quobyte` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--quobyte))
-- `rbd` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--rbd))
-- `scale_io` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--scale_io))
-- `secret` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--secret))
-- `storageos` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--storageos))
-- `vsphere_volume` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--vsphere_volume))
+- `name` (String) name of the volume.Must be a DNS_LABEL and unique within the pod.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+
+Optional:
+
+- `aws_elastic_block_store` (Attributes) awsElasticBlockStore represents an AWS Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--aws_elastic_block_store))
+- `azure_disk` (Attributes) azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--azure_disk))
+- `azure_file` (Attributes) azureFile represents an Azure File Service mount on the host and bind mount to the pod. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--azure_file))
+- `cephfs` (Attributes) cephFS represents a Ceph FS mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--cephfs))
+- `cinder` (Attributes) cinder represents a cinder volume attached and mounted on kubelets host machine.More info: https://examples.k8s.io/mysql-cinder-pd/README.md (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--cinder))
+- `config_map` (Attributes) configMap represents a configMap that should populate this volume (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--config_map))
+- `csi` (Attributes) csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature). (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--csi))
+- `downward_api` (Attributes) downwardAPI represents downward API about the pod that should populate this volume (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--downward_api))
+- `empty_dir` (Attributes) emptyDir represents a temporary directory that shares a pod's lifetime.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--empty_dir))
+- `ephemeral` (Attributes) ephemeral represents a volume that is handled by a cluster storage driver.The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,and deleted when the pod is removed.Use this if:a) the volume is only needed while the pod runs,b) features of normal volumes like restoring from snapshot or capacity tracking are needed,c) the storage driver is specified through a storage class, andd) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim).Use PersistentVolumeClaim or one of the vendor-specificAPIs for volumes that persist for longer than the lifecycleof an individual pod.Use CSI for light-weight local ephemeral volumes if the CSI driver is meant tobe used that way - see the documentation of the driver formore information.A pod can use both types of ephemeral volumes andpersistent volumes at the same time. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--ephemeral))
+- `fc` (Attributes) fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--fc))
+- `flex_volume` (Attributes) flexVolume represents a generic volume resource that isprovisioned/attached using an exec based plugin. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--flex_volume))
+- `flocker` (Attributes) flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--flocker))
+- `gce_persistent_disk` (Attributes) gcePersistentDisk represents a GCE Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--gce_persistent_disk))
+- `git_repo` (Attributes) gitRepo represents a git repository at a particular revision.DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount anEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDirinto the Pod's container. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--git_repo))
+- `glusterfs` (Attributes) glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/glusterfs/README.md (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--glusterfs))
+- `host_path` (Attributes) hostPath represents a pre-existing file or directory on the hostmachine that is directly exposed to the container. This is generallyused for system agents or other privileged things that are allowedto see the host machine. Most containers will NOT need this.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath---TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can notmount host directories as read/write. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--host_path))
+- `iscsi` (Attributes) iscsi represents an ISCSI Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://examples.k8s.io/volumes/iscsi/README.md (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--iscsi))
+- `nfs` (Attributes) nfs represents an NFS mount on the host that shares a pod's lifetimeMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--nfs))
+- `persistent_volume_claim` (Attributes) persistentVolumeClaimVolumeSource represents a reference to aPersistentVolumeClaim in the same namespace.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--persistent_volume_claim))
+- `photon_persistent_disk` (Attributes) photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--photon_persistent_disk))
+- `portworx_volume` (Attributes) portworxVolume represents a portworx volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--portworx_volume))
+- `projected` (Attributes) projected items for all in one resources secrets, configmaps, and downward API (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected))
+- `quobyte` (Attributes) quobyte represents a Quobyte mount on the host that shares a pod's lifetime (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--quobyte))
+- `rbd` (Attributes) rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/rbd/README.md (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--rbd))
+- `scale_io` (Attributes) scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--scale_io))
+- `secret` (Attributes) secret represents a secret that should populate this volume.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--secret))
+- `storageos` (Attributes) storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--storageos))
+- `vsphere_volume` (Attributes) vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--vsphere_volume))
### Nested Schema for `spec.deployment.spec.template.spec.volumes.aws_elastic_block_store`
Required:
-- `volume_id` (String)
+- `volume_id` (String) volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
Optional:
-- `fs_type` (String)
-- `partition` (Number)
-- `read_only` (Boolean)
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstoreTODO: how do we prevent errors in the filesystem from compromising the machine
+- `partition` (Number) partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).
+- `read_only` (Boolean) readOnly value true will force the readOnly setting in VolumeMounts.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore
@@ -2728,15 +2728,15 @@ Optional:
Required:
-- `disk_name` (String)
-- `disk_uri` (String)
+- `disk_name` (String) diskName is the Name of the data disk in the blob storage
+- `disk_uri` (String) diskURI is the URI of data disk in the blob storage
Optional:
-- `caching_mode` (String)
-- `fs_type` (String)
-- `kind` (String)
-- `read_only` (Boolean)
+- `caching_mode` (String) cachingMode is the Host Caching mode: None, Read Only, Read Write.
+- `fs_type` (String) fsType is Filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `kind` (String) kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared
+- `read_only` (Boolean) readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
@@ -2744,12 +2744,12 @@ Optional:
Required:
-- `secret_name` (String)
-- `share_name` (String)
+- `secret_name` (String) secretName is the name of secret that contains Azure Storage Account Name and Key
+- `share_name` (String) shareName is the azure share Name
Optional:
-- `read_only` (Boolean)
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
@@ -2757,22 +2757,22 @@ Optional:
Required:
-- `monitors` (List of String)
+- `monitors` (List of String) monitors is Required: Monitors is a collection of Ceph monitorsMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
Optional:
-- `path` (String)
-- `read_only` (Boolean)
-- `secret_file` (String)
-- `secret_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--cephfs--secret_ref))
-- `user` (String)
+- `path` (String) path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /
+- `read_only` (Boolean) readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `secret_file` (String) secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secretMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
+- `secret_ref` (Attributes) secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--cephfs--secret_ref))
+- `user` (String) user is optional: User is the rados user name, default is adminMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it
### Nested Schema for `spec.deployment.spec.template.spec.volumes.cephfs.secret_ref`
Optional:
-- `name` (String)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
@@ -2781,20 +2781,20 @@ Optional:
Required:
-- `volume_id` (String)
+- `volume_id` (String) volumeID used to identify the volume in cinder.More info: https://examples.k8s.io/mysql-cinder-pd/README.md
Optional:
-- `fs_type` (String)
-- `read_only` (Boolean)
-- `secret_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--cinder--secret_ref))
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/mysql-cinder-pd/README.md
+- `secret_ref` (Attributes) secretRef is optional: points to a secret object containing parameters used to connectto OpenStack. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--cinder--secret_ref))
### Nested Schema for `spec.deployment.spec.template.spec.volumes.cinder.secret_ref`
Optional:
-- `name` (String)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
@@ -2803,22 +2803,22 @@ Optional:
Optional:
-- `default_mode` (Number)
-- `items` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--config_map--items))
-- `name` (String)
-- `optional` (Boolean)
+- `default_mode` (Number) defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--config_map--items))
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) optional specify whether the ConfigMap or its keys must be defined
### Nested Schema for `spec.deployment.spec.template.spec.volumes.config_map.items`
Required:
-- `key` (String)
-- `path` (String)
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
Optional:
-- `mode` (Number)
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
@@ -2827,21 +2827,21 @@ Optional:
Required:
-- `driver` (String)
+- `driver` (String) driver is the name of the CSI driver that handles this volume.Consult with your admin for the correct name as registered in the cluster.
Optional:
-- `fs_type` (String)
-- `node_publish_secret_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--csi--node_publish_secret_ref))
-- `read_only` (Boolean)
-- `volume_attributes` (Map of String)
+- `fs_type` (String) fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'.If not provided, the empty value is passed to the associated CSI driverwhich will determine the default filesystem to apply.
+- `node_publish_secret_ref` (Attributes) nodePublishSecretRef is a reference to the secret object containingsensitive information to pass to the CSI driver to complete the CSINodePublishVolume and NodeUnpublishVolume calls.This field is optional, and may be empty if no secret is required. If thesecret object contains more than one secret, all secret references are passed. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--csi--node_publish_secret_ref))
+- `read_only` (Boolean) readOnly specifies a read-only configuration for the volume.Defaults to false (read/write).
+- `volume_attributes` (Map of String) volumeAttributes stores driver-specific properties that are passed to the CSIdriver. Consult your driver's documentation for supported values.
### Nested Schema for `spec.deployment.spec.template.spec.volumes.csi.node_publish_secret_ref`
Optional:
-- `name` (String)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
@@ -2850,32 +2850,32 @@ Optional:
Optional:
-- `default_mode` (Number)
-- `items` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--downward_api--items))
+- `default_mode` (Number) Optional: mode bits to use on created files by default. Must be aOptional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) Items is a list of downward API volume file (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--downward_api--items))
### Nested Schema for `spec.deployment.spec.template.spec.volumes.downward_api.items`
Required:
-- `path` (String)
+- `path` (String) Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'
Optional:
-- `field_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--downward_api--items--field_ref))
-- `mode` (Number)
-- `resource_field_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--downward_api--items--resource_field_ref))
+- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--downward_api--items--field_ref))
+- `mode` (Number) Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--downward_api--items--resource_field_ref))
### Nested Schema for `spec.deployment.spec.template.spec.volumes.downward_api.items.field_ref`
Required:
-- `field_path` (String)
+- `field_path` (String) Path of the field to select in the specified API version.
Optional:
-- `api_version` (String)
+- `api_version` (String) Version of the schema the FieldPath is written in terms of, defaults to 'v1'.
@@ -2883,12 +2883,12 @@ Optional:
Required:
-- `resource` (String)
+- `resource` (String) Required: resource to select
Optional:
-- `container_name` (String)
-- `divisor` (String)
+- `container_name` (String) Container name: required for volumes, optional for env vars
+- `divisor` (String) Specifies the output format of the exposed resources, defaults to '1'
@@ -2898,8 +2898,8 @@ Optional:
Optional:
-- `medium` (String)
-- `size_limit` (String)
+- `medium` (String) medium represents what type of storage medium should back this directory.The default is '' which means to use the node's default medium.Must be an empty string (default) or Memory.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
+- `size_limit` (String) sizeLimit is the total amount of local storage required for this EmptyDir volume.The size limit is also applicable for memory medium.The maximum usage on memory medium EmptyDir would be the minimum value betweenthe SizeLimit specified here and the sum of memory limits of all containers in a pod.The default is nil which means that the limit is undefined.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir
@@ -2907,45 +2907,45 @@ Optional:
Optional:
-- `volume_claim_template` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--ephemeral--volume_claim_template))
+- `volume_claim_template` (Attributes) Will be used to create a stand-alone PVC to provision the volume.The pod in which this EphemeralVolumeSource is embedded will be theowner of the PVC, i.e. the PVC will be deleted together with thepod. The name of the PVC will be '-' where'' is the name from the 'PodSpec.Volumes' arrayentry. Pod validation will reject the pod if the concatenated nameis not valid for a PVC (for example, too long).An existing PVC with that name that is not owned by the podwill *not* be used for the pod to avoid using an unrelatedvolume by mistake. Starting the pod is then blocked untilthe unrelated PVC is removed. If such a pre-created PVC ismeant to be used by the pod, the PVC has to updated with anowner reference to the pod once the pod exists. Normallythis should not be necessary, but it may be useful whenmanually reconstructing a broken cluster.This field is read-only and no changes will be made by Kubernetesto the PVC after it has been created.Required, must not be nil. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--ephemeral--volume_claim_template))
### Nested Schema for `spec.deployment.spec.template.spec.volumes.ephemeral.volume_claim_template`
Required:
-- `spec` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--ephemeral--volume_claim_template--spec))
+- `spec` (Attributes) The specification for the PersistentVolumeClaim. The entire content iscopied unchanged into the PVC that gets created from thistemplate. The same fields as in a PersistentVolumeClaimare also valid here. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--ephemeral--volume_claim_template--spec))
Optional:
-- `metadata` (Map of String)
+- `metadata` (Map of String) May contain labels and annotations that will be copied into the PVCwhen creating it. No other fields are allowed and will be rejected duringvalidation.
### Nested Schema for `spec.deployment.spec.template.spec.volumes.ephemeral.volume_claim_template.spec`
Optional:
-- `access_modes` (List of String)
-- `data_source` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--ephemeral--volume_claim_template--spec--data_source))
-- `data_source_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--ephemeral--volume_claim_template--spec--data_source_ref))
-- `resources` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--ephemeral--volume_claim_template--spec--resources))
-- `selector` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--ephemeral--volume_claim_template--spec--selector))
-- `storage_class_name` (String)
-- `volume_attributes_class_name` (String)
-- `volume_mode` (String)
-- `volume_name` (String)
+- `access_modes` (List of String) accessModes contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
+- `data_source` (Attributes) dataSource field can be used to specify either:* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)* An existing PVC (PersistentVolumeClaim)If the provisioner or an external controller can support the specified data source,it will create a new volume based on the contents of the specified data source.When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.If the namespace is specified, then dataSourceRef will not be copied to dataSource. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--ephemeral--volume_claim_template--spec--data_source))
+- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-emptyvolume is desired. This may be any object from a non-empty API group (noncore object) or a PersistentVolumeClaim object.When this field is specified, volume binding will only succeed if the type ofthe specified object matches some installed volume populator or dynamicprovisioner.This field will replace the functionality of the dataSource field and as suchif both fields are non-empty, they must have the same value. For backwardscompatibility, when namespace isn't specified in dataSourceRef,both fields (dataSource and dataSourceRef) will be set to the samevalue automatically if one of them is empty and the other is non-empty.When namespace is specified in dataSourceRef,dataSource isn't set to the same value and must be empty.There are three important differences between dataSource and dataSourceRef:* While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects.* While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified.* While dataSource only allows local objects, dataSourceRef allows objects in any namespaces.(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--ephemeral--volume_claim_template--spec--data_source_ref))
+- `resources` (Attributes) resources represents the minimum resources the volume should have.If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirementsthat are lower than previous value but must still be higher than capacity recorded in thestatus field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--ephemeral--volume_claim_template--spec--resources))
+- `selector` (Attributes) selector is a label query over volumes to consider for binding. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--ephemeral--volume_claim_template--spec--selector))
+- `storage_class_name` (String) storageClassName is the name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
+- `volume_attributes_class_name` (String) volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim.If specified, the CSI driver will create or update the volume with the attributes definedin the corresponding VolumeAttributesClass. This has a different purpose than storageClassName,it can be changed after the claim is created. An empty string value means that no VolumeAttributesClasswill be applied to the claim but it's not allowed to reset this field to empty string once it is set.If unspecified and the PersistentVolumeClaim is unbound, the default VolumeAttributesClasswill be set by the persistentvolume controller if it exists.If the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will beset to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resourceexists.More info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/(Alpha) Using this field requires the VolumeAttributesClass feature gate to be enabled.
+- `volume_mode` (String) volumeMode defines what type of volume is required by the claim.Value of Filesystem is implied when not included in claim spec.
+- `volume_name` (String) volumeName is the binding reference to the PersistentVolume backing this claim.
### Nested Schema for `spec.deployment.spec.template.spec.volumes.ephemeral.volume_claim_template.spec.data_source`
Required:
-- `kind` (String)
-- `name` (String)
+- `kind` (String) Kind is the type of resource being referenced
+- `name` (String) Name is the name of resource being referenced
Optional:
-- `api_group` (String)
+- `api_group` (String) APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.
@@ -2953,13 +2953,13 @@ Optional:
Required:
-- `kind` (String)
-- `name` (String)
+- `kind` (String) Kind is the type of resource being referenced
+- `name` (String) Name is the name of resource being referenced
Optional:
-- `api_group` (String)
-- `namespace` (String)
+- `api_group` (String) APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.
+- `namespace` (String) Namespace is the namespace of resource being referencedNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.
@@ -2967,8 +2967,8 @@ Optional:
Optional:
-- `limits` (Map of String)
-- `requests` (Map of String)
+- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
@@ -2976,20 +2976,20 @@ Optional:
Optional:
-- `match_expressions` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--ephemeral--volume_claim_template--spec--selector--match_expressions))
-- `match_labels` (Map of String)
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--ephemeral--volume_claim_template--spec--selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
### Nested Schema for `spec.deployment.spec.template.spec.volumes.ephemeral.volume_claim_template.spec.selector.match_expressions`
Required:
-- `key` (String)
-- `operator` (String)
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
Optional:
-- `values` (List of String)
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
@@ -3001,11 +3001,11 @@ Optional:
Optional:
-- `fs_type` (String)
-- `lun` (Number)
-- `read_only` (Boolean)
-- `target_ww_ns` (List of String)
-- `wwids` (List of String)
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.TODO: how do we prevent errors in the filesystem from compromising the machine
+- `lun` (Number) lun is Optional: FC target lun number
+- `read_only` (Boolean) readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+- `target_ww_ns` (List of String) targetWWNs is Optional: FC target worldwide names (WWNs)
+- `wwids` (List of String) wwids Optional: FC volume world wide identifiers (wwids)Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.
@@ -3013,21 +3013,21 @@ Optional:
Required:
-- `driver` (String)
+- `driver` (String) driver is the name of the driver to use for this volume.
Optional:
-- `fs_type` (String)
-- `options` (Map of String)
-- `read_only` (Boolean)
-- `secret_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--flex_volume--secret_ref))
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.
+- `options` (Map of String) options is Optional: this field holds extra command options if any.
+- `read_only` (Boolean) readOnly is Optional: defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+- `secret_ref` (Attributes) secretRef is Optional: secretRef is reference to the secret object containingsensitive information to pass to the plugin scripts. This may beempty if no secret object is specified. If the secret objectcontains more than one secret, all secrets are passed to the pluginscripts. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--flex_volume--secret_ref))
### Nested Schema for `spec.deployment.spec.template.spec.volumes.flex_volume.secret_ref`
Optional:
-- `name` (String)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
@@ -3036,8 +3036,8 @@ Optional:
Optional:
-- `dataset_name` (String)
-- `dataset_uuid` (String)
+- `dataset_name` (String) datasetName is Name of the dataset stored as metadata -> name on the dataset for Flockershould be considered as deprecated
+- `dataset_uuid` (String) datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset
@@ -3045,13 +3045,13 @@ Optional:
Required:
-- `pd_name` (String)
+- `pd_name` (String) pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
Optional:
-- `fs_type` (String)
-- `partition` (Number)
-- `read_only` (Boolean)
+- `fs_type` (String) fsType is filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskTODO: how do we prevent errors in the filesystem from compromising the machine
+- `partition` (Number) partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk
@@ -3059,12 +3059,12 @@ Optional:
Required:
-- `repository` (String)
+- `repository` (String) repository is the URL
Optional:
-- `directory` (String)
-- `revision` (String)
+- `directory` (String) directory is the target directory name.Must not contain or start with '..'. If '.' is supplied, the volume directory will be thegit repository. Otherwise, if specified, the volume will contain the git repository inthe subdirectory with the given name.
+- `revision` (String) revision is the commit hash for the specified revision.
@@ -3072,12 +3072,12 @@ Optional:
Required:
-- `endpoints` (String)
-- `path` (String)
+- `endpoints` (String) endpoints is the endpoint name that details Glusterfs topology.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
+- `path` (String) path is the Glusterfs volume path.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
Optional:
-- `read_only` (Boolean)
+- `read_only` (Boolean) readOnly here will force the Glusterfs volume to be mounted with read-only permissions.Defaults to false.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod
@@ -3085,11 +3085,11 @@ Optional:
Required:
-- `path` (String)
+- `path` (String) path of the directory on the host.If the path is a symlink, it will follow the link to the real path.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
Optional:
-- `type` (String)
+- `type` (String) type for HostPath VolumeDefaults to ''More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath
@@ -3097,27 +3097,27 @@ Optional:
Required:
-- `iqn` (String)
-- `lun` (Number)
-- `target_portal` (String)
+- `iqn` (String) iqn is the target iSCSI Qualified Name.
+- `lun` (Number) lun represents iSCSI Target Lun number.
+- `target_portal` (String) targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).
Optional:
-- `chap_auth_discovery` (Boolean)
-- `chap_auth_session` (Boolean)
-- `fs_type` (String)
-- `initiator_name` (String)
-- `iscsi_interface` (String)
-- `portals` (List of String)
-- `read_only` (Boolean)
-- `secret_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--iscsi--secret_ref))
+- `chap_auth_discovery` (Boolean) chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication
+- `chap_auth_session` (Boolean) chapAuthSession defines whether support iSCSI Session CHAP authentication
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsiTODO: how do we prevent errors in the filesystem from compromising the machine
+- `initiator_name` (String) initiatorName is the custom iSCSI Initiator Name.If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface: will be created for the connection.
+- `iscsi_interface` (String) iscsiInterface is the interface Name that uses an iSCSI transport.Defaults to 'default' (tcp).
+- `portals` (List of String) portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.
+- `secret_ref` (Attributes) secretRef is the CHAP Secret for iSCSI target and initiator authentication (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--iscsi--secret_ref))
### Nested Schema for `spec.deployment.spec.template.spec.volumes.iscsi.secret_ref`
Optional:
-- `name` (String)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
@@ -3126,12 +3126,12 @@ Optional:
Required:
-- `path` (String)
-- `server` (String)
+- `path` (String) path that is exported by the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
+- `server` (String) server is the hostname or IP address of the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
Optional:
-- `read_only` (Boolean)
+- `read_only` (Boolean) readOnly here will force the NFS export to be mounted with read-only permissions.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs
@@ -3139,11 +3139,11 @@ Optional:
Required:
-- `claim_name` (String)
+- `claim_name` (String) claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
Optional:
-- `read_only` (Boolean)
+- `read_only` (Boolean) readOnly Will force the ReadOnly setting in VolumeMounts.Default false.
@@ -3151,11 +3151,11 @@ Optional:
Required:
-- `pd_id` (String)
+- `pd_id` (String) pdID is the ID that identifies Photon Controller persistent disk
Optional:
-- `fs_type` (String)
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
@@ -3163,12 +3163,12 @@ Optional:
Required:
-- `volume_id` (String)
+- `volume_id` (String) volumeID uniquely identifies a Portworx volume
Optional:
-- `fs_type` (String)
-- `read_only` (Boolean)
+- `fs_type` (String) fSType represents the filesystem type to mountMust be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
@@ -3176,53 +3176,53 @@ Optional:
Optional:
-- `default_mode` (Number)
-- `sources` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources))
+- `default_mode` (Number) defaultMode are the mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `sources` (Attributes List) sources is the list of volume projections (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources))
### Nested Schema for `spec.deployment.spec.template.spec.volumes.projected.sources`
Optional:
-- `cluster_trust_bundle` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--cluster_trust_bundle))
-- `config_map` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--config_map))
-- `downward_api` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--downward_api))
-- `secret` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--secret))
-- `service_account_token` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--service_account_token))
+- `cluster_trust_bundle` (Attributes) ClusterTrustBundle allows a pod to access the '.spec.trustBundle' fieldof ClusterTrustBundle objects in an auto-updating file.Alpha, gated by the ClusterTrustBundleProjection feature gate.ClusterTrustBundle objects can either be selected by name, or by thecombination of signer name and a label selector.Kubelet performs aggressive normalization of the PEM contents writteninto the pod filesystem. Esoteric PEM features such as inter-blockcomments and block headers are stripped. Certificates are deduplicated.The ordering of certificates within the file is arbitrary, and Kubeletmay change the order over time. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--cluster_trust_bundle))
+- `config_map` (Attributes) configMap information about the configMap data to project (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--config_map))
+- `downward_api` (Attributes) downwardAPI information about the downwardAPI data to project (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--downward_api))
+- `secret` (Attributes) secret information about the secret data to project (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--secret))
+- `service_account_token` (Attributes) serviceAccountToken is information about the serviceAccountToken data to project (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--service_account_token))
### Nested Schema for `spec.deployment.spec.template.spec.volumes.projected.sources.cluster_trust_bundle`
Required:
-- `path` (String)
+- `path` (String) Relative path from the volume root to write the bundle.
Optional:
-- `label_selector` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--cluster_trust_bundle--label_selector))
-- `name` (String)
-- `optional` (Boolean)
-- `signer_name` (String)
+- `label_selector` (Attributes) Select all ClusterTrustBundles that match this label selector. Only haseffect if signerName is set. Mutually-exclusive with name. If unset,interpreted as 'match nothing'. If set but empty, interpreted as 'matcheverything'. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--cluster_trust_bundle--label_selector))
+- `name` (String) Select a single ClusterTrustBundle by object name. Mutually-exclusivewith signerName and labelSelector.
+- `optional` (Boolean) If true, don't block pod startup if the referenced ClusterTrustBundle(s)aren't available. If using name, then the named ClusterTrustBundle isallowed not to exist. If using signerName, then the combination ofsignerName and labelSelector is allowed to match zeroClusterTrustBundles.
+- `signer_name` (String) Select all ClusterTrustBundles that match this signer name.Mutually-exclusive with name. The contents of all selectedClusterTrustBundles will be unified and deduplicated.
### Nested Schema for `spec.deployment.spec.template.spec.volumes.projected.sources.cluster_trust_bundle.label_selector`
Optional:
-- `match_expressions` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--cluster_trust_bundle--label_selector--match_expressions))
-- `match_labels` (Map of String)
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--cluster_trust_bundle--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
### Nested Schema for `spec.deployment.spec.template.spec.volumes.projected.sources.cluster_trust_bundle.label_selector.match_expressions`
Required:
-- `key` (String)
-- `operator` (String)
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
Optional:
-- `values` (List of String)
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
@@ -3232,21 +3232,21 @@ Optional:
Optional:
-- `items` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--config_map--items))
-- `name` (String)
-- `optional` (Boolean)
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--config_map--items))
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) optional specify whether the ConfigMap or its keys must be defined
### Nested Schema for `spec.deployment.spec.template.spec.volumes.projected.sources.config_map.items`
Required:
-- `key` (String)
-- `path` (String)
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
Optional:
-- `mode` (Number)
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
@@ -3255,31 +3255,31 @@ Optional:
Optional:
-- `items` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--downward_api--items))
+- `items` (Attributes List) Items is a list of DownwardAPIVolume file (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--downward_api--items))
### Nested Schema for `spec.deployment.spec.template.spec.volumes.projected.sources.downward_api.items`
Required:
-- `path` (String)
+- `path` (String) Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'
Optional:
-- `field_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--downward_api--items--field_ref))
-- `mode` (Number)
-- `resource_field_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--downward_api--items--resource_field_ref))
+- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--downward_api--items--field_ref))
+- `mode` (Number) Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--downward_api--items--resource_field_ref))
### Nested Schema for `spec.deployment.spec.template.spec.volumes.projected.sources.downward_api.items.field_ref`
Required:
-- `field_path` (String)
+- `field_path` (String) Path of the field to select in the specified API version.
Optional:
-- `api_version` (String)
+- `api_version` (String) Version of the schema the FieldPath is written in terms of, defaults to 'v1'.
@@ -3287,12 +3287,12 @@ Optional:
Required:
-- `resource` (String)
+- `resource` (String) Required: resource to select
Optional:
-- `container_name` (String)
-- `divisor` (String)
+- `container_name` (String) Container name: required for volumes, optional for env vars
+- `divisor` (String) Specifies the output format of the exposed resources, defaults to '1'
@@ -3302,21 +3302,21 @@ Optional:
Optional:
-- `items` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--secret--items))
-- `name` (String)
-- `optional` (Boolean)
+- `items` (Attributes List) items if unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--projected--sources--secret--items))
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) optional field specify whether the Secret or its key must be defined
### Nested Schema for `spec.deployment.spec.template.spec.volumes.projected.sources.secret.items`
Required:
-- `key` (String)
-- `path` (String)
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
Optional:
-- `mode` (Number)
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
@@ -3325,12 +3325,12 @@ Optional:
Required:
-- `path` (String)
+- `path` (String) path is the path relative to the mount point of the file to project thetoken into.
Optional:
-- `audience` (String)
-- `expiration_seconds` (Number)
+- `audience` (String) audience is the intended audience of the token. A recipient of a tokenmust identify itself with an identifier specified in the audience of thetoken, and otherwise should reject the token. The audience defaults to theidentifier of the apiserver.
+- `expiration_seconds` (Number) expirationSeconds is the requested duration of validity of the serviceaccount token. As the token approaches expiration, the kubelet volumeplugin will proactively rotate the service account token. The kubelet willstart trying to rotate the token if the token is older than 80 percent ofits time to live or if the token is older than 24 hours.Defaults to 1 hourand must be at least 10 minutes.
@@ -3340,15 +3340,15 @@ Optional:
Required:
-- `registry` (String)
-- `volume` (String)
+- `registry` (String) registry represents a single or multiple Quobyte Registry servicesspecified as a string as host:port pair (multiple entries are separated with commas)which acts as the central registry for volumes
+- `volume` (String) volume is a string that references an already created Quobyte volume by name.
Optional:
-- `group` (String)
-- `read_only` (Boolean)
-- `tenant` (String)
-- `user` (String)
+- `group` (String) group to map volume access toDefault is no group
+- `read_only` (Boolean) readOnly here will force the Quobyte volume to be mounted with read-only permissions.Defaults to false.
+- `tenant` (String) tenant owning the given Quobyte volume in the BackendUsed with dynamically provisioned Quobyte volumes, value is set by the plugin
+- `user` (String) user to map volume access toDefaults to serivceaccount user
@@ -3356,24 +3356,24 @@ Optional:
Required:
-- `image` (String)
-- `monitors` (List of String)
+- `image` (String) image is the rados image name.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `monitors` (List of String) monitors is a collection of Ceph monitors.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
Optional:
-- `fs_type` (String)
-- `keyring` (String)
-- `pool` (String)
-- `read_only` (Boolean)
-- `secret_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--rbd--secret_ref))
-- `user` (String)
+- `fs_type` (String) fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#rbdTODO: how do we prevent errors in the filesystem from compromising the machine
+- `keyring` (String) keyring is the path to key ring for RBDUser.Default is /etc/ceph/keyring.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `pool` (String) pool is the rados pool name.Default is rbd.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `read_only` (Boolean) readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
+- `secret_ref` (Attributes) secretRef is name of the authentication secret for RBDUser. If providedoverrides keyring.Default is nil.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--rbd--secret_ref))
+- `user` (String) user is the rados user name.Default is admin.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
### Nested Schema for `spec.deployment.spec.template.spec.volumes.rbd.secret_ref`
Optional:
-- `name` (String)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
@@ -3382,26 +3382,26 @@ Optional:
Required:
-- `gateway` (String)
-- `secret_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--scale_io--secret_ref))
-- `system` (String)
+- `gateway` (String) gateway is the host address of the ScaleIO API Gateway.
+- `secret_ref` (Attributes) secretRef references to the secret for ScaleIO user and othersensitive information. If this is not provided, Login operation will fail. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--scale_io--secret_ref))
+- `system` (String) system is the name of the storage system as configured in ScaleIO.
Optional:
-- `fs_type` (String)
-- `protection_domain` (String)
-- `read_only` (Boolean)
-- `ssl_enabled` (Boolean)
-- `storage_mode` (String)
-- `storage_pool` (String)
-- `volume_name` (String)
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'.Default is 'xfs'.
+- `protection_domain` (String) protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.
+- `read_only` (Boolean) readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+- `ssl_enabled` (Boolean) sslEnabled Flag enable/disable SSL communication with Gateway, default false
+- `storage_mode` (String) storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.Default is ThinProvisioned.
+- `storage_pool` (String) storagePool is the ScaleIO Storage Pool associated with the protection domain.
+- `volume_name` (String) volumeName is the name of a volume already created in the ScaleIO systemthat is associated with this volume source.
### Nested Schema for `spec.deployment.spec.template.spec.volumes.scale_io.secret_ref`
Optional:
-- `name` (String)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
@@ -3410,22 +3410,22 @@ Optional:
Optional:
-- `default_mode` (Number)
-- `items` (Attributes List) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--secret--items))
-- `optional` (Boolean)
-- `secret_name` (String)
+- `default_mode` (Number) defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
+- `items` (Attributes List) items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--secret--items))
+- `optional` (Boolean) optional field specify whether the Secret or its keys must be defined
+- `secret_name` (String) secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret
### Nested Schema for `spec.deployment.spec.template.spec.volumes.secret.items`
Required:
-- `key` (String)
-- `path` (String)
+- `key` (String) key is the key to project.
+- `path` (String) path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.
Optional:
-- `mode` (Number)
+- `mode` (Number) mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.
@@ -3434,18 +3434,18 @@ Optional:
Optional:
-- `fs_type` (String)
-- `read_only` (Boolean)
-- `secret_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--storageos--secret_ref))
-- `volume_name` (String)
-- `volume_namespace` (String)
+- `fs_type` (String) fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `read_only` (Boolean) readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.
+- `secret_ref` (Attributes) secretRef specifies the secret to use for obtaining the StorageOS APIcredentials. If not specified, default values will be attempted. (see [below for nested schema](#nestedatt--spec--deployment--spec--template--spec--volumes--storageos--secret_ref))
+- `volume_name` (String) volumeName is the human-readable name of the StorageOS volume. Volumenames are only unique within a namespace.
+- `volume_namespace` (String) volumeNamespace specifies the scope of the volume within StorageOS. If nonamespace is specified then the Pod's namespace will be used. This allows theKubernetes name scoping to be mirrored within StorageOS for tighter integration.Set VolumeName to any name to override the default behaviour.Set to 'default' if you are not using namespaces within StorageOS.Namespaces that do not pre-exist within StorageOS will be created.
### Nested Schema for `spec.deployment.spec.template.spec.volumes.storageos.secret_ref`
Optional:
-- `name` (String)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
@@ -3454,13 +3454,13 @@ Optional:
Required:
-- `volume_path` (String)
+- `volume_path` (String) volumePath is the path that identifies vSphere volume vmdk
Optional:
-- `fs_type` (String)
-- `storage_policy_id` (String)
-- `storage_policy_name` (String)
+- `fs_type` (String) fsType is filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.
+- `storage_policy_id` (String) storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.
+- `storage_policy_name` (String) storagePolicyName is the storage Policy Based Management (SPBM) profile name.
@@ -3473,25 +3473,25 @@ Optional:
Required:
-- `url` (String)
+- `url` (String) URL of the external grafana instance you want to manage.
Optional:
-- `admin_password` (Attributes) (see [below for nested schema](#nestedatt--spec--external--admin_password))
-- `admin_user` (Attributes) (see [below for nested schema](#nestedatt--spec--external--admin_user))
-- `api_key` (Attributes) (see [below for nested schema](#nestedatt--spec--external--api_key))
+- `admin_password` (Attributes) AdminPassword key to talk to the external grafana instance. (see [below for nested schema](#nestedatt--spec--external--admin_password))
+- `admin_user` (Attributes) AdminUser key to talk to the external grafana instance. (see [below for nested schema](#nestedatt--spec--external--admin_user))
+- `api_key` (Attributes) The API key to talk to the external grafana instance, you need to define ether apiKey or adminUser/adminPassword. (see [below for nested schema](#nestedatt--spec--external--api_key))
### Nested Schema for `spec.external.admin_password`
Required:
-- `key` (String)
+- `key` (String) The key of the secret to select from. Must be a valid secret key.
Optional:
-- `name` (String)
-- `optional` (Boolean)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) Specify whether the Secret or its key must be defined
@@ -3499,12 +3499,12 @@ Optional:
Required:
-- `key` (String)
+- `key` (String) The key of the secret to select from. Must be a valid secret key.
Optional:
-- `name` (String)
-- `optional` (Boolean)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) Specify whether the Secret or its key must be defined
@@ -3512,12 +3512,12 @@ Optional:
Required:
-- `key` (String)
+- `key` (String) The key of the secret to select from. Must be a valid secret key.
Optional:
-- `name` (String)
-- `optional` (Boolean)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
+- `optional` (Boolean) Specify whether the Secret or its key must be defined
@@ -3526,8 +3526,8 @@ Optional:
Optional:
-- `metadata` (Attributes) (see [below for nested schema](#nestedatt--spec--ingress--metadata))
-- `spec` (Attributes) (see [below for nested schema](#nestedatt--spec--ingress--spec))
+- `metadata` (Attributes) ObjectMeta contains only a [subset of the fields included in k8s.io/apimachinery/pkg/apis/meta/v1.ObjectMeta](https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.27/#objectmeta-v1-meta). (see [below for nested schema](#nestedatt--spec--ingress--metadata))
+- `spec` (Attributes) IngressSpec describes the Ingress the user wishes to exist. (see [below for nested schema](#nestedatt--spec--ingress--spec))
### Nested Schema for `spec.ingress.metadata`
@@ -3543,30 +3543,30 @@ Optional:
Optional:
-- `default_backend` (Attributes) (see [below for nested schema](#nestedatt--spec--ingress--spec--default_backend))
-- `ingress_class_name` (String)
-- `rules` (Attributes List) (see [below for nested schema](#nestedatt--spec--ingress--spec--rules))
-- `tls` (Attributes List) (see [below for nested schema](#nestedatt--spec--ingress--spec--tls))
+- `default_backend` (Attributes) defaultBackend is the backend that should handle requests that don'tmatch any rule. If Rules are not specified, DefaultBackend must be specified.If DefaultBackend is not set, the handling of requests that do not match anyof the rules will be up to the Ingress controller. (see [below for nested schema](#nestedatt--spec--ingress--spec--default_backend))
+- `ingress_class_name` (String) ingressClassName is the name of an IngressClass cluster resource. Ingresscontroller implementations use this field to know whether they should beserving this Ingress resource, by a transitive connection(controller -> IngressClass -> Ingress resource). Although the'kubernetes.io/ingress.class' annotation (simple constant name) was neverformally defined, it was widely supported by Ingress controllers to createa direct binding between Ingress controller and Ingress resources. Newlycreated Ingress resources should prefer using the field. However, eventhough the annotation is officially deprecated, for backwards compatibilityreasons, ingress controllers should still honor that annotation if present.
+- `rules` (Attributes List) rules is a list of host rules used to configure the Ingress. If unspecified,or no rule matches, all traffic is sent to the default backend. (see [below for nested schema](#nestedatt--spec--ingress--spec--rules))
+- `tls` (Attributes List) tls represents the TLS configuration. Currently the Ingress only supports asingle TLS port, 443. If multiple members of this list specify different hosts,they will be multiplexed on the same port according to the hostname specifiedthrough the SNI TLS extension, if the ingress controller fulfilling theingress supports SNI. (see [below for nested schema](#nestedatt--spec--ingress--spec--tls))
### Nested Schema for `spec.ingress.spec.default_backend`
Optional:
-- `resource` (Attributes) (see [below for nested schema](#nestedatt--spec--ingress--spec--default_backend--resource))
-- `service` (Attributes) (see [below for nested schema](#nestedatt--spec--ingress--spec--default_backend--service))
+- `resource` (Attributes) resource is an ObjectRef to another Kubernetes resource in the namespaceof the Ingress object. If resource is specified, a service.Name andservice.Port must not be specified.This is a mutually exclusive setting with 'Service'. (see [below for nested schema](#nestedatt--spec--ingress--spec--default_backend--resource))
+- `service` (Attributes) service references a service as a backend.This is a mutually exclusive setting with 'Resource'. (see [below for nested schema](#nestedatt--spec--ingress--spec--default_backend--service))
### Nested Schema for `spec.ingress.spec.default_backend.resource`
Required:
-- `kind` (String)
-- `name` (String)
+- `kind` (String) Kind is the type of resource being referenced
+- `name` (String) Name is the name of resource being referenced
Optional:
-- `api_group` (String)
+- `api_group` (String) APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.
@@ -3574,19 +3574,19 @@ Optional:
Required:
-- `name` (String)
+- `name` (String) name is the referenced service. The service must exist inthe same namespace as the Ingress object.
Optional:
-- `port` (Attributes) (see [below for nested schema](#nestedatt--spec--ingress--spec--default_backend--service--port))
+- `port` (Attributes) port of the referenced service. A port name or port numberis required for a IngressServiceBackend. (see [below for nested schema](#nestedatt--spec--ingress--spec--default_backend--service--port))
### Nested Schema for `spec.ingress.spec.default_backend.service.port`
Optional:
-- `name` (String)
-- `number` (Number)
+- `name` (String) name is the name of the port on the Service.This is a mutually exclusive setting with 'Number'.
+- `number` (Number) number is the numerical port number (e.g. 80) on the Service.This is a mutually exclusive setting with 'Name'.
@@ -3596,47 +3596,47 @@ Optional:
Optional:
-- `host` (String)
-- `http` (Attributes) (see [below for nested schema](#nestedatt--spec--ingress--spec--rules--http))
+- `host` (String) host is the fully qualified domain name of a network host, as defined by RFC 3986.Note the following deviations from the 'host' part of theURI as defined in RFC 3986:1. IPs are not allowed. Currently an IngressRuleValue can only apply to the IP in the Spec of the parent Ingress.2. The ':' delimiter is not respected because ports are not allowed. Currently the port of an Ingress is implicitly :80 for http and :443 for https.Both these may change in the future.Incoming requests are matched against the host before theIngressRuleValue. If the host is unspecified, the Ingress routes alltraffic based on the specified IngressRuleValue.host can be 'precise' which is a domain name without the terminating dot ofa network host (e.g. 'foo.bar.com') or 'wildcard', which is a domain nameprefixed with a single wildcard label (e.g. '*.foo.com').The wildcard character '*' must appear by itself as the first DNS label andmatches only a single label. You cannot have a wildcard label by itself (e.g. Host == '*').Requests will be matched against the Host field in the following way:1. If host is precise, the request matches this rule if the http host header is equal to Host.2. If host is a wildcard, then the request matches this rule if the http host headeris to equal to the suffix (removing the first label) of the wildcard rule.
+- `http` (Attributes) HTTPIngressRuleValue is a list of http selectors pointing to backends.In the example: http:///? -> backend wherewhere parts of the url correspond to RFC 3986, this resource will be usedto match against everything after the last '/' and before the first '?'or '#'. (see [below for nested schema](#nestedatt--spec--ingress--spec--rules--http))
### Nested Schema for `spec.ingress.spec.rules.http`
Required:
-- `paths` (Attributes List) (see [below for nested schema](#nestedatt--spec--ingress--spec--rules--http--paths))
+- `paths` (Attributes List) paths is a collection of paths that map requests to backends. (see [below for nested schema](#nestedatt--spec--ingress--spec--rules--http--paths))
### Nested Schema for `spec.ingress.spec.rules.http.paths`
Required:
-- `backend` (Attributes) (see [below for nested schema](#nestedatt--spec--ingress--spec--rules--http--paths--backend))
-- `path_type` (String)
+- `backend` (Attributes) backend defines the referenced service endpoint to which the trafficwill be forwarded to. (see [below for nested schema](#nestedatt--spec--ingress--spec--rules--http--paths--backend))
+- `path_type` (String) pathType determines the interpretation of the path matching. PathType canbe one of the following values:* Exact: Matches the URL path exactly.* Prefix: Matches based on a URL path prefix split by '/'. Matching is done on a path element by element basis. A path element refers is the list of labels in the path split by the '/' separator. A request is a match for path p if every p is an element-wise prefix of p of the request path. Note that if the last element of the path is a substring of the last element in request path, it is not a match (e.g. /foo/bar matches /foo/bar/baz, but does not match /foo/barbaz).* ImplementationSpecific: Interpretation of the Path matching is up to the IngressClass. Implementations can treat this as a separate PathType or treat it identically to Prefix or Exact path types.Implementations are required to support all path types.
Optional:
-- `path` (String)
+- `path` (String) path is matched against the path of an incoming request. Currently it cancontain characters disallowed from the conventional 'path' part of a URLas defined by RFC 3986. Paths must begin with a '/' and must be presentwhen using PathType with value 'Exact' or 'Prefix'.
### Nested Schema for `spec.ingress.spec.rules.http.paths.backend`
Optional:
-- `resource` (Attributes) (see [below for nested schema](#nestedatt--spec--ingress--spec--rules--http--paths--backend--resource))
-- `service` (Attributes) (see [below for nested schema](#nestedatt--spec--ingress--spec--rules--http--paths--backend--service))
+- `resource` (Attributes) resource is an ObjectRef to another Kubernetes resource in the namespaceof the Ingress object. If resource is specified, a service.Name andservice.Port must not be specified.This is a mutually exclusive setting with 'Service'. (see [below for nested schema](#nestedatt--spec--ingress--spec--rules--http--paths--backend--resource))
+- `service` (Attributes) service references a service as a backend.This is a mutually exclusive setting with 'Resource'. (see [below for nested schema](#nestedatt--spec--ingress--spec--rules--http--paths--backend--service))
### Nested Schema for `spec.ingress.spec.rules.http.paths.backend.resource`
Required:
-- `kind` (String)
-- `name` (String)
+- `kind` (String) Kind is the type of resource being referenced
+- `name` (String) Name is the name of resource being referenced
Optional:
-- `api_group` (String)
+- `api_group` (String) APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.
@@ -3644,19 +3644,19 @@ Optional:
Required:
-- `name` (String)
+- `name` (String) name is the referenced service. The service must exist inthe same namespace as the Ingress object.
Optional:
-- `port` (Attributes) (see [below for nested schema](#nestedatt--spec--ingress--spec--rules--http--paths--backend--service--port))
+- `port` (Attributes) port of the referenced service. A port name or port numberis required for a IngressServiceBackend. (see [below for nested schema](#nestedatt--spec--ingress--spec--rules--http--paths--backend--service--port))
### Nested Schema for `spec.ingress.spec.rules.http.paths.backend.service.port`
Optional:
-- `name` (String)
-- `number` (Number)
+- `name` (String) name is the name of the port on the Service.This is a mutually exclusive setting with 'Number'.
+- `number` (Number) number is the numerical port number (e.g. 80) on the Service.This is a mutually exclusive setting with 'Name'.
@@ -3669,8 +3669,8 @@ Optional:
Optional:
-- `hosts` (List of String)
-- `secret_name` (String)
+- `hosts` (List of String) hosts is a list of hosts included in the TLS certificate. The values inthis list must match the name/s used in the tlsSecret. Defaults to thewildcard host setting for the loadbalancer controller fulfilling thisIngress, if left unspecified.
+- `secret_name` (String) secretName is the name of the secret used to terminate TLS traffic onport 443. Field is left optional to allow TLS routing based on SNIhostname alone. If the SNI host in a listener conflicts with the 'Host'header field used by an IngressRule, the SNI host is used for terminationand value of the 'Host' header is used for routing.
@@ -3680,27 +3680,27 @@ Optional:
Optional:
-- `library_label_selector` (Attributes) (see [below for nested schema](#nestedatt--spec--jsonnet--library_label_selector))
+- `library_label_selector` (Attributes) A label selector is a label query over a set of resources. The result of matchLabels andmatchExpressions are ANDed. An empty label selector matches all objects. A nulllabel selector matches no objects. (see [below for nested schema](#nestedatt--spec--jsonnet--library_label_selector))
### Nested Schema for `spec.jsonnet.library_label_selector`
Optional:
-- `match_expressions` (Attributes List) (see [below for nested schema](#nestedatt--spec--jsonnet--library_label_selector--match_expressions))
-- `match_labels` (Map of String)
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--jsonnet--library_label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
### Nested Schema for `spec.jsonnet.library_label_selector.match_expressions`
Required:
-- `key` (String)
-- `operator` (String)
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
Optional:
-- `values` (List of String)
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
@@ -3710,7 +3710,7 @@ Optional:
Optional:
-- `metadata` (Attributes) (see [below for nested schema](#nestedatt--spec--persistent_volume_claim--metadata))
+- `metadata` (Attributes) ObjectMeta contains only a [subset of the fields included in k8s.io/apimachinery/pkg/apis/meta/v1.ObjectMeta](https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.27/#objectmeta-v1-meta). (see [below for nested schema](#nestedatt--spec--persistent_volume_claim--metadata))
- `spec` (Attributes) (see [below for nested schema](#nestedatt--spec--persistent_volume_claim--spec))
@@ -3728,25 +3728,25 @@ Optional:
Optional:
- `access_modes` (List of String)
-- `data_source` (Attributes) (see [below for nested schema](#nestedatt--spec--persistent_volume_claim--spec--data_source))
-- `data_source_ref` (Attributes) (see [below for nested schema](#nestedatt--spec--persistent_volume_claim--spec--data_source_ref))
-- `resources` (Attributes) (see [below for nested schema](#nestedatt--spec--persistent_volume_claim--spec--resources))
-- `selector` (Attributes) (see [below for nested schema](#nestedatt--spec--persistent_volume_claim--spec--selector))
+- `data_source` (Attributes) TypedLocalObjectReference contains enough information to let you locate thetyped referenced object inside the same namespace. (see [below for nested schema](#nestedatt--spec--persistent_volume_claim--spec--data_source))
+- `data_source_ref` (Attributes) TypedLocalObjectReference contains enough information to let you locate thetyped referenced object inside the same namespace. (see [below for nested schema](#nestedatt--spec--persistent_volume_claim--spec--data_source_ref))
+- `resources` (Attributes) ResourceRequirements describes the compute resource requirements. (see [below for nested schema](#nestedatt--spec--persistent_volume_claim--spec--resources))
+- `selector` (Attributes) A label selector is a label query over a set of resources. The result of matchLabels andmatchExpressions are ANDed. An empty label selector matches all objects. A nulllabel selector matches no objects. (see [below for nested schema](#nestedatt--spec--persistent_volume_claim--spec--selector))
- `storage_class_name` (String)
-- `volume_mode` (String)
-- `volume_name` (String)
+- `volume_mode` (String) PersistentVolumeMode describes how a volume is intended to be consumed, either Block or Filesystem.
+- `volume_name` (String) VolumeName is the binding reference to the PersistentVolume backing this claim.
### Nested Schema for `spec.persistent_volume_claim.spec.data_source`
Required:
-- `kind` (String)
-- `name` (String)
+- `kind` (String) Kind is the type of resource being referenced
+- `name` (String) Name is the name of resource being referenced
Optional:
-- `api_group` (String)
+- `api_group` (String) APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.
@@ -3754,12 +3754,12 @@ Optional:
Required:
-- `kind` (String)
-- `name` (String)
+- `kind` (String) Kind is the type of resource being referenced
+- `name` (String) Name is the name of resource being referenced
Optional:
-- `api_group` (String)
+- `api_group` (String) APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.
@@ -3767,16 +3767,16 @@ Optional:
Optional:
-- `claims` (Attributes List) (see [below for nested schema](#nestedatt--spec--persistent_volume_claim--spec--resources--claims))
-- `limits` (Map of String)
-- `requests` (Map of String)
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--persistent_volume_claim--spec--resources--claims))
+- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
### Nested Schema for `spec.persistent_volume_claim.spec.resources.claims`
Required:
-- `name` (String)
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.
@@ -3785,20 +3785,20 @@ Required:
Optional:
-- `match_expressions` (Attributes List) (see [below for nested schema](#nestedatt--spec--persistent_volume_claim--spec--selector--match_expressions))
-- `match_labels` (Map of String)
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--persistent_volume_claim--spec--selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.
### Nested Schema for `spec.persistent_volume_claim.spec.selector.match_expressions`
Required:
-- `key` (String)
-- `operator` (String)
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.
Optional:
-- `values` (List of String)
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.
@@ -3817,7 +3817,7 @@ Optional:
Optional:
-- `metadata` (Attributes) (see [below for nested schema](#nestedatt--spec--route--metadata))
+- `metadata` (Attributes) ObjectMeta contains only a [subset of the fields included in k8s.io/apimachinery/pkg/apis/meta/v1.ObjectMeta](https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.27/#objectmeta-v1-meta). (see [below for nested schema](#nestedatt--spec--route--metadata))
- `spec` (Attributes) (see [below for nested schema](#nestedatt--spec--route--spec))
@@ -3837,19 +3837,19 @@ Optional:
- `alternate_backends` (Attributes List) (see [below for nested schema](#nestedatt--spec--route--spec--alternate_backends))
- `host` (String)
- `path` (String)
-- `port` (Attributes) (see [below for nested schema](#nestedatt--spec--route--spec--port))
-- `tls` (Attributes) (see [below for nested schema](#nestedatt--spec--route--spec--tls))
-- `to` (Attributes) (see [below for nested schema](#nestedatt--spec--route--spec--to))
-- `wildcard_policy` (String)
+- `port` (Attributes) RoutePort defines a port mapping from a router to an endpoint in the service endpoints. (see [below for nested schema](#nestedatt--spec--route--spec--port))
+- `tls` (Attributes) TLSConfig defines config used to secure a route and provide termination (see [below for nested schema](#nestedatt--spec--route--spec--tls))
+- `to` (Attributes) RouteTargetReference specifies the target that resolve into endpoints. Only the 'Service'kind is allowed. Use 'weight' field to emphasize one over others. (see [below for nested schema](#nestedatt--spec--route--spec--to))
+- `wildcard_policy` (String) WildcardPolicyType indicates the type of wildcard support needed by routes.
### Nested Schema for `spec.route.spec.alternate_backends`
Required:
-- `kind` (String)
-- `name` (String)
-- `weight` (Number)
+- `kind` (String) The kind of target that the route is referring to. Currently, only 'Service' is allowed
+- `name` (String) name of the service/target that is being referred to. e.g. name of the service
+- `weight` (Number) weight as an integer between 0 and 256, default 100, that specifies the target's relative weightagainst other target reference objects. 0 suppresses requests to this backend.
@@ -3857,7 +3857,7 @@ Required:
Required:
-- `target_port` (String)
+- `target_port` (String) The target port on pods selected by the service this route points to.If this is a string, it will be looked up as a named port in the targetendpoints port list. Required
@@ -3865,15 +3865,15 @@ Required:
Required:
-- `termination` (String)
+- `termination` (String) termination indicates termination type.
Optional:
-- `ca_certificate` (String)
-- `certificate` (String)
-- `destination_ca_certificate` (String)
-- `insecure_edge_termination_policy` (String)
-- `key` (String)
+- `ca_certificate` (String) caCertificate provides the cert authority certificate contents
+- `certificate` (String) certificate provides certificate contents
+- `destination_ca_certificate` (String) destinationCACertificate provides the contents of the ca certificate of the final destination. When using reencrypttermination this file should be provided in order to have routers use it for health checks on the secure connection.If this field is not specified, the router may provide its own destination CA and perform hostname validation usingthe short service name (service.namespace.svc), which allows infrastructure generated certificates to automaticallyverify.
+- `insecure_edge_termination_policy` (String) insecureEdgeTerminationPolicy indicates the desired behavior for insecure connections to a route. Whileeach router may make its own decisions on which ports to expose, this is normally port 80.* Allow - traffic is sent to the server on the insecure port (default)* Disable - no traffic is allowed on the insecure port.* Redirect - clients are redirected to the secure port.
+- `key` (String) key provides key file contents
@@ -3881,9 +3881,9 @@ Optional:
Required:
-- `kind` (String)
-- `name` (String)
-- `weight` (Number)
+- `kind` (String) The kind of target that the route is referring to. Currently, only 'Service' is allowed
+- `name` (String) name of the service/target that is being referred to. e.g. name of the service
+- `weight` (Number) weight as an integer between 0 and 256, default 100, that specifies the target's relative weightagainst other target reference objects. 0 suppresses requests to this backend.
@@ -3893,8 +3893,8 @@ Required:
Optional:
-- `metadata` (Attributes) (see [below for nested schema](#nestedatt--spec--service--metadata))
-- `spec` (Attributes) (see [below for nested schema](#nestedatt--spec--service--spec))
+- `metadata` (Attributes) ObjectMeta contains only a [subset of the fields included in k8s.io/apimachinery/pkg/apis/meta/v1.ObjectMeta](https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.27/#objectmeta-v1-meta). (see [below for nested schema](#nestedatt--spec--service--metadata))
+- `spec` (Attributes) ServiceSpec describes the attributes that a user creates on a service. (see [below for nested schema](#nestedatt--spec--service--spec))
### Nested Schema for `spec.service.metadata`
@@ -3910,41 +3910,41 @@ Optional:
Optional:
-- `allocate_load_balancer_node_ports` (Boolean)
-- `cluster_i_ps` (List of String)
-- `cluster_ip` (String)
-- `external_i_ps` (List of String)
-- `external_name` (String)
-- `external_traffic_policy` (String)
-- `health_check_node_port` (Number)
-- `internal_traffic_policy` (String)
-- `ip_families` (List of String)
-- `ip_family_policy` (String)
-- `load_balancer_class` (String)
-- `load_balancer_ip` (String)
-- `load_balancer_source_ranges` (List of String)
-- `ports` (Attributes List) (see [below for nested schema](#nestedatt--spec--service--spec--ports))
-- `publish_not_ready_addresses` (Boolean)
-- `selector` (Map of String)
-- `session_affinity` (String)
-- `session_affinity_config` (Attributes) (see [below for nested schema](#nestedatt--spec--service--spec--session_affinity_config))
-- `traffic_distribution` (String)
-- `type` (String)
+- `allocate_load_balancer_node_ports` (Boolean) allocateLoadBalancerNodePorts defines if NodePorts will be automaticallyallocated for services with type LoadBalancer. Default is 'true'. Itmay be set to 'false' if the cluster load-balancer does not rely onNodePorts. If the caller requests specific NodePorts (by specifying avalue), those requests will be respected, regardless of this field.This field may only be set for services with type LoadBalancer and willbe cleared if the type is changed to any other type.
+- `cluster_i_ps` (List of String) ClusterIPs is a list of IP addresses assigned to this service, and areusually assigned randomly. If an address is specified manually, isin-range (as per system configuration), and is not in use, it will beallocated to the service; otherwise creation of the service will fail.This field may not be changed through updates unless the type field isalso being changed to ExternalName (which requires this field to beempty) or the type field is being changed from ExternalName (in whichcase this field may optionally be specified, as describe above). Validvalues are 'None', empty string (''), or a valid IP address. Settingthis to 'None' makes a 'headless service' (no virtual IP), which isuseful when direct endpoint connections are preferred and proxying isnot required. Only applies to types ClusterIP, NodePort, andLoadBalancer. If this field is specified when creating a Service of typeExternalName, creation will fail. This field will be wiped when updatinga Service to type ExternalName. If this field is not specified, it willbe initialized from the clusterIP field. If this field is specified,clients must ensure that clusterIPs[0] and clusterIP have the samevalue.This field may hold a maximum of two entries (dual-stack IPs, in either order).These IPs must correspond to the values of the ipFamilies field. BothclusterIPs and ipFamilies are governed by the ipFamilyPolicy field.More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies
+- `cluster_ip` (String) clusterIP is the IP address of the service and is usually assignedrandomly. If an address is specified manually, is in-range (as persystem configuration), and is not in use, it will be allocated to theservice; otherwise creation of the service will fail. This field may notbe changed through updates unless the type field is also being changedto ExternalName (which requires this field to be blank) or the typefield is being changed from ExternalName (in which case this field mayoptionally be specified, as describe above). Valid values are 'None',empty string (''), or a valid IP address. Setting this to 'None' makes a'headless service' (no virtual IP), which is useful when direct endpointconnections are preferred and proxying is not required. Only applies totypes ClusterIP, NodePort, and LoadBalancer. If this field is specifiedwhen creating a Service of type ExternalName, creation will fail. Thisfield will be wiped when updating a Service to type ExternalName.More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies
+- `external_i_ps` (List of String) externalIPs is a list of IP addresses for which nodes in the clusterwill also accept traffic for this service. These IPs are not managed byKubernetes. The user is responsible for ensuring that traffic arrivesat a node with this IP. A common example is external load-balancersthat are not part of the Kubernetes system.
+- `external_name` (String) externalName is the external reference that discovery mechanisms willreturn as an alias for this service (e.g. a DNS CNAME record). Noproxying will be involved. Must be a lowercase RFC-1123 hostname(https://tools.ietf.org/html/rfc1123) and requires 'type' to be 'ExternalName'.
+- `external_traffic_policy` (String) externalTrafficPolicy describes how nodes distribute service traffic theyreceive on one of the Service's 'externally-facing' addresses (NodePorts,ExternalIPs, and LoadBalancer IPs). If set to 'Local', the proxy will configurethe service in a way that assumes that external load balancers will take careof balancing the service traffic between nodes, and so each node will delivertraffic only to the node-local endpoints of the service, without masqueradingthe client source IP. (Traffic mistakenly sent to a node with no endpoints willbe dropped.) The default value, 'Cluster', uses the standard behavior ofrouting to all endpoints evenly (possibly modified by topology and otherfeatures). Note that traffic sent to an External IP or LoadBalancer IP fromwithin the cluster will always get 'Cluster' semantics, but clients sending toa NodePort from within the cluster may need to take traffic policy into accountwhen picking a node.
+- `health_check_node_port` (Number) healthCheckNodePort specifies the healthcheck nodePort for the service.This only applies when type is set to LoadBalancer andexternalTrafficPolicy is set to Local. If a value is specified, isin-range, and is not in use, it will be used. If not specified, a valuewill be automatically allocated. External systems (e.g. load-balancers)can use this port to determine if a given node holds endpoints for thisservice or not. If this field is specified when creating a Servicewhich does not need it, creation will fail. This field will be wipedwhen updating a Service to no longer need it (e.g. changing type).This field cannot be updated once set.
+- `internal_traffic_policy` (String) InternalTrafficPolicy describes how nodes distribute service traffic theyreceive on the ClusterIP. If set to 'Local', the proxy will assume that podsonly want to talk to endpoints of the service on the same node as the pod,dropping the traffic if there are no local endpoints. The default value,'Cluster', uses the standard behavior of routing to all endpoints evenly(possibly modified by topology and other features).
+- `ip_families` (List of String) IPFamilies is a list of IP families (e.g. IPv4, IPv6) assigned to thisservice. This field is usually assigned automatically based on clusterconfiguration and the ipFamilyPolicy field. If this field is specifiedmanually, the requested family is available in the cluster,and ipFamilyPolicy allows it, it will be used; otherwise creation ofthe service will fail. This field is conditionally mutable: it allowsfor adding or removing a secondary IP family, but it does not allowchanging the primary IP family of the Service. Valid values are 'IPv4'and 'IPv6'. This field only applies to Services of types ClusterIP,NodePort, and LoadBalancer, and does apply to 'headless' services.This field will be wiped when updating a Service to type ExternalName.This field may hold a maximum of two entries (dual-stack families, ineither order). These families must correspond to the values of theclusterIPs field, if specified. Both clusterIPs and ipFamilies aregoverned by the ipFamilyPolicy field.
+- `ip_family_policy` (String) IPFamilyPolicy represents the dual-stack-ness requested or required bythis Service. If there is no value provided, then this field will be setto SingleStack. Services can be 'SingleStack' (a single IP family),'PreferDualStack' (two IP families on dual-stack configured clusters ora single IP family on single-stack clusters), or 'RequireDualStack'(two IP families on dual-stack configured clusters, otherwise fail). TheipFamilies and clusterIPs fields depend on the value of this field. Thisfield will be wiped when updating a service to type ExternalName.
+- `load_balancer_class` (String) loadBalancerClass is the class of the load balancer implementation this Service belongs to.If specified, the value of this field must be a label-style identifier, with an optional prefix,e.g. 'internal-vip' or 'example.com/internal-vip'. Unprefixed names are reserved for end-users.This field can only be set when the Service type is 'LoadBalancer'. If not set, the default loadbalancer implementation is used, today this is typically done through the cloud provider integration,but should apply for any default implementation. If set, it is assumed that a load balancerimplementation is watching for Services with a matching class. Any default load balancerimplementation (e.g. cloud providers) should ignore Services that set this field.This field can only be set when creating or updating a Service to type 'LoadBalancer'.Once set, it can not be changed. This field will be wiped when a service is updated to a non 'LoadBalancer' type.
+- `load_balancer_ip` (String) Only applies to Service Type: LoadBalancer.This feature depends on whether the underlying cloud-provider supports specifyingthe loadBalancerIP when a load balancer is created.This field will be ignored if the cloud-provider does not support the feature.Deprecated: This field was under-specified and its meaning varies across implementations.Using it is non-portable and it may not support dual-stack.Users are encouraged to use implementation-specific annotations when available.
+- `load_balancer_source_ranges` (List of String) If specified and supported by the platform, this will restrict traffic through the cloud-providerload-balancer will be restricted to the specified client IPs. This field will be ignored if thecloud-provider does not support the feature.'More info: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/
+- `ports` (Attributes List) The list of ports that are exposed by this service.More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies (see [below for nested schema](#nestedatt--spec--service--spec--ports))
+- `publish_not_ready_addresses` (Boolean) publishNotReadyAddresses indicates that any agent which deals with endpoints for thisService should disregard any indications of ready/not-ready.The primary use case for setting this field is for a StatefulSet's Headless Service topropagate SRV DNS records for its Pods for the purpose of peer discovery.The Kubernetes controllers that generate Endpoints and EndpointSlice resources forServices interpret this to mean that all endpoints are considered 'ready' even if thePods themselves are not. Agents which consume only Kubernetes generated endpointsthrough the Endpoints or EndpointSlice resources can safely assume this behavior.
+- `selector` (Map of String) Route service traffic to pods with label keys and values matching thisselector. If empty or not present, the service is assumed to have anexternal process managing its endpoints, which Kubernetes will notmodify. Only applies to types ClusterIP, NodePort, and LoadBalancer.Ignored if type is ExternalName.More info: https://kubernetes.io/docs/concepts/services-networking/service/
+- `session_affinity` (String) Supports 'ClientIP' and 'None'. Used to maintain session affinity.Enable client IP based session affinity.Must be ClientIP or None.Defaults to None.More info: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies
+- `session_affinity_config` (Attributes) sessionAffinityConfig contains the configurations of session affinity. (see [below for nested schema](#nestedatt--spec--service--spec--session_affinity_config))
+- `traffic_distribution` (String) TrafficDistribution offers a way to express preferences for how traffic isdistributed to Service endpoints. Implementations can use this field as ahint, but are not required to guarantee strict adherence. If the field isnot set, the implementation will apply its default routing strategy. If setto 'PreferClose', implementations should prioritize endpoints that aretopologically close (e.g., same zone).This is an alpha field and requires enabling ServiceTrafficDistribution feature.
+- `type` (String) type determines how the Service is exposed. Defaults to ClusterIP. Validoptions are ExternalName, ClusterIP, NodePort, and LoadBalancer.'ClusterIP' allocates a cluster-internal IP address for load-balancingto endpoints. Endpoints are determined by the selector or if that is notspecified, by manual construction of an Endpoints object orEndpointSlice objects. If clusterIP is 'None', no virtual IP isallocated and the endpoints are published as a set of endpoints ratherthan a virtual IP.'NodePort' builds on ClusterIP and allocates a port on every node whichroutes to the same endpoints as the clusterIP.'LoadBalancer' builds on NodePort and creates an external load-balancer(if supported in the current cloud) which routes to the same endpointsas the clusterIP.'ExternalName' aliases this service to the specified externalName.Several other fields do not apply to ExternalName services.More info: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types
### Nested Schema for `spec.service.spec.ports`
Required:
-- `port` (Number)
+- `port` (Number) The port that will be exposed by this service.
Optional:
-- `app_protocol` (String)
-- `name` (String)
-- `node_port` (Number)
-- `protocol` (String)
-- `target_port` (String)
+- `app_protocol` (String) The application protocol for this port.This is used as a hint for implementations to offer richer behavior for protocols that they understand.This field follows standard Kubernetes label syntax.Valid values are either:* Un-prefixed protocol names - reserved for IANA standard service names (as perRFC-6335 and https://www.iana.org/assignments/service-names).* Kubernetes-defined prefixed names: * 'kubernetes.io/h2c' - HTTP/2 prior knowledge over cleartext as described in https://www.rfc-editor.org/rfc/rfc9113.html#name-starting-http-2-with-prior- * 'kubernetes.io/ws' - WebSocket over cleartext as described in https://www.rfc-editor.org/rfc/rfc6455 * 'kubernetes.io/wss' - WebSocket over TLS as described in https://www.rfc-editor.org/rfc/rfc6455* Other protocols should use implementation-defined prefixed names such asmycompany.com/my-custom-protocol.
+- `name` (String) The name of this port within the service. This must be a DNS_LABEL.All ports within a ServiceSpec must have unique names. When consideringthe endpoints for a Service, this must match the 'name' field in theEndpointPort.Optional if only one ServicePort is defined on this service.
+- `node_port` (Number) The port on each node on which this service is exposed when type isNodePort or LoadBalancer. Usually assigned by the system. If a value isspecified, in-range, and not in use it will be used, otherwise theoperation will fail. If not specified, a port will be allocated if thisService requires one. If this field is specified when creating aService which does not need it, creation will fail. This field will bewiped when updating a Service to no longer need it (e.g. changing typefrom NodePort to ClusterIP).More info: https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport
+- `protocol` (String) The IP protocol for this port. Supports 'TCP', 'UDP', and 'SCTP'.Default is TCP.
+- `target_port` (String) Number or name of the port to access on the pods targeted by the service.Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.If this is a string, it will be looked up as a named port in thetarget Pod's container ports. If this is not specified, the valueof the 'port' field is used (an identity map).This field is ignored for services with clusterIP=None, and should beomitted or set equal to the 'port' field.More info: https://kubernetes.io/docs/concepts/services-networking/service/#defining-a-service
@@ -3952,14 +3952,14 @@ Optional:
Optional:
-- `client_ip` (Attributes) (see [below for nested schema](#nestedatt--spec--service--spec--session_affinity_config--client_ip))
+- `client_ip` (Attributes) clientIP contains the configurations of Client IP based session affinity. (see [below for nested schema](#nestedatt--spec--service--spec--session_affinity_config--client_ip))
### Nested Schema for `spec.service.spec.session_affinity_config.client_ip`
Optional:
-- `timeout_seconds` (Number)
+- `timeout_seconds` (Number) timeoutSeconds specifies the seconds of ClientIP type session sticky time.The value must be >0 && <=86400(for 1 day) if ServiceAffinity == 'ClientIP'.Default value is 10800(for 3 hours).
@@ -3972,7 +3972,7 @@ Optional:
- `automount_service_account_token` (Boolean)
- `image_pull_secrets` (Attributes List) (see [below for nested schema](#nestedatt--spec--service_account--image_pull_secrets))
-- `metadata` (Attributes) (see [below for nested schema](#nestedatt--spec--service_account--metadata))
+- `metadata` (Attributes) ObjectMeta contains only a [subset of the fields included in k8s.io/apimachinery/pkg/apis/meta/v1.ObjectMeta](https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.27/#objectmeta-v1-meta). (see [below for nested schema](#nestedatt--spec--service_account--metadata))
- `secrets` (Attributes List) (see [below for nested schema](#nestedatt--spec--service_account--secrets))
@@ -3980,7 +3980,7 @@ Optional:
Optional:
-- `name` (String)
+- `name` (String) Name of the referent.This field is effectively required, but due to backwards compatibility isallowed to be empty. Instances of this type with an empty value here arealmost certainly wrong.TODO: Add other useful fields. apiVersion, kind, uid?More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Drop 'kubebuilder:default' when controller-gen doesn't need it https://github.com/kubernetes-sigs/kubebuilder/issues/3896.
@@ -3997,10 +3997,10 @@ Optional:
Optional:
-- `api_version` (String)
-- `field_path` (String)
-- `kind` (String)
-- `name` (String)
-- `namespace` (String)
-- `resource_version` (String)
-- `uid` (String)
+- `api_version` (String) API version of the referent.
+- `field_path` (String) If referring to a piece of an object instead of an entire object, this stringshould contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2].For example, if the object reference is to a container within a pod, this would take on a value like:'spec.containers{name}' (where 'name' refers to the name of the container that triggeredthe event) or if no container name is specified 'spec.containers[2]' (container withindex 2 in this pod). This syntax is chosen only to have some well-defined way ofreferencing a part of an object.TODO: this design is not final and this field is subject to change in the future.
+- `kind` (String) Kind of the referent.More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+- `name` (String) Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+- `namespace` (String) Namespace of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/
+- `resource_version` (String) Specific resourceVersion to which this reference is made, if any.More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency
+- `uid` (String) UID of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids
diff --git a/docs/data-sources/hive_openshift_io_hive_config_v1_manifest.md b/docs/data-sources/hive_openshift_io_hive_config_v1_manifest.md
index daac6fa84..6ece92e4d 100644
--- a/docs/data-sources/hive_openshift_io_hive_config_v1_manifest.md
+++ b/docs/data-sources/hive_openshift_io_hive_config_v1_manifest.md
@@ -68,6 +68,7 @@ Optional:
- `feature_gates` (Attributes) FeatureGateSelection allows selecting feature gates for the controller. (see [below for nested schema](#nestedatt--spec--feature_gates))
- `global_pull_secret_ref` (Attributes) GlobalPullSecretRef is used to specify a pull secret that will be used globally by all of the cluster deployments. For each cluster deployment, the contents of GlobalPullSecret will be merged with the specific pull secret for a cluster deployment(if specified), with precedence given to the contents of the pull secret for the cluster deployment. The global pull secret is assumed to be in the TargetNamespace. (see [below for nested schema](#nestedatt--spec--global_pull_secret_ref))
- `log_level` (String) LogLevel is the level of logging to use for the Hive controllers. Acceptable levels, from coarsest to finest, are panic, fatal, error, warn, info, debug, and trace. The default level is info.
+- `machine_pool_poll_interval` (String) MachinePoolPollInterval is a string duration indicating how much time must pass before checking whether remote resources related to MachinePools need to be reapplied. Set to zero to disable polling -- we'll only reconcile when hub objects change. The default interval is 30m.
- `maintenance_mode` (Boolean) MaintenanceMode can be set to true to disable the hive controllers in situations where we need to ensure nothing is running that will add or act upon finalizers on Hive types. This should rarely be needed. Sets replicas to 0 for the hive-controllers deployment to accomplish this.
- `managed_domains` (Attributes List) ManagedDomains is the list of DNS domains that are managed by the Hive cluster When specifying 'manageDNS: true' in a ClusterDeployment, the ClusterDeployment's baseDomain should be a direct child of one of these domains, otherwise the ClusterDeployment creation will result in a validation error. (see [below for nested schema](#nestedatt--spec--managed_domains))
- `metrics_config` (Attributes) MetricsConfig encapsulates metrics specific configurations, like opting in for certain metrics. (see [below for nested schema](#nestedatt--spec--metrics_config))
diff --git a/docs/data-sources/k8gb_absa_oss_gslb_v1beta1_manifest.md b/docs/data-sources/k8gb_absa_oss_gslb_v1beta1_manifest.md
index 0aceba4f5..e52f2eb0f 100644
--- a/docs/data-sources/k8gb_absa_oss_gslb_v1beta1_manifest.md
+++ b/docs/data-sources/k8gb_absa_oss_gslb_v1beta1_manifest.md
@@ -63,18 +63,18 @@ Required:
Optional:
-- `backend` (Attributes) A default backend capable of servicing requests that don't match any rule. At least one of 'backend' or 'rules' must be specified. This field is optional to allow the loadbalancer controller or defaulting logic to specify a global default. (see [below for nested schema](#nestedatt--spec--ingress--backend))
-- `ingress_class_name` (String) IngressClassName is the name of the IngressClass cluster resource. The associated IngressClass defines which controller will implement the resource. This replaces the deprecated 'kubernetes.io/ingress.class' annotation. For backwards compatibility, when that annotation is set, it must be given precedence over this field. The controller may emit a warning if the field and annotation have different values. Implementations of this API should ignore Ingresses without a class specified. An IngressClass resource may be marked as default, which can be used to set a default value for this field. For more information, refer to the IngressClass documentation.
-- `rules` (Attributes List) A list of host rules used to configure the Ingress. If unspecified, or no rule matches, all traffic is sent to the default backend. (see [below for nested schema](#nestedatt--spec--ingress--rules))
-- `tls` (Attributes List) TLS configuration. Currently the Ingress only supports a single TLS port, 443. If multiple members of this list specify different hosts, they will be multiplexed on the same port according to the hostname specified through the SNI TLS extension, if the ingress controller fulfilling the ingress supports SNI. (see [below for nested schema](#nestedatt--spec--ingress--tls))
+- `backend` (Attributes) A default backend capable of servicing requests that don't match anyrule. At least one of 'backend' or 'rules' must be specified. This fieldis optional to allow the loadbalancer controller or defaulting logic tospecify a global default. (see [below for nested schema](#nestedatt--spec--ingress--backend))
+- `ingress_class_name` (String) IngressClassName is the name of the IngressClass cluster resource. Theassociated IngressClass defines which controller will implement theresource. This replaces the deprecated 'kubernetes.io/ingress.class'annotation. For backwards compatibility, when that annotation is set, itmust be given precedence over this field. The controller may emit awarning if the field and annotation have different values.Implementations of this API should ignore Ingresses without a classspecified. An IngressClass resource may be marked as default, which canbe used to set a default value for this field. For more information,refer to the IngressClass documentation.
+- `rules` (Attributes List) A list of host rules used to configure the Ingress. If unspecified, orno rule matches, all traffic is sent to the default backend. (see [below for nested schema](#nestedatt--spec--ingress--rules))
+- `tls` (Attributes List) TLS configuration. Currently the Ingress only supports a single TLSport, 443. If multiple members of this list specify different hosts, theywill be multiplexed on the same port according to the hostname specifiedthrough the SNI TLS extension, if the ingress controller fulfilling theingress supports SNI. (see [below for nested schema](#nestedatt--spec--ingress--tls))
### Nested Schema for `spec.ingress.backend`
Optional:
-- `resource` (Attributes) Resource is an ObjectRef to another Kubernetes resource in the namespace of the Ingress object. If resource is specified, a service.Name and service.Port must not be specified. This is a mutually exclusive setting with 'Service'. (see [below for nested schema](#nestedatt--spec--ingress--backend--resource))
-- `service` (Attributes) Service references a Service as a Backend. This is a mutually exclusive setting with 'Resource'. (see [below for nested schema](#nestedatt--spec--ingress--backend--service))
+- `resource` (Attributes) Resource is an ObjectRef to another Kubernetes resource in the namespaceof the Ingress object. If resource is specified, a service.Name andservice.Port must not be specified.This is a mutually exclusive setting with 'Service'. (see [below for nested schema](#nestedatt--spec--ingress--backend--resource))
+- `service` (Attributes) Service references a Service as a Backend.This is a mutually exclusive setting with 'Resource'. (see [below for nested schema](#nestedatt--spec--ingress--backend--service))
### Nested Schema for `spec.ingress.backend.resource`
@@ -86,7 +86,7 @@ Required:
Optional:
-- `api_group` (String) APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.
+- `api_group` (String) APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.
@@ -94,19 +94,19 @@ Optional:
Required:
-- `name` (String) Name is the referenced service. The service must exist in the same namespace as the Ingress object.
+- `name` (String) Name is the referenced service. The service must exist inthe same namespace as the Ingress object.
Optional:
-- `port` (Attributes) Port of the referenced service. A port name or port number is required for a IngressServiceBackend. (see [below for nested schema](#nestedatt--spec--ingress--backend--service--port))
+- `port` (Attributes) Port of the referenced service. A port name or port numberis required for a IngressServiceBackend. (see [below for nested schema](#nestedatt--spec--ingress--backend--service--port))
### Nested Schema for `spec.ingress.backend.service.port`
Optional:
-- `name` (String) Name is the name of the port on the Service. This is a mutually exclusive setting with 'Number'.
-- `number` (Number) Number is the numerical port number (e.g. 80) on the Service. This is a mutually exclusive setting with 'Name'.
+- `name` (String) Name is the name of the port on the Service.This is a mutually exclusive setting with 'Number'.
+- `number` (Number) Number is the numerical port number (e.g. 80) on the Service.This is a mutually exclusive setting with 'Name'.
@@ -116,11 +116,11 @@ Optional:
Required:
-- `http` (Attributes) HTTPIngressRuleValue is a list of http selectors pointing to backends. In the example: http:///? -> backend where where parts of the url correspond to RFC 3986, this resource will be used to match against everything after the last '/' and before the first '?' or '#'. (see [below for nested schema](#nestedatt--spec--ingress--rules--http))
+- `http` (Attributes) HTTPIngressRuleValue is a list of http selectorspointing to backends. In the example: http:///?-> backend where where parts of the url correspond toRFC 3986, this resource will be used to match againsteverything after the last '/' and before the first '?'or '#'. (see [below for nested schema](#nestedatt--spec--ingress--rules--http))
Optional:
-- `host` (String) Host is the fully qualified domain name of a network host, as defined by RFC 3986. Note the following deviations from the 'host' part of the URI as defined in RFC 3986: 1. IPs are not allowed. Currently an IngressRuleValue can only apply to the IP in the Spec of the parent Ingress. 2. The ':' delimiter is not respected because ports are not allowed. Currently the port of an Ingress is implicitly :80 for http and :443 for https. Both these may change in the future. Incoming requests are matched against the host before the IngressRuleValue. If the host is unspecified, the Ingress routes all traffic based on the specified IngressRuleValue. Host can be 'precise' which is a domain name without the terminating dot of a network host (e.g. 'foo.bar.com') or 'wildcard', which is a domain name prefixed with a single wildcard label (e.g. '*.foo.com'). The wildcard character '*' must appear by itself as the first DNS label and matches only a single label. You cannot have a wildcard label by itself (e.g. Host == '*'). Requests will be matched against the Host field in the following way: 1. If Host is precise, the request matches this rule if the http host header is equal to Host. 2. If Host is a wildcard, then the request matches this rule if the http host header is to equal to the suffix (removing the first label) of the wildcard rule.
+- `host` (String) Host is the fully qualified domain name of a network host, as defined by RFC 3986.Note the following deviations from the 'host' part of theURI as defined in RFC 3986:1. IPs are not allowed. Currently an IngressRuleValue can only apply to the IP in the Spec of the parent Ingress.2. The ':' delimiter is not respected because ports are not allowed. Currently the port of an Ingress is implicitly :80 for http and :443 for https.Both these may change in the future.Incoming requests are matched against the host before theIngressRuleValue. If the host is unspecified, the Ingress routes alltraffic based on the specified IngressRuleValue.Host can be 'precise' which is a domain name without the terminating dot ofa network host (e.g. 'foo.bar.com') or 'wildcard', which is a domain nameprefixed with a single wildcard label (e.g. '*.foo.com').The wildcard character '*' must appear by itself as the first DNS label andmatches only a single label. You cannot have a wildcard label by itself (e.g. Host == '*').Requests will be matched against the Host field in the following way:1. If Host is precise, the request matches this rule if the http host header is equal to Host.2. If Host is a wildcard, then the request matches this rule if the http host headeris to equal to the suffix (removing the first label) of the wildcard rule.
### Nested Schema for `spec.ingress.rules.http`
@@ -134,20 +134,20 @@ Required:
Required:
-- `backend` (Attributes) Backend defines the referenced service endpoint to which the traffic will be forwarded to. (see [below for nested schema](#nestedatt--spec--ingress--rules--http--paths--backend))
-- `path_type` (String) PathType determines the interpretation of the Path matching. PathType can be one of the following values: * Exact: Matches the URL path exactly. * Prefix: Matches based on a URL path prefix split by '/'. Matching is done on a path element by element basis. A path element refers is the list of labels in the path split by the '/' separator. A request is a match for path p if every p is an element-wise prefix of p of the request path. Note that if the last element of the path is a substring of the last element in request path, it is not a match (e.g. /foo/bar matches /foo/bar/baz, but does not match /foo/barbaz). * ImplementationSpecific: Interpretation of the Path matching is up to the IngressClass. Implementations can treat this as a separate PathType or treat it identically to Prefix or Exact path types. Implementations are required to support all path types.
+- `backend` (Attributes) Backend defines the referenced service endpoint to which the trafficwill be forwarded to. (see [below for nested schema](#nestedatt--spec--ingress--rules--http--paths--backend))
+- `path_type` (String) PathType determines the interpretation of the Path matching. PathType canbe one of the following values:* Exact: Matches the URL path exactly.* Prefix: Matches based on a URL path prefix split by '/'. Matching is done on a path element by element basis. A path element refers is the list of labels in the path split by the '/' separator. A request is a match for path p if every p is an element-wise prefix of p of the request path. Note that if the last element of the path is a substring of the last element in request path, it is not a match (e.g. /foo/bar matches /foo/bar/baz, but does not match /foo/barbaz).* ImplementationSpecific: Interpretation of the Path matching is up to the IngressClass. Implementations can treat this as a separate PathType or treat it identically to Prefix or Exact path types.Implementations are required to support all path types.
Optional:
-- `path` (String) Path is matched against the path of an incoming request. Currently it can contain characters disallowed from the conventional 'path' part of a URL as defined by RFC 3986. Paths must begin with a '/' and must be present when using PathType with value 'Exact' or 'Prefix'.
+- `path` (String) Path is matched against the path of an incoming request. Currently it cancontain characters disallowed from the conventional 'path' part of a URLas defined by RFC 3986. Paths must begin with a '/' and must be presentwhen using PathType with value 'Exact' or 'Prefix'.
### Nested Schema for `spec.ingress.rules.http.paths.backend`
Optional:
-- `resource` (Attributes) Resource is an ObjectRef to another Kubernetes resource in the namespace of the Ingress object. If resource is specified, a service.Name and service.Port must not be specified. This is a mutually exclusive setting with 'Service'. (see [below for nested schema](#nestedatt--spec--ingress--rules--http--paths--backend--resource))
-- `service` (Attributes) Service references a Service as a Backend. This is a mutually exclusive setting with 'Resource'. (see [below for nested schema](#nestedatt--spec--ingress--rules--http--paths--backend--service))
+- `resource` (Attributes) Resource is an ObjectRef to another Kubernetes resource in the namespaceof the Ingress object. If resource is specified, a service.Name andservice.Port must not be specified.This is a mutually exclusive setting with 'Service'. (see [below for nested schema](#nestedatt--spec--ingress--rules--http--paths--backend--resource))
+- `service` (Attributes) Service references a Service as a Backend.This is a mutually exclusive setting with 'Resource'. (see [below for nested schema](#nestedatt--spec--ingress--rules--http--paths--backend--service))
### Nested Schema for `spec.ingress.rules.http.paths.backend.resource`
@@ -159,7 +159,7 @@ Required:
Optional:
-- `api_group` (String) APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.
+- `api_group` (String) APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.
@@ -167,19 +167,19 @@ Optional:
Required:
-- `name` (String) Name is the referenced service. The service must exist in the same namespace as the Ingress object.
+- `name` (String) Name is the referenced service. The service must exist inthe same namespace as the Ingress object.
Optional:
-- `port` (Attributes) Port of the referenced service. A port name or port number is required for a IngressServiceBackend. (see [below for nested schema](#nestedatt--spec--ingress--rules--http--paths--backend--service--port))
+- `port` (Attributes) Port of the referenced service. A port name or port numberis required for a IngressServiceBackend. (see [below for nested schema](#nestedatt--spec--ingress--rules--http--paths--backend--service--port))
### Nested Schema for `spec.ingress.rules.http.paths.backend.service.port`
Optional:
-- `name` (String) Name is the name of the port on the Service. This is a mutually exclusive setting with 'Number'.
-- `number` (Number) Number is the numerical port number (e.g. 80) on the Service. This is a mutually exclusive setting with 'Name'.
+- `name` (String) Name is the name of the port on the Service.This is a mutually exclusive setting with 'Number'.
+- `number` (Number) Number is the numerical port number (e.g. 80) on the Service.This is a mutually exclusive setting with 'Name'.
@@ -192,8 +192,8 @@ Optional:
Optional:
-- `hosts` (List of String) Hosts are a list of hosts included in the TLS certificate. The values in this list must match the name/s used in the tlsSecret. Defaults to the wildcard host setting for the loadbalancer controller fulfilling this Ingress, if left unspecified.
-- `secret_name` (String) SecretName is the name of the secret used to terminate TLS traffic on port 443. Field is left optional to allow TLS routing based on SNI hostname alone. If the SNI host in a listener conflicts with the 'Host' header field used by an IngressRule, the SNI host is used for termination and value of the Host header is used for routing.
+- `hosts` (List of String) Hosts are a list of hosts included in the TLS certificate. The values inthis list must match the name/s used in the tlsSecret. Defaults to thewildcard host setting for the loadbalancer controller fulfilling thisIngress, if left unspecified.
+- `secret_name` (String) SecretName is the name of the secret used to terminate TLS traffic onport 443. Field is left optional to allow TLS routing based on SNIhostname alone. If the SNI host in a listener conflicts with the 'Host'header field used by an IngressRule, the SNI host is used for terminationand value of the Host header is used for routing.
diff --git a/docs/data-sources/k8s_nginx_org_policy_v1_manifest.md b/docs/data-sources/k8s_nginx_org_policy_v1_manifest.md
index d5aaba62e..995623a79 100644
--- a/docs/data-sources/k8s_nginx_org_policy_v1_manifest.md
+++ b/docs/data-sources/k8s_nginx_org_policy_v1_manifest.md
@@ -56,6 +56,7 @@ Optional:
Optional:
- `access_control` (Attributes) AccessControl defines an access policy based on the source IP of a request. (see [below for nested schema](#nestedatt--spec--access_control))
+- `api_key` (Attributes) APIKey defines an API Key policy. (see [below for nested schema](#nestedatt--spec--api_key))
- `basic_auth` (Attributes) BasicAuth holds HTTP Basic authentication configurationpolicy status: preview (see [below for nested schema](#nestedatt--spec--basic_auth))
- `egress_mtls` (Attributes) EgressMTLS defines an Egress MTLS policy. (see [below for nested schema](#nestedatt--spec--egress_mtls))
- `ingress_class_name` (String)
@@ -74,6 +75,24 @@ Optional:
- `deny` (List of String)
+
+### Nested Schema for `spec.api_key`
+
+Optional:
+
+- `client_secret` (String)
+- `supplied_in` (Attributes) SuppliedIn defines the locations API Key should be supplied in. (see [below for nested schema](#nestedatt--spec--api_key--supplied_in))
+
+
+### Nested Schema for `spec.api_key.supplied_in`
+
+Optional:
+
+- `header` (List of String)
+- `query` (List of String)
+
+
+
### Nested Schema for `spec.basic_auth`
diff --git a/docs/data-sources/kueue_x_k8s_io_admission_check_v1beta1_manifest.md b/docs/data-sources/kueue_x_k8s_io_admission_check_v1beta1_manifest.md
index df37f192a..e02575106 100644
--- a/docs/data-sources/kueue_x_k8s_io_admission_check_v1beta1_manifest.md
+++ b/docs/data-sources/kueue_x_k8s_io_admission_check_v1beta1_manifest.md
@@ -54,12 +54,12 @@ Optional:
Required:
-- `controller_name` (String) controllerName is name of the controller which will actually performthe checks. This is the name with which controller identifies with,not necessarily a K8S Pod or Deployment name. Cannot be empty.
+- `controller_name` (String) controllerName identifies the controller that processes the AdmissionCheck,not necessarily a Kubernetes Pod or Deployment name. Cannot be empty.
Optional:
-- `parameters` (Attributes) Parameters identifies the resource providing additional check parameters. (see [below for nested schema](#nestedatt--spec--parameters))
-- `retry_delay_minutes` (Number) RetryDelayMinutes specifies how long to keep the workload suspendedafter a failed check (after it transitioned to False).After that the check state goes to 'Unknown'.The default is 15 min.
+- `parameters` (Attributes) Parameters identifies a configuration with additional parameters for thecheck. (see [below for nested schema](#nestedatt--spec--parameters))
+- `retry_delay_minutes` (Number) RetryDelayMinutes **deprecated** specifies how long to keep the workload suspended aftera failed check (after it transitioned to False). When the delay period has passed, the checkstate goes to 'Unknown'. The default is 15 min.The default is 15 min.
### Nested Schema for `spec.parameters`
diff --git a/docs/data-sources/kyverno_io_cluster_policy_v1_manifest.md b/docs/data-sources/kyverno_io_cluster_policy_v1_manifest.md
index a79181d7c..f65743b9c 100644
--- a/docs/data-sources/kyverno_io_cluster_policy_v1_manifest.md
+++ b/docs/data-sources/kyverno_io_cluster_policy_v1_manifest.md
@@ -54,17 +54,17 @@ Optional:
- `admission` (Boolean) Admission controls if rules are applied during admission.Optional. Default value is 'true'.
- `apply_rules` (String) ApplyRules controls how rules in a policy are applied. Rule are processed inthe order of declaration. When set to 'One' processing stops after a rule hasbeen applied i.e. the rule matches and results in a pass, fail, or error. Whenset to 'All' all rules in the policy are processed. The default is 'All'.
- `background` (Boolean) Background controls if rules are applied to existing resources during a background scan.Optional. Default value is 'true'. The value must be set to 'false' if the policy ruleuses variables that are only available in the admission review request (e.g. user name).
-- `failure_policy` (String) FailurePolicy defines how unexpected policy errors and webhook response timeout errors are handled.Rules within the same policy share the same failure behavior.This field should not be accessed directly, instead 'GetFailurePolicy()' should be used.Allowed values are Ignore or Fail. Defaults to Fail.
+- `failure_policy` (String) Deprecated, use failurePolicy under the webhookConfiguration instead.
- `generate_existing` (Boolean) Deprecated, use generateExisting under the generate rule instead
- `generate_existing_on_policy_update` (Boolean) Deprecated, use generateExisting instead
-- `mutate_existing_on_policy_update` (Boolean) MutateExistingOnPolicyUpdate controls if a mutateExisting policy is applied on policy events.Default value is 'false'.
+- `mutate_existing_on_policy_update` (Boolean) Deprecated, use mutateExistingOnPolicyUpdate under the mutate rule instead
- `rules` (Attributes List) Rules is a list of Rule instances. A Policy contains multiple rules andeach rule can validate, mutate, or generate resources. (see [below for nested schema](#nestedatt--spec--rules))
- `schema_validation` (Boolean) Deprecated.
- `use_server_side_apply` (Boolean) UseServerSideApply controls whether to use server-side apply for generate rulesIf is set to 'true' create & update for generate rules will use apply instead of create/update.Defaults to 'false' if not specified.
- `validation_failure_action` (String) ValidationFailureAction defines if a validation policy rule violation should blockthe admission review request (enforce), or allow (audit) the admission review requestand report an error in a policy report. Optional.Allowed values are audit or enforce. The default value is 'Audit'.
- `validation_failure_action_overrides` (Attributes List) ValidationFailureActionOverrides is a Cluster Policy attribute that specifies ValidationFailureActionnamespace-wise. It overrides ValidationFailureAction for the specified namespaces. (see [below for nested schema](#nestedatt--spec--validation_failure_action_overrides))
-- `webhook_configuration` (Attributes) WebhookConfiguration specifies the custom configuration for Kubernetes admission webhookconfiguration.Requires Kubernetes 1.27 or later. (see [below for nested schema](#nestedatt--spec--webhook_configuration))
-- `webhook_timeout_seconds` (Number) WebhookTimeoutSeconds specifies the maximum time in seconds allowed to apply this policy.After the configured time expires, the admission request may fail, or may simply ignore the policy results,based on the failure policy. The default timeout is 10s, the value must be between 1 and 30 seconds.
+- `webhook_configuration` (Attributes) WebhookConfiguration specifies the custom configuration for Kubernetes admission webhookconfiguration. (see [below for nested schema](#nestedatt--spec--webhook_configuration))
+- `webhook_timeout_seconds` (Number) Deprecated, use webhookTimeoutSeconds under webhookConfiguration instead.
### Nested Schema for `spec.rules`
@@ -769,6 +769,7 @@ Optional:
Optional:
- `foreach` (Attributes List) ForEach applies mutation rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic. (see [below for nested schema](#nestedatt--spec--rules--mutate--foreach))
+- `mutate_existing_on_policy_update` (Boolean) MutateExistingOnPolicyUpdate controls if the mutateExisting rule will be applied on policy events.
- `patch_strategic_merge` (Map of String) PatchStrategicMerge is a strategic merge patch used to modify resources.See https://kubernetes.io/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/and https://kubectl.docs.kubernetes.io/references/kustomize/patchesstrategicmerge/.
- `patches_json6902` (String) PatchesJSON6902 is a list of RFC 6902 JSON Patch declarations used to modify resources.See https://tools.ietf.org/html/rfc6902 and https://kubectl.docs.kubernetes.io/references/kustomize/patchesjson6902/.
- `targets` (Attributes List) Targets defines the target resources to be mutated. (see [below for nested schema](#nestedatt--spec--rules--mutate--targets))
@@ -1499,6 +1500,7 @@ Optional:
- `annotations` (Map of String) Deprecated. Use annotations per Attestor instead.
- `attestations` (Attributes List) Attestations are optional checks for signed in-toto Statements used to verify the image.See https://github.com/in-toto/attestation. Kyverno fetches signed attestations from theOCI registry and decodes them into a list of Statement declarations. (see [below for nested schema](#nestedatt--spec--rules--verify_images--attestations))
- `attestors` (Attributes List) Attestors specified the required attestors (i.e. authorities) (see [below for nested schema](#nestedatt--spec--rules--verify_images--attestors))
+- `cosign_oci11` (Boolean) CosignOCI11 enables the experimental OCI 1.1 behaviour in cosign image verification.Defaults to false.
- `image` (String) Deprecated. Use ImageReferences instead.
- `image_references` (List of String) ImageReferences is a list of matching image reference patterns. At least one pattern in thelist must match the image for the rule to apply. Each image reference consists of a registryaddress (defaults to docker.io), repository, image, and tag (defaults to latest).Wildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.
- `image_registry_credentials` (Attributes) ImageRegistryCredentials provides credentials that will be used for authentication with registry. (see [below for nested schema](#nestedatt--spec--rules--verify_images--image_registry_credentials))
@@ -1861,7 +1863,9 @@ Optional:
Optional:
-- `match_conditions` (Attributes List) MatchCondition configures admission webhook matchConditions. (see [below for nested schema](#nestedatt--spec--webhook_configuration--match_conditions))
+- `failure_policy` (String) FailurePolicy defines how unexpected policy errors and webhook response timeout errors are handled.Rules within the same policy share the same failure behavior.This field should not be accessed directly, instead 'GetFailurePolicy()' should be used.Allowed values are Ignore or Fail. Defaults to Fail.
+- `match_conditions` (Attributes List) MatchCondition configures admission webhook matchConditions.Requires Kubernetes 1.27 or later. (see [below for nested schema](#nestedatt--spec--webhook_configuration--match_conditions))
+- `timeout_seconds` (Number) TimeoutSeconds specifies the maximum time in seconds allowed to apply this policy.After the configured time expires, the admission request may fail, or may simply ignore the policy results,based on the failure policy. The default timeout is 10s, the value must be between 1 and 30 seconds.
### Nested Schema for `spec.webhook_configuration.match_conditions`
diff --git a/docs/data-sources/kyverno_io_cluster_policy_v2beta1_manifest.md b/docs/data-sources/kyverno_io_cluster_policy_v2beta1_manifest.md
index 357b5dab6..39175f6d7 100644
--- a/docs/data-sources/kyverno_io_cluster_policy_v2beta1_manifest.md
+++ b/docs/data-sources/kyverno_io_cluster_policy_v2beta1_manifest.md
@@ -54,17 +54,17 @@ Optional:
- `admission` (Boolean) Admission controls if rules are applied during admission.Optional. Default value is 'true'.
- `apply_rules` (String) ApplyRules controls how rules in a policy are applied. Rule are processed inthe order of declaration. When set to 'One' processing stops after a rule hasbeen applied i.e. the rule matches and results in a pass, fail, or error. Whenset to 'All' all rules in the policy are processed. The default is 'All'.
- `background` (Boolean) Background controls if rules are applied to existing resources during a background scan.Optional. Default value is 'true'. The value must be set to 'false' if the policy ruleuses variables that are only available in the admission review request (e.g. user name).
-- `failure_policy` (String) FailurePolicy defines how unexpected policy errors and webhook response timeout errors are handled.Rules within the same policy share the same failure behavior.Allowed values are Ignore or Fail. Defaults to Fail.
+- `failure_policy` (String) Deprecated, use failurePolicy under the webhookConfiguration instead.
- `generate_existing` (Boolean) Deprecated, use generateExisting under the generate rule instead
- `generate_existing_on_policy_update` (Boolean) Deprecated, use generateExisting instead
-- `mutate_existing_on_policy_update` (Boolean) MutateExistingOnPolicyUpdate controls if a mutateExisting policy is applied on policy events.Default value is 'false'.
+- `mutate_existing_on_policy_update` (Boolean) Deprecated, use mutateExistingOnPolicyUpdate under the mutate rule instead
- `rules` (Attributes List) Rules is a list of Rule instances. A Policy contains multiple rules andeach rule can validate, mutate, or generate resources. (see [below for nested schema](#nestedatt--spec--rules))
- `schema_validation` (Boolean) Deprecated.
- `use_server_side_apply` (Boolean) UseServerSideApply controls whether to use server-side apply for generate rulesIf is set to 'true' create & update for generate rules will use apply instead of create/update.Defaults to 'false' if not specified.
- `validation_failure_action` (String) ValidationFailureAction defines if a validation policy rule violation should blockthe admission review request (enforce), or allow (audit) the admission review requestand report an error in a policy report. Optional.Allowed values are audit or enforce. The default value is 'Audit'.
- `validation_failure_action_overrides` (Attributes List) ValidationFailureActionOverrides is a Cluster Policy attribute that specifies ValidationFailureActionnamespace-wise. It overrides ValidationFailureAction for the specified namespaces. (see [below for nested schema](#nestedatt--spec--validation_failure_action_overrides))
-- `webhook_configuration` (Attributes) WebhookConfiguration specifies the custom configuration for Kubernetes admission webhookconfiguration.Requires Kubernetes 1.27 or later. (see [below for nested schema](#nestedatt--spec--webhook_configuration))
-- `webhook_timeout_seconds` (Number) WebhookTimeoutSeconds specifies the maximum time in seconds allowed to apply this policy.After the configured time expires, the admission request may fail, or may simply ignore the policy results,based on the failure policy. The default timeout is 10s, the value must be between 1 and 30 seconds.
+- `webhook_configuration` (Attributes) WebhookConfiguration specifies the custom configuration for Kubernetes admission webhookconfiguration. (see [below for nested schema](#nestedatt--spec--webhook_configuration))
+- `webhook_timeout_seconds` (Number) Deprecated, use webhookTimeoutSeconds under webhookConfiguration instead.
### Nested Schema for `spec.rules`
@@ -615,6 +615,7 @@ Optional:
Optional:
- `foreach` (Attributes List) ForEach applies mutation rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic. (see [below for nested schema](#nestedatt--spec--rules--mutate--foreach))
+- `mutate_existing_on_policy_update` (Boolean) MutateExistingOnPolicyUpdate controls if the mutateExisting rule will be applied on policy events.
- `patch_strategic_merge` (Map of String) PatchStrategicMerge is a strategic merge patch used to modify resources.See https://kubernetes.io/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/and https://kubectl.docs.kubernetes.io/references/kustomize/patchesstrategicmerge/.
- `patches_json6902` (String) PatchesJSON6902 is a list of RFC 6902 JSON Patch declarations used to modify resources.See https://tools.ietf.org/html/rfc6902 and https://kubectl.docs.kubernetes.io/references/kustomize/patchesjson6902/.
- `targets` (Attributes List) Targets defines the target resources to be mutated. (see [below for nested schema](#nestedatt--spec--rules--mutate--targets))
@@ -1762,7 +1763,9 @@ Optional:
Optional:
-- `match_conditions` (Attributes List) MatchCondition configures admission webhook matchConditions. (see [below for nested schema](#nestedatt--spec--webhook_configuration--match_conditions))
+- `failure_policy` (String) FailurePolicy defines how unexpected policy errors and webhook response timeout errors are handled.Rules within the same policy share the same failure behavior.This field should not be accessed directly, instead 'GetFailurePolicy()' should be used.Allowed values are Ignore or Fail. Defaults to Fail.
+- `match_conditions` (Attributes List) MatchCondition configures admission webhook matchConditions.Requires Kubernetes 1.27 or later. (see [below for nested schema](#nestedatt--spec--webhook_configuration--match_conditions))
+- `timeout_seconds` (Number) TimeoutSeconds specifies the maximum time in seconds allowed to apply this policy.After the configured time expires, the admission request may fail, or may simply ignore the policy results,based on the failure policy. The default timeout is 10s, the value must be between 1 and 30 seconds.
### Nested Schema for `spec.webhook_configuration.match_conditions`
diff --git a/docs/data-sources/kyverno_io_policy_v1_manifest.md b/docs/data-sources/kyverno_io_policy_v1_manifest.md
index c4656c934..b72762dd9 100644
--- a/docs/data-sources/kyverno_io_policy_v1_manifest.md
+++ b/docs/data-sources/kyverno_io_policy_v1_manifest.md
@@ -56,17 +56,17 @@ Optional:
- `admission` (Boolean) Admission controls if rules are applied during admission.Optional. Default value is 'true'.
- `apply_rules` (String) ApplyRules controls how rules in a policy are applied. Rule are processed inthe order of declaration. When set to 'One' processing stops after a rule hasbeen applied i.e. the rule matches and results in a pass, fail, or error. Whenset to 'All' all rules in the policy are processed. The default is 'All'.
- `background` (Boolean) Background controls if rules are applied to existing resources during a background scan.Optional. Default value is 'true'. The value must be set to 'false' if the policy ruleuses variables that are only available in the admission review request (e.g. user name).
-- `failure_policy` (String) FailurePolicy defines how unexpected policy errors and webhook response timeout errors are handled.Rules within the same policy share the same failure behavior.This field should not be accessed directly, instead 'GetFailurePolicy()' should be used.Allowed values are Ignore or Fail. Defaults to Fail.
+- `failure_policy` (String) Deprecated, use failurePolicy under the webhookConfiguration instead.
- `generate_existing` (Boolean) Deprecated, use generateExisting under the generate rule instead
- `generate_existing_on_policy_update` (Boolean) Deprecated, use generateExisting instead
-- `mutate_existing_on_policy_update` (Boolean) MutateExistingOnPolicyUpdate controls if a mutateExisting policy is applied on policy events.Default value is 'false'.
+- `mutate_existing_on_policy_update` (Boolean) Deprecated, use mutateExistingOnPolicyUpdate under the mutate rule instead
- `rules` (Attributes List) Rules is a list of Rule instances. A Policy contains multiple rules andeach rule can validate, mutate, or generate resources. (see [below for nested schema](#nestedatt--spec--rules))
- `schema_validation` (Boolean) Deprecated.
- `use_server_side_apply` (Boolean) UseServerSideApply controls whether to use server-side apply for generate rulesIf is set to 'true' create & update for generate rules will use apply instead of create/update.Defaults to 'false' if not specified.
- `validation_failure_action` (String) ValidationFailureAction defines if a validation policy rule violation should blockthe admission review request (enforce), or allow (audit) the admission review requestand report an error in a policy report. Optional.Allowed values are audit or enforce. The default value is 'Audit'.
- `validation_failure_action_overrides` (Attributes List) ValidationFailureActionOverrides is a Cluster Policy attribute that specifies ValidationFailureActionnamespace-wise. It overrides ValidationFailureAction for the specified namespaces. (see [below for nested schema](#nestedatt--spec--validation_failure_action_overrides))
-- `webhook_configuration` (Attributes) WebhookConfiguration specifies the custom configuration for Kubernetes admission webhookconfiguration.Requires Kubernetes 1.27 or later. (see [below for nested schema](#nestedatt--spec--webhook_configuration))
-- `webhook_timeout_seconds` (Number) WebhookTimeoutSeconds specifies the maximum time in seconds allowed to apply this policy.After the configured time expires, the admission request may fail, or may simply ignore the policy results,based on the failure policy. The default timeout is 10s, the value must be between 1 and 30 seconds.
+- `webhook_configuration` (Attributes) WebhookConfiguration specifies the custom configuration for Kubernetes admission webhookconfiguration. (see [below for nested schema](#nestedatt--spec--webhook_configuration))
+- `webhook_timeout_seconds` (Number) Deprecated, use webhookTimeoutSeconds under webhookConfiguration instead.
### Nested Schema for `spec.rules`
@@ -771,6 +771,7 @@ Optional:
Optional:
- `foreach` (Attributes List) ForEach applies mutation rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic. (see [below for nested schema](#nestedatt--spec--rules--mutate--foreach))
+- `mutate_existing_on_policy_update` (Boolean) MutateExistingOnPolicyUpdate controls if the mutateExisting rule will be applied on policy events.
- `patch_strategic_merge` (Map of String) PatchStrategicMerge is a strategic merge patch used to modify resources.See https://kubernetes.io/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/and https://kubectl.docs.kubernetes.io/references/kustomize/patchesstrategicmerge/.
- `patches_json6902` (String) PatchesJSON6902 is a list of RFC 6902 JSON Patch declarations used to modify resources.See https://tools.ietf.org/html/rfc6902 and https://kubectl.docs.kubernetes.io/references/kustomize/patchesjson6902/.
- `targets` (Attributes List) Targets defines the target resources to be mutated. (see [below for nested schema](#nestedatt--spec--rules--mutate--targets))
@@ -1501,6 +1502,7 @@ Optional:
- `annotations` (Map of String) Deprecated. Use annotations per Attestor instead.
- `attestations` (Attributes List) Attestations are optional checks for signed in-toto Statements used to verify the image.See https://github.com/in-toto/attestation. Kyverno fetches signed attestations from theOCI registry and decodes them into a list of Statement declarations. (see [below for nested schema](#nestedatt--spec--rules--verify_images--attestations))
- `attestors` (Attributes List) Attestors specified the required attestors (i.e. authorities) (see [below for nested schema](#nestedatt--spec--rules--verify_images--attestors))
+- `cosign_oci11` (Boolean) CosignOCI11 enables the experimental OCI 1.1 behaviour in cosign image verification.Defaults to false.
- `image` (String) Deprecated. Use ImageReferences instead.
- `image_references` (List of String) ImageReferences is a list of matching image reference patterns. At least one pattern in thelist must match the image for the rule to apply. Each image reference consists of a registryaddress (defaults to docker.io), repository, image, and tag (defaults to latest).Wildcards ('*' and '?') are allowed. See: https://kubernetes.io/docs/concepts/containers/images.
- `image_registry_credentials` (Attributes) ImageRegistryCredentials provides credentials that will be used for authentication with registry. (see [below for nested schema](#nestedatt--spec--rules--verify_images--image_registry_credentials))
@@ -1863,7 +1865,9 @@ Optional:
Optional:
-- `match_conditions` (Attributes List) MatchCondition configures admission webhook matchConditions. (see [below for nested schema](#nestedatt--spec--webhook_configuration--match_conditions))
+- `failure_policy` (String) FailurePolicy defines how unexpected policy errors and webhook response timeout errors are handled.Rules within the same policy share the same failure behavior.This field should not be accessed directly, instead 'GetFailurePolicy()' should be used.Allowed values are Ignore or Fail. Defaults to Fail.
+- `match_conditions` (Attributes List) MatchCondition configures admission webhook matchConditions.Requires Kubernetes 1.27 or later. (see [below for nested schema](#nestedatt--spec--webhook_configuration--match_conditions))
+- `timeout_seconds` (Number) TimeoutSeconds specifies the maximum time in seconds allowed to apply this policy.After the configured time expires, the admission request may fail, or may simply ignore the policy results,based on the failure policy. The default timeout is 10s, the value must be between 1 and 30 seconds.
### Nested Schema for `spec.webhook_configuration.match_conditions`
diff --git a/docs/data-sources/kyverno_io_policy_v2beta1_manifest.md b/docs/data-sources/kyverno_io_policy_v2beta1_manifest.md
index fbc59d535..2a8ff4237 100644
--- a/docs/data-sources/kyverno_io_policy_v2beta1_manifest.md
+++ b/docs/data-sources/kyverno_io_policy_v2beta1_manifest.md
@@ -56,17 +56,17 @@ Optional:
- `admission` (Boolean) Admission controls if rules are applied during admission.Optional. Default value is 'true'.
- `apply_rules` (String) ApplyRules controls how rules in a policy are applied. Rule are processed inthe order of declaration. When set to 'One' processing stops after a rule hasbeen applied i.e. the rule matches and results in a pass, fail, or error. Whenset to 'All' all rules in the policy are processed. The default is 'All'.
- `background` (Boolean) Background controls if rules are applied to existing resources during a background scan.Optional. Default value is 'true'. The value must be set to 'false' if the policy ruleuses variables that are only available in the admission review request (e.g. user name).
-- `failure_policy` (String) FailurePolicy defines how unexpected policy errors and webhook response timeout errors are handled.Rules within the same policy share the same failure behavior.Allowed values are Ignore or Fail. Defaults to Fail.
+- `failure_policy` (String) Deprecated, use failurePolicy under the webhookConfiguration instead.
- `generate_existing` (Boolean) Deprecated, use generateExisting under the generate rule instead
- `generate_existing_on_policy_update` (Boolean) Deprecated, use generateExisting instead
-- `mutate_existing_on_policy_update` (Boolean) MutateExistingOnPolicyUpdate controls if a mutateExisting policy is applied on policy events.Default value is 'false'.
+- `mutate_existing_on_policy_update` (Boolean) Deprecated, use mutateExistingOnPolicyUpdate under the mutate rule instead
- `rules` (Attributes List) Rules is a list of Rule instances. A Policy contains multiple rules andeach rule can validate, mutate, or generate resources. (see [below for nested schema](#nestedatt--spec--rules))
- `schema_validation` (Boolean) Deprecated.
- `use_server_side_apply` (Boolean) UseServerSideApply controls whether to use server-side apply for generate rulesIf is set to 'true' create & update for generate rules will use apply instead of create/update.Defaults to 'false' if not specified.
- `validation_failure_action` (String) ValidationFailureAction defines if a validation policy rule violation should blockthe admission review request (enforce), or allow (audit) the admission review requestand report an error in a policy report. Optional.Allowed values are audit or enforce. The default value is 'Audit'.
- `validation_failure_action_overrides` (Attributes List) ValidationFailureActionOverrides is a Cluster Policy attribute that specifies ValidationFailureActionnamespace-wise. It overrides ValidationFailureAction for the specified namespaces. (see [below for nested schema](#nestedatt--spec--validation_failure_action_overrides))
-- `webhook_configuration` (Attributes) WebhookConfiguration specifies the custom configuration for Kubernetes admission webhookconfiguration.Requires Kubernetes 1.27 or later. (see [below for nested schema](#nestedatt--spec--webhook_configuration))
-- `webhook_timeout_seconds` (Number) WebhookTimeoutSeconds specifies the maximum time in seconds allowed to apply this policy.After the configured time expires, the admission request may fail, or may simply ignore the policy results,based on the failure policy. The default timeout is 10s, the value must be between 1 and 30 seconds.
+- `webhook_configuration` (Attributes) WebhookConfiguration specifies the custom configuration for Kubernetes admission webhookconfiguration. (see [below for nested schema](#nestedatt--spec--webhook_configuration))
+- `webhook_timeout_seconds` (Number) Deprecated, use webhookTimeoutSeconds under webhookConfiguration instead.
### Nested Schema for `spec.rules`
@@ -617,6 +617,7 @@ Optional:
Optional:
- `foreach` (Attributes List) ForEach applies mutation rules to a list of sub-elements by creating a context for each entry in the list and looping over it to apply the specified logic. (see [below for nested schema](#nestedatt--spec--rules--mutate--foreach))
+- `mutate_existing_on_policy_update` (Boolean) MutateExistingOnPolicyUpdate controls if the mutateExisting rule will be applied on policy events.
- `patch_strategic_merge` (Map of String) PatchStrategicMerge is a strategic merge patch used to modify resources.See https://kubernetes.io/docs/tasks/manage-kubernetes-objects/update-api-object-kubectl-patch/and https://kubectl.docs.kubernetes.io/references/kustomize/patchesstrategicmerge/.
- `patches_json6902` (String) PatchesJSON6902 is a list of RFC 6902 JSON Patch declarations used to modify resources.See https://tools.ietf.org/html/rfc6902 and https://kubectl.docs.kubernetes.io/references/kustomize/patchesjson6902/.
- `targets` (Attributes List) Targets defines the target resources to be mutated. (see [below for nested schema](#nestedatt--spec--rules--mutate--targets))
@@ -1764,7 +1765,9 @@ Optional:
Optional:
-- `match_conditions` (Attributes List) MatchCondition configures admission webhook matchConditions. (see [below for nested schema](#nestedatt--spec--webhook_configuration--match_conditions))
+- `failure_policy` (String) FailurePolicy defines how unexpected policy errors and webhook response timeout errors are handled.Rules within the same policy share the same failure behavior.This field should not be accessed directly, instead 'GetFailurePolicy()' should be used.Allowed values are Ignore or Fail. Defaults to Fail.
+- `match_conditions` (Attributes List) MatchCondition configures admission webhook matchConditions.Requires Kubernetes 1.27 or later. (see [below for nested schema](#nestedatt--spec--webhook_configuration--match_conditions))
+- `timeout_seconds` (Number) TimeoutSeconds specifies the maximum time in seconds allowed to apply this policy.After the configured time expires, the admission request may fail, or may simply ignore the policy results,based on the failure policy. The default timeout is 10s, the value must be between 1 and 30 seconds.
### Nested Schema for `spec.webhook_configuration.match_conditions`
diff --git a/docs/data-sources/logging_banzaicloud_io_cluster_flow_v1alpha1_manifest.md b/docs/data-sources/logging_banzaicloud_io_cluster_flow_v1alpha1_manifest.md
index c2deb894d..4adfe7e42 100644
--- a/docs/data-sources/logging_banzaicloud_io_cluster_flow_v1alpha1_manifest.md
+++ b/docs/data-sources/logging_banzaicloud_io_cluster_flow_v1alpha1_manifest.md
@@ -1002,6 +1002,7 @@ Optional:
- `container_names` (List of String)
- `hosts` (List of String)
- `labels` (Map of String)
+- `namespace_labels` (Map of String)
- `namespaces` (List of String)
@@ -1013,4 +1014,5 @@ Optional:
- `container_names` (List of String)
- `hosts` (List of String)
- `labels` (Map of String)
+- `namespace_labels` (Map of String)
- `namespaces` (List of String)
diff --git a/docs/data-sources/logging_banzaicloud_io_cluster_flow_v1beta1_manifest.md b/docs/data-sources/logging_banzaicloud_io_cluster_flow_v1beta1_manifest.md
index cb2288822..08ce78f6e 100644
--- a/docs/data-sources/logging_banzaicloud_io_cluster_flow_v1beta1_manifest.md
+++ b/docs/data-sources/logging_banzaicloud_io_cluster_flow_v1beta1_manifest.md
@@ -1002,6 +1002,7 @@ Optional:
- `container_names` (List of String)
- `hosts` (List of String)
- `labels` (Map of String)
+- `namespace_labels` (Map of String)
- `namespaces` (List of String)
@@ -1013,4 +1014,5 @@ Optional:
- `container_names` (List of String)
- `hosts` (List of String)
- `labels` (Map of String)
+- `namespace_labels` (Map of String)
- `namespaces` (List of String)
diff --git a/docs/data-sources/logging_banzaicloud_io_flow_v1alpha1_manifest.md b/docs/data-sources/logging_banzaicloud_io_flow_v1alpha1_manifest.md
index 57a6636b0..c72c0dc30 100644
--- a/docs/data-sources/logging_banzaicloud_io_flow_v1alpha1_manifest.md
+++ b/docs/data-sources/logging_banzaicloud_io_flow_v1alpha1_manifest.md
@@ -1003,6 +1003,7 @@ Optional:
- `container_names` (List of String)
- `hosts` (List of String)
- `labels` (Map of String)
+- `namespace_labels` (Map of String)
diff --git a/docs/data-sources/logging_banzaicloud_io_flow_v1beta1_manifest.md b/docs/data-sources/logging_banzaicloud_io_flow_v1beta1_manifest.md
index 884b65a5b..dda0833dc 100644
--- a/docs/data-sources/logging_banzaicloud_io_flow_v1beta1_manifest.md
+++ b/docs/data-sources/logging_banzaicloud_io_flow_v1beta1_manifest.md
@@ -1003,6 +1003,7 @@ Optional:
- `container_names` (List of String)
- `hosts` (List of String)
- `labels` (Map of String)
+- `namespace_labels` (Map of String)
diff --git a/docs/data-sources/monitoring_coreos_com_alertmanager_config_v1alpha1_manifest.md b/docs/data-sources/monitoring_coreos_com_alertmanager_config_v1alpha1_manifest.md
index 9b9b8ee96..24189ecff 100644
--- a/docs/data-sources/monitoring_coreos_com_alertmanager_config_v1alpha1_manifest.md
+++ b/docs/data-sources/monitoring_coreos_com_alertmanager_config_v1alpha1_manifest.md
@@ -1486,6 +1486,7 @@ Optional:
- `title` (String) Notification title.
- `token` (Attributes) The secret's key that contains the registered application's API token, see https://pushover.net/apps.The secret needs to be in the same namespace as the AlertmanagerConfigobject and accessible by the Prometheus Operator.Either 'token' or 'tokenFile' is required. (see [below for nested schema](#nestedatt--spec--receivers--pushover_configs--token))
- `token_file` (String) The token file that contains the registered application's API token, see https://pushover.net/apps.Either 'token' or 'tokenFile' is required.It requires Alertmanager >= v0.26.0.
+- `ttl` (String) The time to live definition for the alert notification
- `url` (String) A supplementary URL shown alongside the message.
- `url_title` (String) A title for supplementary URL, otherwise just the URL is shown
- `user_key` (Attributes) The secret's key that contains the recipient user's user key.The secret needs to be in the same namespace as the AlertmanagerConfigobject and accessible by the Prometheus Operator.Either 'userKey' or 'userKeyFile' is required. (see [below for nested schema](#nestedatt--spec--receivers--pushover_configs--user_key))
diff --git a/docs/data-sources/monitoring_coreos_com_alertmanager_config_v1beta1_manifest.md b/docs/data-sources/monitoring_coreos_com_alertmanager_config_v1beta1_manifest.md
index 550c367c9..dda523c91 100644
--- a/docs/data-sources/monitoring_coreos_com_alertmanager_config_v1beta1_manifest.md
+++ b/docs/data-sources/monitoring_coreos_com_alertmanager_config_v1beta1_manifest.md
@@ -1405,6 +1405,7 @@ Optional:
- `title` (String) Notification title.
- `token` (Attributes) The secret's key that contains the registered application's API token, see https://pushover.net/apps.The secret needs to be in the same namespace as the AlertmanagerConfigobject and accessible by the Prometheus Operator.Either 'token' or 'tokenFile' is required. (see [below for nested schema](#nestedatt--spec--receivers--pushover_configs--token))
- `token_file` (String) The token file that contains the registered application's API token, see https://pushover.net/apps.Either 'token' or 'tokenFile' is required.It requires Alertmanager >= v0.26.0.
+- `ttl` (String) The time to live definition for the alert notification
- `url` (String) A supplementary URL shown alongside the message.
- `url_title` (String) A title for supplementary URL, otherwise just the URL is shown
- `user_key` (Attributes) The secret's key that contains the recipient user's user key.The secret needs to be in the same namespace as the AlertmanagerConfigobject and accessible by the Prometheus Operator.Either 'userKey' or 'userKeyFile' is required. (see [below for nested schema](#nestedatt--spec--receivers--pushover_configs--user_key))
diff --git a/docs/data-sources/monitoring_coreos_com_prometheus_agent_v1alpha1_manifest.md b/docs/data-sources/monitoring_coreos_com_prometheus_agent_v1alpha1_manifest.md
index 1168dfccf..00721d044 100644
--- a/docs/data-sources/monitoring_coreos_com_prometheus_agent_v1alpha1_manifest.md
+++ b/docs/data-sources/monitoring_coreos_com_prometheus_agent_v1alpha1_manifest.md
@@ -59,19 +59,19 @@ Optional:
- `apiserver_config` (Attributes) APIServerConfig allows specifying a host and auth methods to access theKuberntees API server.If null, Prometheus is assumed to run inside of the cluster: it willdiscover the API servers automatically and use the Pod's CA certificateand bearer token file at /var/run/secrets/kubernetes.io/serviceaccount/. (see [below for nested schema](#nestedatt--spec--apiserver_config))
- `arbitrary_fs_access_through_s_ms` (Attributes) When true, ServiceMonitor, PodMonitor and Probe object are forbidden toreference arbitrary files on the file system of the 'prometheus'container.When a ServiceMonitor's endpoint specifies a 'bearerTokenFile' value(e.g. '/var/run/secrets/kubernetes.io/serviceaccount/token'), amalicious target can get access to the Prometheus service account'stoken in the Prometheus' scrape request. Setting'spec.arbitraryFSAccessThroughSM' to 'true' would prevent the attack.Users should instead provide the credentials using the'spec.bearerTokenSecret' field. (see [below for nested schema](#nestedatt--spec--arbitrary_fs_access_through_s_ms))
- `automount_service_account_token` (Boolean) AutomountServiceAccountToken indicates whether a service account token should be automatically mounted in the pod.If the field isn't set, the operator mounts the service account token by default.**Warning:** be aware that by default, Prometheus requires the service account token for Kubernetes service discovery.It is possible to use strategic merge patch to project the service account token into the 'prometheus' container.
-- `body_size_limit` (String) BodySizeLimit defines per-scrape on response body size.Only valid in Prometheus versions 2.45.0 and newer.
+- `body_size_limit` (String) BodySizeLimit defines per-scrape on response body size.Only valid in Prometheus versions 2.45.0 and newer.Note that the global limit only applies to scrape objects that don't specify an explicit limit value.If you want to enforce a maximum limit for all scrape objects, refer to enforcedBodySizeLimit.
- `config_maps` (List of String) ConfigMaps is a list of ConfigMaps in the same namespace as the Prometheusobject, which shall be mounted into the Prometheus Pods.Each ConfigMap is added to the StatefulSet definition as a volume named 'configmap-'.The ConfigMaps are mounted into /etc/prometheus/configmaps/ in the 'prometheus' container.
- `containers` (Attributes List) Containers allows injecting additional containers or modifying operatorgenerated containers. This can be used to allow adding an authenticationproxy to the Pods or to change the behavior of an operator generatedcontainer. Containers described here modify an operator generatedcontainer if they share the same name and modifications are done via astrategic merge patch.The names of containers managed by the operator are:* 'prometheus'* 'config-reloader'* 'thanos-sidecar'Overriding containers is entirely outside the scope of what themaintainers will support and by doing so, you accept that this behaviourmay break at any time without notice. (see [below for nested schema](#nestedatt--spec--containers))
- `enable_features` (List of String) Enable access to Prometheus feature flags. By default, no features are enabled.Enabling features which are disabled by default is entirely outside thescope of what the maintainers will support and by doing so, you acceptthat this behaviour may break at any time without notice.For more information see https://prometheus.io/docs/prometheus/latest/feature_flags/
- `enable_remote_write_receiver` (Boolean) Enable Prometheus to be used as a receiver for the Prometheus remotewrite protocol.WARNING: This is not considered an efficient way of ingesting samples.Use it with caution for specific low-volume use cases.It is not suitable for replacing the ingestion via scraping and turningPrometheus into a push-based metrics collection system.For more information see https://prometheus.io/docs/prometheus/latest/querying/api/#remote-write-receiverIt requires Prometheus >= v2.33.0.
-- `enforced_body_size_limit` (String) When defined, enforcedBodySizeLimit specifies a global limit on the sizeof uncompressed response body that will be accepted by Prometheus.Targets responding with a body larger than this many bytes will causethe scrape to fail.It requires Prometheus >= v2.28.0.
-- `enforced_keep_dropped_targets` (Number) When defined, enforcedKeepDroppedTargets specifies a global limit on the number of targetsdropped by relabeling that will be kept in memory. The value overridesany 'spec.keepDroppedTargets' set byServiceMonitor, PodMonitor, Probe objects unless 'spec.keepDroppedTargets' isgreater than zero and less than 'spec.enforcedKeepDroppedTargets'.It requires Prometheus >= v2.47.0.
-- `enforced_label_limit` (Number) When defined, enforcedLabelLimit specifies a global limit on the numberof labels per sample. The value overrides any 'spec.labelLimit' set byServiceMonitor, PodMonitor, Probe objects unless 'spec.labelLimit' isgreater than zero and less than 'spec.enforcedLabelLimit'.It requires Prometheus >= v2.27.0.
-- `enforced_label_name_length_limit` (Number) When defined, enforcedLabelNameLengthLimit specifies a global limit on the lengthof labels name per sample. The value overrides any 'spec.labelNameLengthLimit' set byServiceMonitor, PodMonitor, Probe objects unless 'spec.labelNameLengthLimit' isgreater than zero and less than 'spec.enforcedLabelNameLengthLimit'.It requires Prometheus >= v2.27.0.
-- `enforced_label_value_length_limit` (Number) When not null, enforcedLabelValueLengthLimit defines a global limit on the lengthof labels value per sample. The value overrides any 'spec.labelValueLengthLimit' set byServiceMonitor, PodMonitor, Probe objects unless 'spec.labelValueLengthLimit' isgreater than zero and less than 'spec.enforcedLabelValueLengthLimit'.It requires Prometheus >= v2.27.0.
+- `enforced_body_size_limit` (String) When defined, enforcedBodySizeLimit specifies a global limit on the sizeof uncompressed response body that will be accepted by Prometheus.Targets responding with a body larger than this many bytes will causethe scrape to fail.It requires Prometheus >= v2.28.0.When both 'enforcedBodySizeLimit' and 'bodySizeLimit' are defined and greater than zero, the following rules apply:* Scrape objects without a defined bodySizeLimit value will inherit the global bodySizeLimit value (Prometheus >= 2.45.0) or the enforcedBodySizeLimit value (Prometheus < v2.45.0). If Prometheus version is >= 2.45.0 and the 'enforcedBodySizeLimit' is greater than the 'bodySizeLimit', the 'bodySizeLimit' will be set to 'enforcedBodySizeLimit'.* Scrape objects with a bodySizeLimit value less than or equal to enforcedBodySizeLimit keep their specific value.* Scrape objects with a bodySizeLimit value greater than enforcedBodySizeLimit are set to enforcedBodySizeLimit.
+- `enforced_keep_dropped_targets` (Number) When defined, enforcedKeepDroppedTargets specifies a global limit on the number of targetsdropped by relabeling that will be kept in memory. The value overridesany 'spec.keepDroppedTargets' set byServiceMonitor, PodMonitor, Probe objects unless 'spec.keepDroppedTargets' isgreater than zero and less than 'spec.enforcedKeepDroppedTargets'.It requires Prometheus >= v2.47.0.When both 'enforcedKeepDroppedTargets' and 'keepDroppedTargets' are defined and greater than zero, the following rules apply:* Scrape objects without a defined keepDroppedTargets value will inherit the global keepDroppedTargets value (Prometheus >= 2.45.0) or the enforcedKeepDroppedTargets value (Prometheus < v2.45.0). If Prometheus version is >= 2.45.0 and the 'enforcedKeepDroppedTargets' is greater than the 'keepDroppedTargets', the 'keepDroppedTargets' will be set to 'enforcedKeepDroppedTargets'.* Scrape objects with a keepDroppedTargets value less than or equal to enforcedKeepDroppedTargets keep their specific value.* Scrape objects with a keepDroppedTargets value greater than enforcedKeepDroppedTargets are set to enforcedKeepDroppedTargets.
+- `enforced_label_limit` (Number) When defined, enforcedLabelLimit specifies a global limit on the numberof labels per sample. The value overrides any 'spec.labelLimit' set byServiceMonitor, PodMonitor, Probe objects unless 'spec.labelLimit' isgreater than zero and less than 'spec.enforcedLabelLimit'.It requires Prometheus >= v2.27.0.When both 'enforcedLabelLimit' and 'labelLimit' are defined and greater than zero, the following rules apply:* Scrape objects without a defined labelLimit value will inherit the global labelLimit value (Prometheus >= 2.45.0) or the enforcedLabelLimit value (Prometheus < v2.45.0). If Prometheus version is >= 2.45.0 and the 'enforcedLabelLimit' is greater than the 'labelLimit', the 'labelLimit' will be set to 'enforcedLabelLimit'.* Scrape objects with a labelLimit value less than or equal to enforcedLabelLimit keep their specific value.* Scrape objects with a labelLimit value greater than enforcedLabelLimit are set to enforcedLabelLimit.
+- `enforced_label_name_length_limit` (Number) When defined, enforcedLabelNameLengthLimit specifies a global limit on the lengthof labels name per sample. The value overrides any 'spec.labelNameLengthLimit' set byServiceMonitor, PodMonitor, Probe objects unless 'spec.labelNameLengthLimit' isgreater than zero and less than 'spec.enforcedLabelNameLengthLimit'.It requires Prometheus >= v2.27.0.When both 'enforcedLabelNameLengthLimit' and 'labelNameLengthLimit' are defined and greater than zero, the following rules apply:* Scrape objects without a defined labelNameLengthLimit value will inherit the global labelNameLengthLimit value (Prometheus >= 2.45.0) or the enforcedLabelNameLengthLimit value (Prometheus < v2.45.0). If Prometheus version is >= 2.45.0 and the 'enforcedLabelNameLengthLimit' is greater than the 'labelNameLengthLimit', the 'labelNameLengthLimit' will be set to 'enforcedLabelNameLengthLimit'.* Scrape objects with a labelNameLengthLimit value less than or equal to enforcedLabelNameLengthLimit keep their specific value.* Scrape objects with a labelNameLengthLimit value greater than enforcedLabelNameLengthLimit are set to enforcedLabelNameLengthLimit.
+- `enforced_label_value_length_limit` (Number) When not null, enforcedLabelValueLengthLimit defines a global limit on the lengthof labels value per sample. The value overrides any 'spec.labelValueLengthLimit' set byServiceMonitor, PodMonitor, Probe objects unless 'spec.labelValueLengthLimit' isgreater than zero and less than 'spec.enforcedLabelValueLengthLimit'.It requires Prometheus >= v2.27.0.When both 'enforcedLabelValueLengthLimit' and 'labelValueLengthLimit' are defined and greater than zero, the following rules apply:* Scrape objects without a defined labelValueLengthLimit value will inherit the global labelValueLengthLimit value (Prometheus >= 2.45.0) or the enforcedLabelValueLengthLimit value (Prometheus < v2.45.0). If Prometheus version is >= 2.45.0 and the 'enforcedLabelValueLengthLimit' is greater than the 'labelValueLengthLimit', the 'labelValueLengthLimit' will be set to 'enforcedLabelValueLengthLimit'.* Scrape objects with a labelValueLengthLimit value less than or equal to enforcedLabelValueLengthLimit keep their specific value.* Scrape objects with a labelValueLengthLimit value greater than enforcedLabelValueLengthLimit are set to enforcedLabelValueLengthLimit.
- `enforced_namespace_label` (String) When not empty, a label will be added to:1. All metrics scraped from 'ServiceMonitor', 'PodMonitor', 'Probe' and 'ScrapeConfig' objects.2. All metrics generated from recording rules defined in 'PrometheusRule' objects.3. All alerts generated from alerting rules defined in 'PrometheusRule' objects.4. All vector selectors of PromQL expressions defined in 'PrometheusRule' objects.The label will not added for objects referenced in 'spec.excludedFromEnforcement'.The label's name is this field's value.The label's value is the namespace of the 'ServiceMonitor','PodMonitor', 'Probe', 'PrometheusRule' or 'ScrapeConfig' object.
-- `enforced_sample_limit` (Number) When defined, enforcedSampleLimit specifies a global limit on the numberof scraped samples that will be accepted. This overrides any'spec.sampleLimit' set by ServiceMonitor, PodMonitor, Probe objectsunless 'spec.sampleLimit' is greater than zero and less than'spec.enforcedSampleLimit'.It is meant to be used by admins to keep the overall number ofsamples/series under a desired limit.
-- `enforced_target_limit` (Number) When defined, enforcedTargetLimit specifies a global limit on the numberof scraped targets. The value overrides any 'spec.targetLimit' set byServiceMonitor, PodMonitor, Probe objects unless 'spec.targetLimit' isgreater than zero and less than 'spec.enforcedTargetLimit'.It is meant to be used by admins to to keep the overall number oftargets under a desired limit.
+- `enforced_sample_limit` (Number) When defined, enforcedSampleLimit specifies a global limit on the numberof scraped samples that will be accepted. This overrides any'spec.sampleLimit' set by ServiceMonitor, PodMonitor, Probe objectsunless 'spec.sampleLimit' is greater than zero and less than'spec.enforcedSampleLimit'.It is meant to be used by admins to keep the overall number ofsamples/series under a desired limit.When both 'enforcedSampleLimit' and 'sampleLimit' are defined and greater than zero, the following rules apply:* Scrape objects without a defined sampleLimit value will inherit the global sampleLimit value (Prometheus >= 2.45.0) or the enforcedSampleLimit value (Prometheus < v2.45.0). If Prometheus version is >= 2.45.0 and the 'enforcedSampleLimit' is greater than the 'sampleLimit', the 'sampleLimit' will be set to 'enforcedSampleLimit'.* Scrape objects with a sampleLimit value less than or equal to enforcedSampleLimit keep their specific value.* Scrape objects with a sampleLimit value greater than enforcedSampleLimit are set to enforcedSampleLimit.
+- `enforced_target_limit` (Number) When defined, enforcedTargetLimit specifies a global limit on the numberof scraped targets. The value overrides any 'spec.targetLimit' set byServiceMonitor, PodMonitor, Probe objects unless 'spec.targetLimit' isgreater than zero and less than 'spec.enforcedTargetLimit'.It is meant to be used by admins to to keep the overall number oftargets under a desired limit.When both 'enforcedTargetLimit' and 'targetLimit' are defined and greater than zero, the following rules apply:* Scrape objects without a defined targetLimit value will inherit the global targetLimit value (Prometheus >= 2.45.0) or the enforcedTargetLimit value (Prometheus < v2.45.0). If Prometheus version is >= 2.45.0 and the 'enforcedTargetLimit' is greater than the 'targetLimit', the 'targetLimit' will be set to 'enforcedTargetLimit'.* Scrape objects with a targetLimit value less than or equal to enforcedTargetLimit keep their specific value.* Scrape objects with a targetLimit value greater than enforcedTargetLimit are set to enforcedTargetLimit.
- `excluded_from_enforcement` (Attributes List) List of references to PodMonitor, ServiceMonitor, Probe and PrometheusRule objectsto be excluded from enforcing a namespace label of origin.It is only applicable if 'spec.enforcedNamespaceLabel' set to true. (see [below for nested schema](#nestedatt--spec--excluded_from_enforcement))
- `external_labels` (Map of String) The labels to add to any time series or alerts when communicating withexternal systems (federation, remote storage, Alertmanager).Labels defined by 'spec.replicaExternalLabelName' and'spec.prometheusExternalLabelName' take precedence over this list.
- `external_url` (String) The external URL under which the Prometheus service is externallyavailable. This is necessary to generate correct URLs (for instance ifPrometheus is accessible behind an Ingress resource).
@@ -82,10 +82,10 @@ Optional:
- `image_pull_policy` (String) Image pull policy for the 'prometheus', 'init-config-reloader' and 'config-reloader' containers.See https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy for more details.
- `image_pull_secrets` (Attributes List) An optional list of references to Secrets in the same namespaceto use for pulling images from registries.See http://kubernetes.io/docs/user-guide/images#specifying-imagepullsecrets-on-a-pod (see [below for nested schema](#nestedatt--spec--image_pull_secrets))
- `init_containers` (Attributes List) InitContainers allows injecting initContainers to the Pod definition. Thosecan be used to e.g. fetch secrets for injection into the Prometheusconfiguration from external sources. Any errors during the execution ofan initContainer will lead to a restart of the Pod. More info:https://kubernetes.io/docs/concepts/workloads/pods/init-containers/InitContainers described here modify an operator generated initcontainers if they share the same name and modifications are done via astrategic merge patch.The names of init container name managed by the operator are:* 'init-config-reloader'.Overriding init containers is entirely outside the scope of what themaintainers will support and by doing so, you accept that this behaviourmay break at any time without notice. (see [below for nested schema](#nestedatt--spec--init_containers))
-- `keep_dropped_targets` (Number) Per-scrape limit on the number of targets dropped by relabelingthat will be kept in memory. 0 means no limit.It requires Prometheus >= v2.47.0.
-- `label_limit` (Number) Per-scrape limit on number of labels that will be accepted for a sample.Only valid in Prometheus versions 2.45.0 and newer.
-- `label_name_length_limit` (Number) Per-scrape limit on length of labels name that will be accepted for a sample.Only valid in Prometheus versions 2.45.0 and newer.
-- `label_value_length_limit` (Number) Per-scrape limit on length of labels value that will be accepted for a sample.Only valid in Prometheus versions 2.45.0 and newer.
+- `keep_dropped_targets` (Number) Per-scrape limit on the number of targets dropped by relabelingthat will be kept in memory. 0 means no limit.It requires Prometheus >= v2.47.0.Note that the global limit only applies to scrape objects that don't specify an explicit limit value.If you want to enforce a maximum limit for all scrape objects, refer to enforcedKeepDroppedTargets.
+- `label_limit` (Number) Per-scrape limit on number of labels that will be accepted for a sample.Only valid in Prometheus versions 2.45.0 and newer.Note that the global limit only applies to scrape objects that don't specify an explicit limit value.If you want to enforce a maximum limit for all scrape objects, refer to enforcedLabelLimit.
+- `label_name_length_limit` (Number) Per-scrape limit on length of labels name that will be accepted for a sample.Only valid in Prometheus versions 2.45.0 and newer.Note that the global limit only applies to scrape objects that don't specify an explicit limit value.If you want to enforce a maximum limit for all scrape objects, refer to enforcedLabelNameLengthLimit.
+- `label_value_length_limit` (Number) Per-scrape limit on length of labels value that will be accepted for a sample.Only valid in Prometheus versions 2.45.0 and newer.Note that the global limit only applies to scrape objects that don't specify an explicit limit value.If you want to enforce a maximum limit for all scrape objects, refer to enforcedLabelValueLengthLimit.
- `listen_local` (Boolean) When true, the Prometheus server listens on the loopback addressinstead of the Pod IP's address.
- `log_format` (String) Log format for Log level for Prometheus and the config-reloader sidecar.
- `log_level` (String) Log level for Prometheus and the config-reloader sidecar.
@@ -112,7 +112,7 @@ Optional:
- `replicas` (Number) Number of replicas of each shard to deploy for a Prometheus deployment.'spec.replicas' multiplied by 'spec.shards' is the total number of Podscreated.Default: 1
- `resources` (Attributes) Defines the resources requests and limits of the 'prometheus' container. (see [below for nested schema](#nestedatt--spec--resources))
- `route_prefix` (String) The route prefix Prometheus registers HTTP handlers for.This is useful when using 'spec.externalURL', and a proxy is rewritingHTTP routes of a request, and the actual ExternalURL is still true, butthe server serves requests under a different route prefix. For examplefor use with 'kubectl proxy'.
-- `sample_limit` (Number) SampleLimit defines per-scrape limit on number of scraped samples that will be accepted.Only valid in Prometheus versions 2.45.0 and newer.
+- `sample_limit` (Number) SampleLimit defines per-scrape limit on number of scraped samples that will be accepted.Only valid in Prometheus versions 2.45.0 and newer.Note that the global limit only applies to scrape objects that don't specify an explicit limit value.If you want to enforce a maximum limit for all scrape objects, refer to enforcedSampleLimit.
- `scrape_classes` (Attributes List) List of scrape classes to expose to scraping objects such asPodMonitors, ServiceMonitors, Probes and ScrapeConfigs.This is an *experimental feature*, it may change in any upcoming releasein a breaking way. (see [below for nested schema](#nestedatt--spec--scrape_classes))
- `scrape_config_namespace_selector` (Attributes) Namespaces to match for ScrapeConfig discovery. An empty label selectormatches all namespaces. A null label selector matches the currentnamespace only.Note that the ScrapeConfig custom resource definition is currently at Alpha level. (see [below for nested schema](#nestedatt--spec--scrape_config_namespace_selector))
- `scrape_config_selector` (Attributes) ScrapeConfigs to be selected for target discovery. An empty labelselector matches all objects. A null label selector matches no objects.If 'spec.serviceMonitorSelector', 'spec.podMonitorSelector', 'spec.probeSelector'and 'spec.scrapeConfigSelector' are null, the Prometheus configuration is unmanaged.The Prometheus operator will ensure that the Prometheus configuration'sSecret exists, but it is the responsibility of the user to provide the rawgzipped Prometheus configuration under the 'prometheus.yaml.gz' key.This behavior is *deprecated* and will be removed in the next major versionof the custom resource definition. It is recommended to use'spec.additionalScrapeConfigs' instead.Note that the ScrapeConfig custom resource definition is currently at Alpha level. (see [below for nested schema](#nestedatt--spec--scrape_config_selector))
@@ -126,7 +126,7 @@ Optional:
- `service_monitor_selector` (Attributes) ServiceMonitors to be selected for target discovery. An empty labelselector matches all objects. A null label selector matches no objects.If 'spec.serviceMonitorSelector', 'spec.podMonitorSelector', 'spec.probeSelector'and 'spec.scrapeConfigSelector' are null, the Prometheus configuration is unmanaged.The Prometheus operator will ensure that the Prometheus configuration'sSecret exists, but it is the responsibility of the user to provide the rawgzipped Prometheus configuration under the 'prometheus.yaml.gz' key.This behavior is *deprecated* and will be removed in the next major versionof the custom resource definition. It is recommended to use'spec.additionalScrapeConfigs' instead. (see [below for nested schema](#nestedatt--spec--service_monitor_selector))
- `shards` (Number) Number of shards to distribute targets onto. 'spec.replicas'multiplied by 'spec.shards' is the total number of Pods created.Note that scaling down shards will not reshard data onto remaininginstances, it must be manually moved. Increasing shards will not resharddata either but it will continue to be available from the sameinstances. To query globally, use Thanos sidecar and Thanos querier orremote write data to a central location.Sharding is performed on the content of the '__address__' target meta-labelfor PodMonitors and ServiceMonitors and '__param_target__' for Probes.Default: 1
- `storage` (Attributes) Storage defines the storage used by Prometheus. (see [below for nested schema](#nestedatt--spec--storage))
-- `target_limit` (Number) TargetLimit defines a limit on the number of scraped targets that will be accepted.Only valid in Prometheus versions 2.45.0 and newer.
+- `target_limit` (Number) TargetLimit defines a limit on the number of scraped targets that will be accepted.Only valid in Prometheus versions 2.45.0 and newer.Note that the global limit only applies to scrape objects that don't specify an explicit limit value.If you want to enforce a maximum limit for all scrape objects, refer to enforcedTargetLimit.
- `tolerations` (Attributes List) Defines the Pods' tolerations if specified. (see [below for nested schema](#nestedatt--spec--tolerations))
- `topology_spread_constraints` (Attributes List) Defines the pod's topology spread constraints if specified. (see [below for nested schema](#nestedatt--spec--topology_spread_constraints))
- `tracing_config` (Attributes) TracingConfig configures tracing in Prometheus.This is an *experimental feature*, it may change in any upcoming releasein a breaking way. (see [below for nested schema](#nestedatt--spec--tracing_config))
@@ -2142,11 +2142,15 @@ Optional:
- `bearer_token` (String) *Warning: this field shouldn't be used because the token value appearsin clear-text. Prefer using 'authorization'.*Deprecated: this will be removed in a future release.
- `bearer_token_file` (String) File from which to read bearer token for the URL.Deprecated: this will be removed in a future release. Prefer using 'authorization'.
- `enable_http2` (Boolean) Whether to enable HTTP2.
+- `follow_redirects` (Boolean) Configure whether HTTP requests follow HTTP 3xx redirects.It requires Prometheus >= v2.26.0.
- `headers` (Map of String) Custom HTTP headers to be sent along with each remote write request.Be aware that headers that are set by Prometheus itself can't be overwritten.It requires Prometheus >= v2.25.0.
- `metadata_config` (Attributes) MetadataConfig configures the sending of series metadata to the remote storage. (see [below for nested schema](#nestedatt--spec--remote_write--metadata_config))
- `name` (String) The name of the remote write queue, it must be unique if specified. Thename is used in metrics and logging in order to differentiate queues.It requires Prometheus >= v2.15.0.
+- `no_proxy` (String) 'noProxy' is a comma-separated string that can contain IPs, CIDR notation, domain namesthat should be excluded from proxying. IP and domain names cancontain port numbers.It requires Prometheus >= v2.43.0.
- `oauth2` (Attributes) OAuth2 configuration for the URL.It requires Prometheus >= v2.27.0.Cannot be set at the same time as 'sigv4', 'authorization', 'basicAuth', or 'azureAd'. (see [below for nested schema](#nestedatt--spec--remote_write--oauth2))
-- `proxy_url` (String) Optional ProxyURL.
+- `proxy_connect_header` (Map of String) ProxyConnectHeader optionally specifies headers to send toproxies during CONNECT requests.It requires Prometheus >= v2.43.0.
+- `proxy_from_environment` (Boolean) Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).If unset, Prometheus uses its default value.It requires Prometheus >= v2.43.0.
+- `proxy_url` (String) 'proxyURL' defines the HTTP proxy server to use.It requires Prometheus >= v2.43.0.
- `queue_config` (Attributes) QueueConfig allows tuning of the remote write queue parameters. (see [below for nested schema](#nestedatt--spec--remote_write--queue_config))
- `remote_timeout` (String) Timeout for requests to the remote write endpoint.
- `send_exemplars` (Boolean) Enables sending of exemplars over remote write. Note thatexemplar-storage itself must be enabled using the 'spec.enableFeature'option for exemplars to be scraped in the first place.It requires Prometheus >= v2.27.0.
diff --git a/docs/data-sources/monitoring_coreos_com_prometheus_v1_manifest.md b/docs/data-sources/monitoring_coreos_com_prometheus_v1_manifest.md
index e6e86b65e..6b7f9c7cd 100644
--- a/docs/data-sources/monitoring_coreos_com_prometheus_v1_manifest.md
+++ b/docs/data-sources/monitoring_coreos_com_prometheus_v1_manifest.md
@@ -64,21 +64,21 @@ Optional:
- `arbitrary_fs_access_through_s_ms` (Attributes) When true, ServiceMonitor, PodMonitor and Probe object are forbidden toreference arbitrary files on the file system of the 'prometheus'container.When a ServiceMonitor's endpoint specifies a 'bearerTokenFile' value(e.g. '/var/run/secrets/kubernetes.io/serviceaccount/token'), amalicious target can get access to the Prometheus service account'stoken in the Prometheus' scrape request. Setting'spec.arbitraryFSAccessThroughSM' to 'true' would prevent the attack.Users should instead provide the credentials using the'spec.bearerTokenSecret' field. (see [below for nested schema](#nestedatt--spec--arbitrary_fs_access_through_s_ms))
- `automount_service_account_token` (Boolean) AutomountServiceAccountToken indicates whether a service account token should be automatically mounted in the pod.If the field isn't set, the operator mounts the service account token by default.**Warning:** be aware that by default, Prometheus requires the service account token for Kubernetes service discovery.It is possible to use strategic merge patch to project the service account token into the 'prometheus' container.
- `base_image` (String) Deprecated: use 'spec.image' instead.
-- `body_size_limit` (String) BodySizeLimit defines per-scrape on response body size.Only valid in Prometheus versions 2.45.0 and newer.
+- `body_size_limit` (String) BodySizeLimit defines per-scrape on response body size.Only valid in Prometheus versions 2.45.0 and newer.Note that the global limit only applies to scrape objects that don't specify an explicit limit value.If you want to enforce a maximum limit for all scrape objects, refer to enforcedBodySizeLimit.
- `config_maps` (List of String) ConfigMaps is a list of ConfigMaps in the same namespace as the Prometheusobject, which shall be mounted into the Prometheus Pods.Each ConfigMap is added to the StatefulSet definition as a volume named 'configmap-'.The ConfigMaps are mounted into /etc/prometheus/configmaps/ in the 'prometheus' container.
- `containers` (Attributes List) Containers allows injecting additional containers or modifying operatorgenerated containers. This can be used to allow adding an authenticationproxy to the Pods or to change the behavior of an operator generatedcontainer. Containers described here modify an operator generatedcontainer if they share the same name and modifications are done via astrategic merge patch.The names of containers managed by the operator are:* 'prometheus'* 'config-reloader'* 'thanos-sidecar'Overriding containers is entirely outside the scope of what themaintainers will support and by doing so, you accept that this behaviourmay break at any time without notice. (see [below for nested schema](#nestedatt--spec--containers))
- `disable_compaction` (Boolean) When true, the Prometheus compaction is disabled.
- `enable_admin_api` (Boolean) Enables access to the Prometheus web admin API.WARNING: Enabling the admin APIs enables mutating endpoints, to delete data,shutdown Prometheus, and more. Enabling this should be done with care and theuser is advised to add additional authentication authorization via a proxy toensure only clients authorized to perform these actions can do so.For more information:https://prometheus.io/docs/prometheus/latest/querying/api/#tsdb-admin-apis
- `enable_features` (List of String) Enable access to Prometheus feature flags. By default, no features are enabled.Enabling features which are disabled by default is entirely outside thescope of what the maintainers will support and by doing so, you acceptthat this behaviour may break at any time without notice.For more information see https://prometheus.io/docs/prometheus/latest/feature_flags/
- `enable_remote_write_receiver` (Boolean) Enable Prometheus to be used as a receiver for the Prometheus remotewrite protocol.WARNING: This is not considered an efficient way of ingesting samples.Use it with caution for specific low-volume use cases.It is not suitable for replacing the ingestion via scraping and turningPrometheus into a push-based metrics collection system.For more information see https://prometheus.io/docs/prometheus/latest/querying/api/#remote-write-receiverIt requires Prometheus >= v2.33.0.
-- `enforced_body_size_limit` (String) When defined, enforcedBodySizeLimit specifies a global limit on the sizeof uncompressed response body that will be accepted by Prometheus.Targets responding with a body larger than this many bytes will causethe scrape to fail.It requires Prometheus >= v2.28.0.
-- `enforced_keep_dropped_targets` (Number) When defined, enforcedKeepDroppedTargets specifies a global limit on the number of targetsdropped by relabeling that will be kept in memory. The value overridesany 'spec.keepDroppedTargets' set byServiceMonitor, PodMonitor, Probe objects unless 'spec.keepDroppedTargets' isgreater than zero and less than 'spec.enforcedKeepDroppedTargets'.It requires Prometheus >= v2.47.0.
-- `enforced_label_limit` (Number) When defined, enforcedLabelLimit specifies a global limit on the numberof labels per sample. The value overrides any 'spec.labelLimit' set byServiceMonitor, PodMonitor, Probe objects unless 'spec.labelLimit' isgreater than zero and less than 'spec.enforcedLabelLimit'.It requires Prometheus >= v2.27.0.
-- `enforced_label_name_length_limit` (Number) When defined, enforcedLabelNameLengthLimit specifies a global limit on the lengthof labels name per sample. The value overrides any 'spec.labelNameLengthLimit' set byServiceMonitor, PodMonitor, Probe objects unless 'spec.labelNameLengthLimit' isgreater than zero and less than 'spec.enforcedLabelNameLengthLimit'.It requires Prometheus >= v2.27.0.
-- `enforced_label_value_length_limit` (Number) When not null, enforcedLabelValueLengthLimit defines a global limit on the lengthof labels value per sample. The value overrides any 'spec.labelValueLengthLimit' set byServiceMonitor, PodMonitor, Probe objects unless 'spec.labelValueLengthLimit' isgreater than zero and less than 'spec.enforcedLabelValueLengthLimit'.It requires Prometheus >= v2.27.0.
+- `enforced_body_size_limit` (String) When defined, enforcedBodySizeLimit specifies a global limit on the sizeof uncompressed response body that will be accepted by Prometheus.Targets responding with a body larger than this many bytes will causethe scrape to fail.It requires Prometheus >= v2.28.0.When both 'enforcedBodySizeLimit' and 'bodySizeLimit' are defined and greater than zero, the following rules apply:* Scrape objects without a defined bodySizeLimit value will inherit the global bodySizeLimit value (Prometheus >= 2.45.0) or the enforcedBodySizeLimit value (Prometheus < v2.45.0). If Prometheus version is >= 2.45.0 and the 'enforcedBodySizeLimit' is greater than the 'bodySizeLimit', the 'bodySizeLimit' will be set to 'enforcedBodySizeLimit'.* Scrape objects with a bodySizeLimit value less than or equal to enforcedBodySizeLimit keep their specific value.* Scrape objects with a bodySizeLimit value greater than enforcedBodySizeLimit are set to enforcedBodySizeLimit.
+- `enforced_keep_dropped_targets` (Number) When defined, enforcedKeepDroppedTargets specifies a global limit on the number of targetsdropped by relabeling that will be kept in memory. The value overridesany 'spec.keepDroppedTargets' set byServiceMonitor, PodMonitor, Probe objects unless 'spec.keepDroppedTargets' isgreater than zero and less than 'spec.enforcedKeepDroppedTargets'.It requires Prometheus >= v2.47.0.When both 'enforcedKeepDroppedTargets' and 'keepDroppedTargets' are defined and greater than zero, the following rules apply:* Scrape objects without a defined keepDroppedTargets value will inherit the global keepDroppedTargets value (Prometheus >= 2.45.0) or the enforcedKeepDroppedTargets value (Prometheus < v2.45.0). If Prometheus version is >= 2.45.0 and the 'enforcedKeepDroppedTargets' is greater than the 'keepDroppedTargets', the 'keepDroppedTargets' will be set to 'enforcedKeepDroppedTargets'.* Scrape objects with a keepDroppedTargets value less than or equal to enforcedKeepDroppedTargets keep their specific value.* Scrape objects with a keepDroppedTargets value greater than enforcedKeepDroppedTargets are set to enforcedKeepDroppedTargets.
+- `enforced_label_limit` (Number) When defined, enforcedLabelLimit specifies a global limit on the numberof labels per sample. The value overrides any 'spec.labelLimit' set byServiceMonitor, PodMonitor, Probe objects unless 'spec.labelLimit' isgreater than zero and less than 'spec.enforcedLabelLimit'.It requires Prometheus >= v2.27.0.When both 'enforcedLabelLimit' and 'labelLimit' are defined and greater than zero, the following rules apply:* Scrape objects without a defined labelLimit value will inherit the global labelLimit value (Prometheus >= 2.45.0) or the enforcedLabelLimit value (Prometheus < v2.45.0). If Prometheus version is >= 2.45.0 and the 'enforcedLabelLimit' is greater than the 'labelLimit', the 'labelLimit' will be set to 'enforcedLabelLimit'.* Scrape objects with a labelLimit value less than or equal to enforcedLabelLimit keep their specific value.* Scrape objects with a labelLimit value greater than enforcedLabelLimit are set to enforcedLabelLimit.
+- `enforced_label_name_length_limit` (Number) When defined, enforcedLabelNameLengthLimit specifies a global limit on the lengthof labels name per sample. The value overrides any 'spec.labelNameLengthLimit' set byServiceMonitor, PodMonitor, Probe objects unless 'spec.labelNameLengthLimit' isgreater than zero and less than 'spec.enforcedLabelNameLengthLimit'.It requires Prometheus >= v2.27.0.When both 'enforcedLabelNameLengthLimit' and 'labelNameLengthLimit' are defined and greater than zero, the following rules apply:* Scrape objects without a defined labelNameLengthLimit value will inherit the global labelNameLengthLimit value (Prometheus >= 2.45.0) or the enforcedLabelNameLengthLimit value (Prometheus < v2.45.0). If Prometheus version is >= 2.45.0 and the 'enforcedLabelNameLengthLimit' is greater than the 'labelNameLengthLimit', the 'labelNameLengthLimit' will be set to 'enforcedLabelNameLengthLimit'.* Scrape objects with a labelNameLengthLimit value less than or equal to enforcedLabelNameLengthLimit keep their specific value.* Scrape objects with a labelNameLengthLimit value greater than enforcedLabelNameLengthLimit are set to enforcedLabelNameLengthLimit.
+- `enforced_label_value_length_limit` (Number) When not null, enforcedLabelValueLengthLimit defines a global limit on the lengthof labels value per sample. The value overrides any 'spec.labelValueLengthLimit' set byServiceMonitor, PodMonitor, Probe objects unless 'spec.labelValueLengthLimit' isgreater than zero and less than 'spec.enforcedLabelValueLengthLimit'.It requires Prometheus >= v2.27.0.When both 'enforcedLabelValueLengthLimit' and 'labelValueLengthLimit' are defined and greater than zero, the following rules apply:* Scrape objects without a defined labelValueLengthLimit value will inherit the global labelValueLengthLimit value (Prometheus >= 2.45.0) or the enforcedLabelValueLengthLimit value (Prometheus < v2.45.0). If Prometheus version is >= 2.45.0 and the 'enforcedLabelValueLengthLimit' is greater than the 'labelValueLengthLimit', the 'labelValueLengthLimit' will be set to 'enforcedLabelValueLengthLimit'.* Scrape objects with a labelValueLengthLimit value less than or equal to enforcedLabelValueLengthLimit keep their specific value.* Scrape objects with a labelValueLengthLimit value greater than enforcedLabelValueLengthLimit are set to enforcedLabelValueLengthLimit.
- `enforced_namespace_label` (String) When not empty, a label will be added to:1. All metrics scraped from 'ServiceMonitor', 'PodMonitor', 'Probe' and 'ScrapeConfig' objects.2. All metrics generated from recording rules defined in 'PrometheusRule' objects.3. All alerts generated from alerting rules defined in 'PrometheusRule' objects.4. All vector selectors of PromQL expressions defined in 'PrometheusRule' objects.The label will not added for objects referenced in 'spec.excludedFromEnforcement'.The label's name is this field's value.The label's value is the namespace of the 'ServiceMonitor','PodMonitor', 'Probe', 'PrometheusRule' or 'ScrapeConfig' object.
-- `enforced_sample_limit` (Number) When defined, enforcedSampleLimit specifies a global limit on the numberof scraped samples that will be accepted. This overrides any'spec.sampleLimit' set by ServiceMonitor, PodMonitor, Probe objectsunless 'spec.sampleLimit' is greater than zero and less than'spec.enforcedSampleLimit'.It is meant to be used by admins to keep the overall number ofsamples/series under a desired limit.
-- `enforced_target_limit` (Number) When defined, enforcedTargetLimit specifies a global limit on the numberof scraped targets. The value overrides any 'spec.targetLimit' set byServiceMonitor, PodMonitor, Probe objects unless 'spec.targetLimit' isgreater than zero and less than 'spec.enforcedTargetLimit'.It is meant to be used by admins to to keep the overall number oftargets under a desired limit.
+- `enforced_sample_limit` (Number) When defined, enforcedSampleLimit specifies a global limit on the numberof scraped samples that will be accepted. This overrides any'spec.sampleLimit' set by ServiceMonitor, PodMonitor, Probe objectsunless 'spec.sampleLimit' is greater than zero and less than'spec.enforcedSampleLimit'.It is meant to be used by admins to keep the overall number ofsamples/series under a desired limit.When both 'enforcedSampleLimit' and 'sampleLimit' are defined and greater than zero, the following rules apply:* Scrape objects without a defined sampleLimit value will inherit the global sampleLimit value (Prometheus >= 2.45.0) or the enforcedSampleLimit value (Prometheus < v2.45.0). If Prometheus version is >= 2.45.0 and the 'enforcedSampleLimit' is greater than the 'sampleLimit', the 'sampleLimit' will be set to 'enforcedSampleLimit'.* Scrape objects with a sampleLimit value less than or equal to enforcedSampleLimit keep their specific value.* Scrape objects with a sampleLimit value greater than enforcedSampleLimit are set to enforcedSampleLimit.
+- `enforced_target_limit` (Number) When defined, enforcedTargetLimit specifies a global limit on the numberof scraped targets. The value overrides any 'spec.targetLimit' set byServiceMonitor, PodMonitor, Probe objects unless 'spec.targetLimit' isgreater than zero and less than 'spec.enforcedTargetLimit'.It is meant to be used by admins to to keep the overall number oftargets under a desired limit.When both 'enforcedTargetLimit' and 'targetLimit' are defined and greater than zero, the following rules apply:* Scrape objects without a defined targetLimit value will inherit the global targetLimit value (Prometheus >= 2.45.0) or the enforcedTargetLimit value (Prometheus < v2.45.0). If Prometheus version is >= 2.45.0 and the 'enforcedTargetLimit' is greater than the 'targetLimit', the 'targetLimit' will be set to 'enforcedTargetLimit'.* Scrape objects with a targetLimit value less than or equal to enforcedTargetLimit keep their specific value.* Scrape objects with a targetLimit value greater than enforcedTargetLimit are set to enforcedTargetLimit.
- `evaluation_interval` (String) Interval between rule evaluations.Default: '30s'
- `excluded_from_enforcement` (Attributes List) List of references to PodMonitor, ServiceMonitor, Probe and PrometheusRule objectsto be excluded from enforcing a namespace label of origin.It is only applicable if 'spec.enforcedNamespaceLabel' set to true. (see [below for nested schema](#nestedatt--spec--excluded_from_enforcement))
- `exemplars` (Attributes) Exemplars related settings that are runtime reloadable.It requires to enable the 'exemplar-storage' feature flag to be effective. (see [below for nested schema](#nestedatt--spec--exemplars))
@@ -91,10 +91,10 @@ Optional:
- `image_pull_policy` (String) Image pull policy for the 'prometheus', 'init-config-reloader' and 'config-reloader' containers.See https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy for more details.
- `image_pull_secrets` (Attributes List) An optional list of references to Secrets in the same namespaceto use for pulling images from registries.See http://kubernetes.io/docs/user-guide/images#specifying-imagepullsecrets-on-a-pod (see [below for nested schema](#nestedatt--spec--image_pull_secrets))
- `init_containers` (Attributes List) InitContainers allows injecting initContainers to the Pod definition. Thosecan be used to e.g. fetch secrets for injection into the Prometheusconfiguration from external sources. Any errors during the execution ofan initContainer will lead to a restart of the Pod. More info:https://kubernetes.io/docs/concepts/workloads/pods/init-containers/InitContainers described here modify an operator generated initcontainers if they share the same name and modifications are done via astrategic merge patch.The names of init container name managed by the operator are:* 'init-config-reloader'.Overriding init containers is entirely outside the scope of what themaintainers will support and by doing so, you accept that this behaviourmay break at any time without notice. (see [below for nested schema](#nestedatt--spec--init_containers))
-- `keep_dropped_targets` (Number) Per-scrape limit on the number of targets dropped by relabelingthat will be kept in memory. 0 means no limit.It requires Prometheus >= v2.47.0.
-- `label_limit` (Number) Per-scrape limit on number of labels that will be accepted for a sample.Only valid in Prometheus versions 2.45.0 and newer.
-- `label_name_length_limit` (Number) Per-scrape limit on length of labels name that will be accepted for a sample.Only valid in Prometheus versions 2.45.0 and newer.
-- `label_value_length_limit` (Number) Per-scrape limit on length of labels value that will be accepted for a sample.Only valid in Prometheus versions 2.45.0 and newer.
+- `keep_dropped_targets` (Number) Per-scrape limit on the number of targets dropped by relabelingthat will be kept in memory. 0 means no limit.It requires Prometheus >= v2.47.0.Note that the global limit only applies to scrape objects that don't specify an explicit limit value.If you want to enforce a maximum limit for all scrape objects, refer to enforcedKeepDroppedTargets.
+- `label_limit` (Number) Per-scrape limit on number of labels that will be accepted for a sample.Only valid in Prometheus versions 2.45.0 and newer.Note that the global limit only applies to scrape objects that don't specify an explicit limit value.If you want to enforce a maximum limit for all scrape objects, refer to enforcedLabelLimit.
+- `label_name_length_limit` (Number) Per-scrape limit on length of labels name that will be accepted for a sample.Only valid in Prometheus versions 2.45.0 and newer.Note that the global limit only applies to scrape objects that don't specify an explicit limit value.If you want to enforce a maximum limit for all scrape objects, refer to enforcedLabelNameLengthLimit.
+- `label_value_length_limit` (Number) Per-scrape limit on length of labels value that will be accepted for a sample.Only valid in Prometheus versions 2.45.0 and newer.Note that the global limit only applies to scrape objects that don't specify an explicit limit value.If you want to enforce a maximum limit for all scrape objects, refer to enforcedLabelValueLengthLimit.
- `listen_local` (Boolean) When true, the Prometheus server listens on the loopback addressinstead of the Pod IP's address.
- `log_format` (String) Log format for Log level for Prometheus and the config-reloader sidecar.
- `log_level` (String) Log level for Prometheus and the config-reloader sidecar.
@@ -129,7 +129,7 @@ Optional:
- `rule_namespace_selector` (Attributes) Namespaces to match for PrometheusRule discovery. An empty label selectormatches all namespaces. A null label selector matches the currentnamespace only. (see [below for nested schema](#nestedatt--spec--rule_namespace_selector))
- `rule_selector` (Attributes) PrometheusRule objects to be selected for rule evaluation. An emptylabel selector matches all objects. A null label selector matches noobjects. (see [below for nested schema](#nestedatt--spec--rule_selector))
- `rules` (Attributes) Defines the configuration of the Prometheus rules' engine. (see [below for nested schema](#nestedatt--spec--rules))
-- `sample_limit` (Number) SampleLimit defines per-scrape limit on number of scraped samples that will be accepted.Only valid in Prometheus versions 2.45.0 and newer.
+- `sample_limit` (Number) SampleLimit defines per-scrape limit on number of scraped samples that will be accepted.Only valid in Prometheus versions 2.45.0 and newer.Note that the global limit only applies to scrape objects that don't specify an explicit limit value.If you want to enforce a maximum limit for all scrape objects, refer to enforcedSampleLimit.
- `scrape_classes` (Attributes List) List of scrape classes to expose to scraping objects such asPodMonitors, ServiceMonitors, Probes and ScrapeConfigs.This is an *experimental feature*, it may change in any upcoming releasein a breaking way. (see [below for nested schema](#nestedatt--spec--scrape_classes))
- `scrape_config_namespace_selector` (Attributes) Namespaces to match for ScrapeConfig discovery. An empty label selectormatches all namespaces. A null label selector matches the currentnamespace only.Note that the ScrapeConfig custom resource definition is currently at Alpha level. (see [below for nested schema](#nestedatt--spec--scrape_config_namespace_selector))
- `scrape_config_selector` (Attributes) ScrapeConfigs to be selected for target discovery. An empty labelselector matches all objects. A null label selector matches no objects.If 'spec.serviceMonitorSelector', 'spec.podMonitorSelector', 'spec.probeSelector'and 'spec.scrapeConfigSelector' are null, the Prometheus configuration is unmanaged.The Prometheus operator will ensure that the Prometheus configuration'sSecret exists, but it is the responsibility of the user to provide the rawgzipped Prometheus configuration under the 'prometheus.yaml.gz' key.This behavior is *deprecated* and will be removed in the next major versionof the custom resource definition. It is recommended to use'spec.additionalScrapeConfigs' instead.Note that the ScrapeConfig custom resource definition is currently at Alpha level. (see [below for nested schema](#nestedatt--spec--scrape_config_selector))
@@ -145,7 +145,7 @@ Optional:
- `shards` (Number) Number of shards to distribute targets onto. 'spec.replicas'multiplied by 'spec.shards' is the total number of Pods created.Note that scaling down shards will not reshard data onto remaininginstances, it must be manually moved. Increasing shards will not resharddata either but it will continue to be available from the sameinstances. To query globally, use Thanos sidecar and Thanos querier orremote write data to a central location.Sharding is performed on the content of the '__address__' target meta-labelfor PodMonitors and ServiceMonitors and '__param_target__' for Probes.Default: 1
- `storage` (Attributes) Storage defines the storage used by Prometheus. (see [below for nested schema](#nestedatt--spec--storage))
- `tag` (String) Deprecated: use 'spec.image' instead. The image's tag can be specified as part of the image name.
-- `target_limit` (Number) TargetLimit defines a limit on the number of scraped targets that will be accepted.Only valid in Prometheus versions 2.45.0 and newer.
+- `target_limit` (Number) TargetLimit defines a limit on the number of scraped targets that will be accepted.Only valid in Prometheus versions 2.45.0 and newer.Note that the global limit only applies to scrape objects that don't specify an explicit limit value.If you want to enforce a maximum limit for all scrape objects, refer to enforcedTargetLimit.
- `thanos` (Attributes) Defines the configuration of the optional Thanos sidecar. (see [below for nested schema](#nestedatt--spec--thanos))
- `tolerations` (Attributes List) Defines the Pods' tolerations if specified. (see [below for nested schema](#nestedatt--spec--tolerations))
- `topology_spread_constraints` (Attributes List) Defines the pod's topology spread constraints if specified. (see [below for nested schema](#nestedatt--spec--topology_spread_constraints))
@@ -2473,8 +2473,11 @@ Optional:
- `follow_redirects` (Boolean) Configure whether HTTP requests follow HTTP 3xx redirects.It requires Prometheus >= v2.26.0.
- `headers` (Map of String) Custom HTTP headers to be sent along with each remote read request.Be aware that headers that are set by Prometheus itself can't be overwritten.Only valid in Prometheus versions 2.26.0 and newer.
- `name` (String) The name of the remote read queue, it must be unique if specified. Thename is used in metrics and logging in order to differentiate readconfigurations.It requires Prometheus >= v2.15.0.
+- `no_proxy` (String) 'noProxy' is a comma-separated string that can contain IPs, CIDR notation, domain namesthat should be excluded from proxying. IP and domain names cancontain port numbers.It requires Prometheus >= v2.43.0.
- `oauth2` (Attributes) OAuth2 configuration for the URL.It requires Prometheus >= v2.27.0.Cannot be set at the same time as 'authorization', or 'basicAuth'. (see [below for nested schema](#nestedatt--spec--remote_read--oauth2))
-- `proxy_url` (String) Optional ProxyURL.
+- `proxy_connect_header` (Map of String) ProxyConnectHeader optionally specifies headers to send toproxies during CONNECT requests.It requires Prometheus >= v2.43.0.
+- `proxy_from_environment` (Boolean) Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).If unset, Prometheus uses its default value.It requires Prometheus >= v2.43.0.
+- `proxy_url` (String) 'proxyURL' defines the HTTP proxy server to use.It requires Prometheus >= v2.43.0.
- `read_recent` (Boolean) Whether reads should be made for queries for time ranges thatthe local storage should have complete data for.
- `remote_timeout` (String) Timeout for requests to the remote read endpoint.
- `required_matchers` (Map of String) An optional list of equality matchers which have to be presentin a selector to query the remote read endpoint.
@@ -2715,11 +2718,15 @@ Optional:
- `bearer_token` (String) *Warning: this field shouldn't be used because the token value appearsin clear-text. Prefer using 'authorization'.*Deprecated: this will be removed in a future release.
- `bearer_token_file` (String) File from which to read bearer token for the URL.Deprecated: this will be removed in a future release. Prefer using 'authorization'.
- `enable_http2` (Boolean) Whether to enable HTTP2.
+- `follow_redirects` (Boolean) Configure whether HTTP requests follow HTTP 3xx redirects.It requires Prometheus >= v2.26.0.
- `headers` (Map of String) Custom HTTP headers to be sent along with each remote write request.Be aware that headers that are set by Prometheus itself can't be overwritten.It requires Prometheus >= v2.25.0.
- `metadata_config` (Attributes) MetadataConfig configures the sending of series metadata to the remote storage. (see [below for nested schema](#nestedatt--spec--remote_write--metadata_config))
- `name` (String) The name of the remote write queue, it must be unique if specified. Thename is used in metrics and logging in order to differentiate queues.It requires Prometheus >= v2.15.0.
+- `no_proxy` (String) 'noProxy' is a comma-separated string that can contain IPs, CIDR notation, domain namesthat should be excluded from proxying. IP and domain names cancontain port numbers.It requires Prometheus >= v2.43.0.
- `oauth2` (Attributes) OAuth2 configuration for the URL.It requires Prometheus >= v2.27.0.Cannot be set at the same time as 'sigv4', 'authorization', 'basicAuth', or 'azureAd'. (see [below for nested schema](#nestedatt--spec--remote_write--oauth2))
-- `proxy_url` (String) Optional ProxyURL.
+- `proxy_connect_header` (Map of String) ProxyConnectHeader optionally specifies headers to send toproxies during CONNECT requests.It requires Prometheus >= v2.43.0.
+- `proxy_from_environment` (Boolean) Whether to use the proxy configuration defined by environment variables (HTTP_PROXY, HTTPS_PROXY, and NO_PROXY).If unset, Prometheus uses its default value.It requires Prometheus >= v2.43.0.
+- `proxy_url` (String) 'proxyURL' defines the HTTP proxy server to use.It requires Prometheus >= v2.43.0.
- `queue_config` (Attributes) QueueConfig allows tuning of the remote write queue parameters. (see [below for nested schema](#nestedatt--spec--remote_write--queue_config))
- `remote_timeout` (String) Timeout for requests to the remote write endpoint.
- `send_exemplars` (Boolean) Enables sending of exemplars over remote write. Note thatexemplar-storage itself must be enabled using the 'spec.enableFeature'option for exemplars to be scraped in the first place.It requires Prometheus >= v2.27.0.
diff --git a/docs/data-sources/operator_cryostat_io_cryostat_v1beta2_manifest.md b/docs/data-sources/operator_cryostat_io_cryostat_v1beta2_manifest.md
index 33f78854a..c006c4bb9 100644
--- a/docs/data-sources/operator_cryostat_io_cryostat_v1beta2_manifest.md
+++ b/docs/data-sources/operator_cryostat_io_cryostat_v1beta2_manifest.md
@@ -69,7 +69,7 @@ Optional:
- `storage_options` (Attributes) Options to customize the storage provisioned for the database and object storage. (see [below for nested schema](#nestedatt--spec--storage_options))
- `target_connection_cache_options` (Attributes) Options to customize the target connections cache for the Cryostat application. (see [below for nested schema](#nestedatt--spec--target_connection_cache_options))
- `target_discovery_options` (Attributes) Options to configure the Cryostat application's target discovery mechanisms. (see [below for nested schema](#nestedatt--spec--target_discovery_options))
-- `target_namespaces` (List of String) List of namespaces whose workloads Cryostat should bepermitted to access and profile. Defaults to this Cryostat's namespace.Warning: All Cryostat users will be able to create and managerecordings for workloads in the listed namespaces.More details: https://github.com/cryostatio/cryostat-operator/blob/v2.4.0/docs/multi-namespace.md#data-isolation
+- `target_namespaces` (List of String) List of namespaces whose workloads Cryostat should bepermitted to access and profile. Defaults to this Cryostat's namespace.Warning: All Cryostat users will be able to create and managerecordings for workloads in the listed namespaces.More details: https://github.com/cryostatio/cryostat-operator/blob/v3.0.0/docs/config.md#data-isolation
- `trusted_cert_secrets` (Attributes List) List of TLS certificates to trust when connecting to targets. (see [below for nested schema](#nestedatt--spec--trusted_cert_secrets))
diff --git a/docs/data-sources/pgv2_percona_com_percona_pg_cluster_v2_manifest.md b/docs/data-sources/pgv2_percona_com_percona_pg_cluster_v2_manifest.md
index 71bff2c12..79197ed76 100644
--- a/docs/data-sources/pgv2_percona_com_percona_pg_cluster_v2_manifest.md
+++ b/docs/data-sources/pgv2_percona_com_percona_pg_cluster_v2_manifest.md
@@ -5460,11 +5460,14 @@ Optional:
### Nested Schema for `spec.extensions`
+Required:
+
+- `image` (String)
+
Optional:
- `builtin` (Attributes) (see [below for nested schema](#nestedatt--spec--extensions--builtin))
- `custom` (Attributes List) (see [below for nested schema](#nestedatt--spec--extensions--custom))
-- `image` (String)
- `image_pull_policy` (String) PullPolicy describes a policy for if/when to pull a container image
- `storage` (Attributes) (see [below for nested schema](#nestedatt--spec--extensions--storage))
diff --git a/docs/data-sources/postgres_operator_crunchydata_com_pg_admin_v1beta1_manifest.md b/docs/data-sources/postgres_operator_crunchydata_com_pg_admin_v1beta1_manifest.md
index f75cd2781..ad3ebed5f 100644
--- a/docs/data-sources/postgres_operator_crunchydata_com_pg_admin_v1beta1_manifest.md
+++ b/docs/data-sources/postgres_operator_crunchydata_com_pg_admin_v1beta1_manifest.md
@@ -78,11 +78,12 @@ Optional:
Optional:
- `access_modes` (List of String) accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
-- `data_source` (Attributes) dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field. (see [below for nested schema](#nestedatt--spec--data_volume_claim_spec--data_source))
-- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef preserves all values, and generates an error if a disallowed value is specified. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--data_volume_claim_spec--data_source_ref))
+- `data_source` (Attributes) dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef, and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified. If the namespace is specified, then dataSourceRef will not be copied to dataSource. (see [below for nested schema](#nestedatt--spec--data_volume_claim_spec--data_source))
+- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the dataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, when namespace isn't specified in dataSourceRef, both fields (dataSource and dataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. When namespace is specified in dataSourceRef, dataSource isn't set to the same value and must be empty. There are three important differences between dataSource and dataSourceRef: * While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified. * While dataSource only allows local objects, dataSourceRef allows objects in any namespaces. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--data_volume_claim_spec--data_source_ref))
- `resources` (Attributes) resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources (see [below for nested schema](#nestedatt--spec--data_volume_claim_spec--resources))
- `selector` (Attributes) selector is a label query over volumes to consider for binding. (see [below for nested schema](#nestedatt--spec--data_volume_claim_spec--selector))
- `storage_class_name` (String) storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
+- `volume_attributes_class_name` (String) volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim. If specified, the CSI driver will create or update the volume with the attributes defined in the corresponding VolumeAttributesClass. This has a different purpose than storageClassName, it can be changed after the claim is created. An empty string value means that no VolumeAttributesClass will be applied to the claim but it's not allowed to reset this field to empty string once it is set. If unspecified and the PersistentVolumeClaim is unbound, the default VolumeAttributesClass will be set by the persistentvolume controller if it exists. If the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be set to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource exists. More info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/ (Alpha) Using this field requires the VolumeAttributesClass feature gate to be enabled.
- `volume_mode` (String) volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.
- `volume_name` (String) volumeName is the binding reference to the PersistentVolume backing this claim.
@@ -110,6 +111,7 @@ Required:
Optional:
- `api_group` (String) APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.
+- `namespace` (String) Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.
@@ -118,7 +120,7 @@ Optional:
Optional:
- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
@@ -274,7 +276,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -333,7 +337,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -408,7 +414,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -467,7 +475,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -547,11 +557,49 @@ Optional:
Optional:
+- `cluster_trust_bundle` (Attributes) ClusterTrustBundle allows a pod to access the '.spec.trustBundle' field of ClusterTrustBundle objects in an auto-updating file. Alpha, gated by the ClusterTrustBundleProjection feature gate. ClusterTrustBundle objects can either be selected by name, or by the combination of signer name and a label selector. Kubelet performs aggressive normalization of the PEM contents written into the pod filesystem. Esoteric PEM features such as inter-block comments and block headers are stripped. Certificates are deduplicated. The ordering of certificates within the file is arbitrary, and Kubelet may change the order over time. (see [below for nested schema](#nestedatt--spec--config--files--cluster_trust_bundle))
- `config_map` (Attributes) configMap information about the configMap data to project (see [below for nested schema](#nestedatt--spec--config--files--config_map))
- `downward_api` (Attributes) downwardAPI information about the downwardAPI data to project (see [below for nested schema](#nestedatt--spec--config--files--downward_api))
- `secret` (Attributes) secret information about the secret data to project (see [below for nested schema](#nestedatt--spec--config--files--secret))
- `service_account_token` (Attributes) serviceAccountToken is information about the serviceAccountToken data to project (see [below for nested schema](#nestedatt--spec--config--files--service_account_token))
+
+### Nested Schema for `spec.config.files.cluster_trust_bundle`
+
+Required:
+
+- `path` (String) Relative path from the volume root to write the bundle.
+
+Optional:
+
+- `label_selector` (Attributes) Select all ClusterTrustBundles that match this label selector. Only has effect if signerName is set. Mutually-exclusive with name. If unset, interpreted as 'match nothing'. If set but empty, interpreted as 'match everything'. (see [below for nested schema](#nestedatt--spec--config--files--cluster_trust_bundle--label_selector))
+- `name` (String) Select a single ClusterTrustBundle by object name. Mutually-exclusive with signerName and labelSelector.
+- `optional` (Boolean) If true, don't block pod startup if the referenced ClusterTrustBundle(s) aren't available. If using name, then the named ClusterTrustBundle is allowed not to exist. If using signerName, then the combination of signerName and labelSelector is allowed to match zero ClusterTrustBundles.
+- `signer_name` (String) Select all ClusterTrustBundles that match this signer name. Mutually-exclusive with name. The contents of all selected ClusterTrustBundles will be unified and deduplicated.
+
+
+### Nested Schema for `spec.config.files.cluster_trust_bundle.label_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--config--files--cluster_trust_bundle--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is 'key', the operator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.config.files.cluster_trust_bundle.label_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.
+
+
+
+
### Nested Schema for `spec.config.files.config_map`
@@ -591,7 +639,7 @@ Required:
Optional:
-- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name and namespace are supported. (see [below for nested schema](#nestedatt--spec--config--files--downward_api--items--field_ref))
+- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported. (see [below for nested schema](#nestedatt--spec--config--files--downward_api--items--field_ref))
- `mode` (Number) Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported. (see [below for nested schema](#nestedatt--spec--config--files--downward_api--items--resource_field_ref))
@@ -695,8 +743,17 @@ Optional:
Optional:
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--resources--claims))
- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+### Nested Schema for `spec.resources.claims`
+
+Required:
+
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.
+
diff --git a/docs/data-sources/postgres_operator_crunchydata_com_pg_upgrade_v1beta1_manifest.md b/docs/data-sources/postgres_operator_crunchydata_com_pg_upgrade_v1beta1_manifest.md
index c93858841..7ebbafce4 100644
--- a/docs/data-sources/postgres_operator_crunchydata_com_pg_upgrade_v1beta1_manifest.md
+++ b/docs/data-sources/postgres_operator_crunchydata_com_pg_upgrade_v1beta1_manifest.md
@@ -201,7 +201,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -260,7 +262,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -335,7 +339,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -394,7 +400,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -467,8 +475,17 @@ Optional:
Optional:
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--resources--claims))
- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+### Nested Schema for `spec.resources.claims`
+
+Required:
+
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.
+
diff --git a/docs/data-sources/postgres_operator_crunchydata_com_postgres_cluster_v1beta1_manifest.md b/docs/data-sources/postgres_operator_crunchydata_com_postgres_cluster_v1beta1_manifest.md
index 98f66bd2a..7c21bcd2e 100644
--- a/docs/data-sources/postgres_operator_crunchydata_com_postgres_cluster_v1beta1_manifest.md
+++ b/docs/data-sources/postgres_operator_crunchydata_com_postgres_cluster_v1beta1_manifest.md
@@ -193,10 +193,11 @@ Required:
Optional:
-- `data_source` (Attributes) dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--repos--volume--volume_claim_spec--data_source))
-- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef preserves all values, and generates an error if a disallowed value is specified. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--repos--volume--volume_claim_spec--data_source_ref))
+- `data_source` (Attributes) dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef, and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified. If the namespace is specified, then dataSourceRef will not be copied to dataSource. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--repos--volume--volume_claim_spec--data_source))
+- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the dataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, when namespace isn't specified in dataSourceRef, both fields (dataSource and dataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. When namespace is specified in dataSourceRef, dataSource isn't set to the same value and must be empty. There are three important differences between dataSource and dataSourceRef: * While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified. * While dataSource only allows local objects, dataSourceRef allows objects in any namespaces. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--repos--volume--volume_claim_spec--data_source_ref))
- `selector` (Attributes) selector is a label query over volumes to consider for binding. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--repos--volume--volume_claim_spec--selector))
- `storage_class_name` (String) storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
+- `volume_attributes_class_name` (String) volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim. If specified, the CSI driver will create or update the volume with the attributes defined in the corresponding VolumeAttributesClass. This has a different purpose than storageClassName, it can be changed after the claim is created. An empty string value means that no VolumeAttributesClass will be applied to the claim but it's not allowed to reset this field to empty string once it is set. If unspecified and the PersistentVolumeClaim is unbound, the default VolumeAttributesClass will be set by the persistentvolume controller if it exists. If the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be set to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource exists. More info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/ (Alpha) Using this field requires the VolumeAttributesClass feature gate to be enabled.
- `volume_mode` (String) volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.
- `volume_name` (String) volumeName is the binding reference to the PersistentVolume backing this claim.
@@ -205,7 +206,7 @@ Optional:
Required:
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
Optional:
@@ -236,6 +237,7 @@ Required:
Optional:
- `api_group` (String) APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.
+- `namespace` (String) Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.
@@ -268,11 +270,49 @@ Optional:
Optional:
+- `cluster_trust_bundle` (Attributes) ClusterTrustBundle allows a pod to access the '.spec.trustBundle' field of ClusterTrustBundle objects in an auto-updating file. Alpha, gated by the ClusterTrustBundleProjection feature gate. ClusterTrustBundle objects can either be selected by name, or by the combination of signer name and a label selector. Kubelet performs aggressive normalization of the PEM contents written into the pod filesystem. Esoteric PEM features such as inter-block comments and block headers are stripped. Certificates are deduplicated. The ordering of certificates within the file is arbitrary, and Kubelet may change the order over time. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--configuration--cluster_trust_bundle))
- `config_map` (Attributes) configMap information about the configMap data to project (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--configuration--config_map))
- `downward_api` (Attributes) downwardAPI information about the downwardAPI data to project (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--configuration--downward_api))
- `secret` (Attributes) secret information about the secret data to project (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--configuration--secret))
- `service_account_token` (Attributes) serviceAccountToken is information about the serviceAccountToken data to project (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--configuration--service_account_token))
+
+### Nested Schema for `spec.backups.pgbackrest.configuration.cluster_trust_bundle`
+
+Required:
+
+- `path` (String) Relative path from the volume root to write the bundle.
+
+Optional:
+
+- `label_selector` (Attributes) Select all ClusterTrustBundles that match this label selector. Only has effect if signerName is set. Mutually-exclusive with name. If unset, interpreted as 'match nothing'. If set but empty, interpreted as 'match everything'. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--configuration--cluster_trust_bundle--label_selector))
+- `name` (String) Select a single ClusterTrustBundle by object name. Mutually-exclusive with signerName and labelSelector.
+- `optional` (Boolean) If true, don't block pod startup if the referenced ClusterTrustBundle(s) aren't available. If using name, then the named ClusterTrustBundle is allowed not to exist. If using signerName, then the combination of signerName and labelSelector is allowed to match zero ClusterTrustBundles.
+- `signer_name` (String) Select all ClusterTrustBundles that match this signer name. Mutually-exclusive with name. The contents of all selected ClusterTrustBundles will be unified and deduplicated.
+
+
+### Nested Schema for `spec.backups.pgbackrest.configuration.cluster_trust_bundle.label_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--configuration--cluster_trust_bundle--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is 'key', the operator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.backups.pgbackrest.configuration.cluster_trust_bundle.label_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.
+
+
+
+
### Nested Schema for `spec.backups.pgbackrest.configuration.config_map`
@@ -312,7 +352,7 @@ Required:
Optional:
-- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name and namespace are supported. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--configuration--downward_api--items--field_ref))
+- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--configuration--downward_api--items--field_ref))
- `mode` (Number) Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--configuration--downward_api--items--resource_field_ref))
@@ -521,7 +561,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--jobs--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--jobs--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--jobs--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -580,7 +622,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--jobs--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--jobs--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--jobs--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -655,7 +699,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--jobs--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--jobs--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--jobs--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -714,7 +760,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--jobs--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--jobs--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--jobs--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -770,8 +818,17 @@ Optional:
Optional:
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--jobs--resources--claims))
- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+### Nested Schema for `spec.backups.pgbackrest.jobs.resources.claims`
+
+Required:
+
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.
+
@@ -951,7 +1008,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--repo_host--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--repo_host--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--repo_host--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -1010,7 +1069,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--repo_host--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--repo_host--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--repo_host--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -1085,7 +1146,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--repo_host--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--repo_host--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--repo_host--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -1144,7 +1207,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--repo_host--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--repo_host--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--repo_host--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -1200,8 +1265,17 @@ Optional:
Optional:
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--repo_host--resources--claims))
- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+### Nested Schema for `spec.backups.pgbackrest.repo_host.resources.claims`
+
+Required:
+
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.
+
@@ -1268,13 +1342,16 @@ Optional:
Required:
- `max_skew` (Number) MaxSkew describes the degree to which pods may be unevenly distributed. When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | | P P | P P | P | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.
-- `topology_key` (String) TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each as a 'bucket', and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes match the node selector. e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology. And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology. It's a required field.
+- `topology_key` (String) TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each as a 'bucket', and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes meet the requirements of nodeAffinityPolicy and nodeTaintsPolicy. e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology. And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology. It's a required field.
- `when_unsatisfiable` (String) WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew. A constraint is considered 'Unsatisfiable' for an incoming pod if and only if every possible node assignment for that pod would violate 'MaxSkew' on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P | P | P | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.
Optional:
- `label_selector` (Attributes) LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--repo_host--topology_spread_constraints--label_selector))
-- `min_domains` (Number) MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule. For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | | P P | P P | P P | The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew. This is an alpha field and requires enabling MinDomainsInPodTopologySpread feature gate.
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select the pods over which spreading will be calculated. The keys are used to lookup values from the incoming pod labels, those key-value labels are ANDed with labelSelector to select the group of existing pods over which spreading will be calculated for the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector. MatchLabelKeys cannot be set when LabelSelector isn't set. Keys that don't exist in the incoming pod labels will be ignored. A null or empty list means only match against labelSelector. This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).
+- `min_domains` (Number) MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule. For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | | P P | P P | P P | The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew.
+- `node_affinity_policy` (String) NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector when calculating pod topology spread skew. Options are: - Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations. - Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations. If this value is nil, the behavior is equivalent to the Honor policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.
+- `node_taints_policy` (String) NodeTaintsPolicy indicates how we will treat node taints when calculating pod topology spread skew. Options are: - Honor: nodes without taints, along with tainted nodes for which the incoming pod has a toleration, are included. - Ignore: node taints are ignored. All nodes are included. If this value is nil, the behavior is equivalent to the Ignore policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.
### Nested Schema for `spec.backups.pgbackrest.repo_host.topology_spread_constraints.label_selector`
@@ -1448,7 +1525,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--restore--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--restore--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--restore--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -1507,7 +1586,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--restore--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--restore--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--restore--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -1582,7 +1663,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--restore--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--restore--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--restore--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -1641,7 +1724,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--restore--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--restore--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--restore--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -1697,8 +1782,17 @@ Optional:
Optional:
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--restore--resources--claims))
- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+### Nested Schema for `spec.backups.pgbackrest.restore.resources.claims`
+
+Required:
+
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.
+
@@ -1734,8 +1828,17 @@ Optional:
Optional:
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--sidecars--pgbackrest--resources--claims))
- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+### Nested Schema for `spec.backups.pgbackrest.sidecars.pgbackrest.resources.claims`
+
+Required:
+
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.
+
@@ -1751,8 +1854,17 @@ Optional:
Optional:
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--backups--pgbackrest--sidecars--pgbackrest_config--resources--claims))
- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+### Nested Schema for `spec.backups.pgbackrest.sidecars.pgbackrest_config.resources.claims`
+
+Required:
+
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.
+
@@ -1792,10 +1904,11 @@ Required:
Optional:
-- `data_source` (Attributes) dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field. (see [below for nested schema](#nestedatt--spec--instances--data_volume_claim_spec--data_source))
-- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef preserves all values, and generates an error if a disallowed value is specified. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--instances--data_volume_claim_spec--data_source_ref))
+- `data_source` (Attributes) dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef, and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified. If the namespace is specified, then dataSourceRef will not be copied to dataSource. (see [below for nested schema](#nestedatt--spec--instances--data_volume_claim_spec--data_source))
+- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the dataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, when namespace isn't specified in dataSourceRef, both fields (dataSource and dataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. When namespace is specified in dataSourceRef, dataSource isn't set to the same value and must be empty. There are three important differences between dataSource and dataSourceRef: * While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified. * While dataSource only allows local objects, dataSourceRef allows objects in any namespaces. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--instances--data_volume_claim_spec--data_source_ref))
- `selector` (Attributes) selector is a label query over volumes to consider for binding. (see [below for nested schema](#nestedatt--spec--instances--data_volume_claim_spec--selector))
- `storage_class_name` (String) storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
+- `volume_attributes_class_name` (String) volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim. If specified, the CSI driver will create or update the volume with the attributes defined in the corresponding VolumeAttributesClass. This has a different purpose than storageClassName, it can be changed after the claim is created. An empty string value means that no VolumeAttributesClass will be applied to the claim but it's not allowed to reset this field to empty string once it is set. If unspecified and the PersistentVolumeClaim is unbound, the default VolumeAttributesClass will be set by the persistentvolume controller if it exists. If the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be set to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource exists. More info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/ (Alpha) Using this field requires the VolumeAttributesClass feature gate to be enabled.
- `volume_mode` (String) volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.
- `volume_name` (String) volumeName is the binding reference to the PersistentVolume backing this claim.
@@ -1804,7 +1917,7 @@ Optional:
Required:
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
Optional:
@@ -1835,6 +1948,7 @@ Required:
Optional:
- `api_group` (String) APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.
+- `namespace` (String) Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.
@@ -1990,7 +2104,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--instances--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--instances--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--instances--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -2049,7 +2165,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--instances--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--instances--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--instances--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -2124,7 +2242,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--instances--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--instances--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--instances--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -2183,7 +2303,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--instances--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--instances--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--instances--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -2251,9 +2373,11 @@ Optional:
- `image_pull_policy` (String) Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images
- `lifecycle` (Attributes) Actions that the management system should take in response to container lifecycle events. Cannot be updated. (see [below for nested schema](#nestedatt--spec--instances--containers--lifecycle))
- `liveness_probe` (Attributes) Periodic probe of container liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes (see [below for nested schema](#nestedatt--spec--instances--containers--liveness_probe))
-- `ports` (Attributes List) List of ports to expose from the container. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default '0.0.0.0' address inside a container will be accessible from the network. Cannot be updated. (see [below for nested schema](#nestedatt--spec--instances--containers--ports))
+- `ports` (Attributes List) List of ports to expose from the container. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default '0.0.0.0' address inside a container will be accessible from the network. Modifying this array with strategic merge patch may corrupt the data. For more information See https://github.com/kubernetes/kubernetes/issues/108255. Cannot be updated. (see [below for nested schema](#nestedatt--spec--instances--containers--ports))
- `readiness_probe` (Attributes) Periodic probe of container service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes (see [below for nested schema](#nestedatt--spec--instances--containers--readiness_probe))
+- `resize_policy` (Attributes List) Resources resize policy for the container. (see [below for nested schema](#nestedatt--spec--instances--containers--resize_policy))
- `resources` (Attributes) Compute Resources required by this container. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/ (see [below for nested schema](#nestedatt--spec--instances--containers--resources))
+- `restart_policy` (String) RestartPolicy defines the restart behavior of individual containers in a pod. This field may only be set for init containers, and the only allowed value is 'Always'. For non-init containers or when this field is not specified, the restart behavior is defined by the Pod's restart policy and the container type. Setting the RestartPolicy as 'Always' for the init container will have the following effect: this init container will be continually restarted on exit until all regular containers have terminated. Once all regular containers have completed, all init containers with restartPolicy 'Always' will be shut down. This lifecycle differs from normal init containers and is often referred to as a 'sidecar' container. Although this init container still starts in the init container sequence, it does not wait for the container to complete before proceeding to the next init container. Instead, the next init container starts immediately after this init container is started, or after any startupProbe has successfully completed.
- `security_context` (Attributes) SecurityContext defines the security options the container should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/ (see [below for nested schema](#nestedatt--spec--instances--containers--security_context))
- `startup_probe` (Attributes) StartupProbe indicates that the Pod has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes (see [below for nested schema](#nestedatt--spec--instances--containers--startup_probe))
- `stdin` (Boolean) Whether this container should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the container will always result in EOF. Default is false.
@@ -2383,6 +2507,7 @@ Optional:
- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--instances--containers--lifecycle--post_start--exec))
- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--instances--containers--lifecycle--post_start--http_get))
+- `sleep` (Attributes) Sleep represents the duration that the container should sleep before being terminated. (see [below for nested schema](#nestedatt--spec--instances--containers--lifecycle--post_start--sleep))
- `tcp_socket` (Attributes) Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept for the backward compatibility. There are no validation of this field and lifecycle hooks will fail in runtime when tcp handler is specified. (see [below for nested schema](#nestedatt--spec--instances--containers--lifecycle--post_start--tcp_socket))
@@ -2412,11 +2537,19 @@ Optional:
Required:
-- `name` (String) The header field name
+- `name` (String) The header field name. This will be canonicalized upon output, so case-variant names will be understood as the same header.
- `value` (String) The header field value
+
+### Nested Schema for `spec.instances.containers.lifecycle.post_start.sleep`
+
+Required:
+
+- `seconds` (Number) Seconds is the number of seconds to sleep.
+
+
### Nested Schema for `spec.instances.containers.lifecycle.post_start.tcp_socket`
@@ -2437,6 +2570,7 @@ Optional:
- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--instances--containers--lifecycle--pre_stop--exec))
- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--instances--containers--lifecycle--pre_stop--http_get))
+- `sleep` (Attributes) Sleep represents the duration that the container should sleep before being terminated. (see [below for nested schema](#nestedatt--spec--instances--containers--lifecycle--pre_stop--sleep))
- `tcp_socket` (Attributes) Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept for the backward compatibility. There are no validation of this field and lifecycle hooks will fail in runtime when tcp handler is specified. (see [below for nested schema](#nestedatt--spec--instances--containers--lifecycle--pre_stop--tcp_socket))
@@ -2466,11 +2600,19 @@ Optional:
Required:
-- `name` (String) The header field name
+- `name` (String) The header field name. This will be canonicalized upon output, so case-variant names will be understood as the same header.
- `value` (String) The header field value
+
+### Nested Schema for `spec.instances.containers.lifecycle.pre_stop.sleep`
+
+Required:
+
+- `seconds` (Number) Seconds is the number of seconds to sleep.
+
+
### Nested Schema for `spec.instances.containers.lifecycle.pre_stop.tcp_socket`
@@ -2492,7 +2634,7 @@ Optional:
- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--instances--containers--liveness_probe--exec))
- `failure_threshold` (Number) Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
-- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. This is a beta field and requires enabling GRPCContainerProbe feature gate. (see [below for nested schema](#nestedatt--spec--instances--containers--liveness_probe--grpc))
+- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. (see [below for nested schema](#nestedatt--spec--instances--containers--liveness_probe--grpc))
- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--instances--containers--liveness_probe--http_get))
- `initial_delay_seconds` (Number) Number of seconds after the container has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
- `period_seconds` (Number) How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
@@ -2540,7 +2682,7 @@ Optional:
Required:
-- `name` (String) The header field name
+- `name` (String) The header field name. This will be canonicalized upon output, so case-variant names will be understood as the same header.
- `value` (String) The header field value
@@ -2580,7 +2722,7 @@ Optional:
- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--instances--containers--readiness_probe--exec))
- `failure_threshold` (Number) Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
-- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. This is a beta field and requires enabling GRPCContainerProbe feature gate. (see [below for nested schema](#nestedatt--spec--instances--containers--readiness_probe--grpc))
+- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. (see [below for nested schema](#nestedatt--spec--instances--containers--readiness_probe--grpc))
- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--instances--containers--readiness_probe--http_get))
- `initial_delay_seconds` (Number) Number of seconds after the container has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
- `period_seconds` (Number) How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
@@ -2628,7 +2770,7 @@ Optional:
Required:
-- `name` (String) The header field name
+- `name` (String) The header field name. This will be canonicalized upon output, so case-variant names will be understood as the same header.
- `value` (String) The header field value
@@ -2646,13 +2788,31 @@ Optional:
+
+### Nested Schema for `spec.instances.containers.resize_policy`
+
+Required:
+
+- `resource_name` (String) Name of the resource to which this resource resize policy applies. Supported values: cpu, memory.
+- `restart_policy` (String) Restart policy to apply when specified resource is resized. If not specified, it defaults to NotRequired.
+
+
### Nested Schema for `spec.instances.containers.resources`
Optional:
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--instances--containers--resources--claims))
- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+### Nested Schema for `spec.instances.containers.resources.claims`
+
+Required:
+
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.
+
@@ -2661,6 +2821,7 @@ Optional:
Optional:
- `allow_privilege_escalation` (Boolean) AllowPrivilegeEscalation controls whether a process can gain more privileges than its parent process. This bool directly controls if the no_new_privs flag will be set on the container process. AllowPrivilegeEscalation is true always when the container is: 1) run as Privileged 2) has CAP_SYS_ADMIN Note that this field cannot be set when spec.os.name is windows.
+- `app_armor_profile` (Attributes) appArmorProfile is the AppArmor options to use by this container. If set, this profile overrides the pod's appArmorProfile. Note that this field cannot be set when spec.os.name is windows. (see [below for nested schema](#nestedatt--spec--instances--containers--security_context--app_armor_profile))
- `capabilities` (Attributes) The capabilities to add/drop when running containers. Defaults to the default set of capabilities granted by the container runtime. Note that this field cannot be set when spec.os.name is windows. (see [below for nested schema](#nestedatt--spec--instances--containers--security_context--capabilities))
- `privileged` (Boolean) Run container in privileged mode. Processes in privileged containers are essentially equivalent to root on the host. Defaults to false. Note that this field cannot be set when spec.os.name is windows.
- `proc_mount` (String) procMount denotes the type of proc mount to use for the containers. The default is DefaultProcMount which uses the container runtime defaults for readonly paths and masked paths. This requires the ProcMountType feature flag to be enabled. Note that this field cannot be set when spec.os.name is windows.
@@ -2672,6 +2833,18 @@ Optional:
- `seccomp_profile` (Attributes) The seccomp options to use by this container. If seccomp options are provided at both the pod & container level, the container options override the pod options. Note that this field cannot be set when spec.os.name is windows. (see [below for nested schema](#nestedatt--spec--instances--containers--security_context--seccomp_profile))
- `windows_options` (Attributes) The Windows specific settings applied to all containers. If unspecified, the options from the PodSecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is linux. (see [below for nested schema](#nestedatt--spec--instances--containers--security_context--windows_options))
+
+### Nested Schema for `spec.instances.containers.security_context.app_armor_profile`
+
+Required:
+
+- `type` (String) type indicates which kind of AppArmor profile will be applied. Valid options are: Localhost - a profile pre-loaded on the node. RuntimeDefault - the container runtime's default profile. Unconfined - no AppArmor enforcement.
+
+Optional:
+
+- `localhost_profile` (String) localhostProfile indicates a profile loaded on the node that should be used. The profile must be preconfigured on the node to work. Must match the loaded name of the profile. Must be set if and only if type is 'Localhost'.
+
+
### Nested Schema for `spec.instances.containers.security_context.capabilities`
@@ -2701,7 +2874,7 @@ Required:
Optional:
-- `localhost_profile` (String) localhostProfile indicates a profile defined in a file on the node should be used. The profile must be preconfigured on the node to work. Must be a descending path, relative to the kubelet's configured seccomp profile location. Must only be set if type is 'Localhost'.
+- `localhost_profile` (String) localhostProfile indicates a profile defined in a file on the node should be used. The profile must be preconfigured on the node to work. Must be a descending path, relative to the kubelet's configured seccomp profile location. Must be set if type is 'Localhost'. Must NOT be set for any other type.
@@ -2711,7 +2884,7 @@ Optional:
- `gmsa_credential_spec` (String) GMSACredentialSpec is where the GMSA admission webhook (https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the GMSA credential spec named by the GMSACredentialSpecName field.
- `gmsa_credential_spec_name` (String) GMSACredentialSpecName is the name of the GMSA credential spec to use.
-- `host_process` (Boolean) HostProcess determines if a container should be run as a 'Host Process' container. This field is alpha-level and will only be honored by components that enable the WindowsHostProcessContainers feature flag. Setting this field without the feature flag will result in errors when validating the Pod. All of a Pod's containers must have the same effective HostProcess value (it is not allowed to have a mix of HostProcess containers and non-HostProcess containers). In addition, if HostProcess is true then HostNetwork must also be set to true.
+- `host_process` (Boolean) HostProcess determines if a container should be run as a 'Host Process' container. All of a Pod's containers must have the same effective HostProcess value (it is not allowed to have a mix of HostProcess containers and non-HostProcess containers). In addition, if HostProcess is true then HostNetwork must also be set to true.
- `run_as_user_name` (String) The UserName in Windows to run the entrypoint of the container process. Defaults to the user specified in image metadata if unspecified. May also be set in PodSecurityContext. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.
@@ -2723,7 +2896,7 @@ Optional:
- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--instances--containers--startup_probe--exec))
- `failure_threshold` (Number) Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
-- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. This is a beta field and requires enabling GRPCContainerProbe feature gate. (see [below for nested schema](#nestedatt--spec--instances--containers--startup_probe--grpc))
+- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. (see [below for nested schema](#nestedatt--spec--instances--containers--startup_probe--grpc))
- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--instances--containers--startup_probe--http_get))
- `initial_delay_seconds` (Number) Number of seconds after the container has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
- `period_seconds` (Number) How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
@@ -2771,7 +2944,7 @@ Optional:
Required:
-- `name` (String) The header field name
+- `name` (String) The header field name. This will be canonicalized upon output, so case-variant names will be understood as the same header.
- `value` (String) The header field value
@@ -2808,8 +2981,9 @@ Required:
Optional:
-- `mount_propagation` (String) mountPropagation determines how mounts are propagated from the host to container and the other way around. When not set, MountPropagationNone is used. This field is beta in 1.10.
+- `mount_propagation` (String) mountPropagation determines how mounts are propagated from the host to container and the other way around. When not set, MountPropagationNone is used. This field is beta in 1.10. When RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified (which defaults to None).
- `read_only` (Boolean) Mounted read-only if true, read-write otherwise (false or unspecified). Defaults to false.
+- `recursive_read_only` (String) RecursiveReadOnly specifies whether read-only mounts should be handled recursively. If ReadOnly is false, this field has no meaning and must be unspecified. If ReadOnly is true, and this field is set to Disabled, the mount is not made recursively read-only. If this field is set to IfPossible, the mount is made recursively read-only, if it is supported by the container runtime. If this field is set to Enabled, the mount is made recursively read-only if it is supported by the container runtime, otherwise the pod will not be started and an error will be generated to indicate the reason. If this field is set to IfPossible or Enabled, MountPropagation must be set to None (or be unspecified, which defaults to None). If this field is not specified, it is treated as an equivalent of Disabled.
- `sub_path` (String) Path within the volume from which the container's volume should be mounted. Defaults to '' (volume's root).
- `sub_path_expr` (String) Expanded path within the volume from which the container's volume should be mounted. Behaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment. Defaults to '' (volume's root). SubPathExpr and SubPath are mutually exclusive.
@@ -2829,8 +3003,17 @@ Optional:
Optional:
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--instances--resources--claims))
- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+### Nested Schema for `spec.instances.resources.claims`
+
+Required:
+
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.
+
@@ -2852,8 +3035,17 @@ Optional:
Optional:
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--instances--sidecars--replica_cert_copy--resources--claims))
- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+### Nested Schema for `spec.instances.sidecars.replica_cert_copy.resources.claims`
+
+Required:
+
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.
+
@@ -2872,11 +3064,12 @@ Required:
Optional:
- `access_modes` (List of String) accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
-- `data_source` (Attributes) dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field. (see [below for nested schema](#nestedatt--spec--instances--tablespace_volumes--data_volume_claim_spec--data_source))
-- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef preserves all values, and generates an error if a disallowed value is specified. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--instances--tablespace_volumes--data_volume_claim_spec--data_source_ref))
+- `data_source` (Attributes) dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef, and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified. If the namespace is specified, then dataSourceRef will not be copied to dataSource. (see [below for nested schema](#nestedatt--spec--instances--tablespace_volumes--data_volume_claim_spec--data_source))
+- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the dataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, when namespace isn't specified in dataSourceRef, both fields (dataSource and dataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. When namespace is specified in dataSourceRef, dataSource isn't set to the same value and must be empty. There are three important differences between dataSource and dataSourceRef: * While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified. * While dataSource only allows local objects, dataSourceRef allows objects in any namespaces. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--instances--tablespace_volumes--data_volume_claim_spec--data_source_ref))
- `resources` (Attributes) resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources (see [below for nested schema](#nestedatt--spec--instances--tablespace_volumes--data_volume_claim_spec--resources))
- `selector` (Attributes) selector is a label query over volumes to consider for binding. (see [below for nested schema](#nestedatt--spec--instances--tablespace_volumes--data_volume_claim_spec--selector))
- `storage_class_name` (String) storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
+- `volume_attributes_class_name` (String) volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim. If specified, the CSI driver will create or update the volume with the attributes defined in the corresponding VolumeAttributesClass. This has a different purpose than storageClassName, it can be changed after the claim is created. An empty string value means that no VolumeAttributesClass will be applied to the claim but it's not allowed to reset this field to empty string once it is set. If unspecified and the PersistentVolumeClaim is unbound, the default VolumeAttributesClass will be set by the persistentvolume controller if it exists. If the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be set to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource exists. More info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/ (Alpha) Using this field requires the VolumeAttributesClass feature gate to be enabled.
- `volume_mode` (String) volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.
- `volume_name` (String) volumeName is the binding reference to the PersistentVolume backing this claim.
@@ -2904,6 +3097,7 @@ Required:
Optional:
- `api_group` (String) APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.
+- `namespace` (String) Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.
@@ -2912,7 +3106,7 @@ Optional:
Optional:
- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
@@ -2957,13 +3151,16 @@ Optional:
Required:
- `max_skew` (Number) MaxSkew describes the degree to which pods may be unevenly distributed. When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | | P P | P P | P | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.
-- `topology_key` (String) TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each as a 'bucket', and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes match the node selector. e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology. And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology. It's a required field.
+- `topology_key` (String) TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each as a 'bucket', and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes meet the requirements of nodeAffinityPolicy and nodeTaintsPolicy. e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology. And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology. It's a required field.
- `when_unsatisfiable` (String) WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew. A constraint is considered 'Unsatisfiable' for an incoming pod if and only if every possible node assignment for that pod would violate 'MaxSkew' on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P | P | P | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.
Optional:
- `label_selector` (Attributes) LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain. (see [below for nested schema](#nestedatt--spec--instances--topology_spread_constraints--label_selector))
-- `min_domains` (Number) MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule. For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | | P P | P P | P P | The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew. This is an alpha field and requires enabling MinDomainsInPodTopologySpread feature gate.
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select the pods over which spreading will be calculated. The keys are used to lookup values from the incoming pod labels, those key-value labels are ANDed with labelSelector to select the group of existing pods over which spreading will be calculated for the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector. MatchLabelKeys cannot be set when LabelSelector isn't set. Keys that don't exist in the incoming pod labels will be ignored. A null or empty list means only match against labelSelector. This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).
+- `min_domains` (Number) MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule. For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | | P P | P P | P P | The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew.
+- `node_affinity_policy` (String) NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector when calculating pod topology spread skew. Options are: - Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations. - Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations. If this value is nil, the behavior is equivalent to the Honor policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.
+- `node_taints_policy` (String) NodeTaintsPolicy indicates how we will treat node taints when calculating pod topology spread skew. Options are: - Honor: nodes without taints, along with tainted nodes for which the incoming pod has a toleration, are included. - Ignore: node taints are ignored. All nodes are included. If this value is nil, the behavior is equivalent to the Ignore policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.
### Nested Schema for `spec.instances.topology_spread_constraints.label_selector`
@@ -2998,10 +3195,11 @@ Required:
Optional:
-- `data_source` (Attributes) dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field. (see [below for nested schema](#nestedatt--spec--instances--wal_volume_claim_spec--data_source))
-- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef preserves all values, and generates an error if a disallowed value is specified. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--instances--wal_volume_claim_spec--data_source_ref))
+- `data_source` (Attributes) dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef, and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified. If the namespace is specified, then dataSourceRef will not be copied to dataSource. (see [below for nested schema](#nestedatt--spec--instances--wal_volume_claim_spec--data_source))
+- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the dataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, when namespace isn't specified in dataSourceRef, both fields (dataSource and dataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. When namespace is specified in dataSourceRef, dataSource isn't set to the same value and must be empty. There are three important differences between dataSource and dataSourceRef: * While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified. * While dataSource only allows local objects, dataSourceRef allows objects in any namespaces. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--instances--wal_volume_claim_spec--data_source_ref))
- `selector` (Attributes) selector is a label query over volumes to consider for binding. (see [below for nested schema](#nestedatt--spec--instances--wal_volume_claim_spec--selector))
- `storage_class_name` (String) storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
+- `volume_attributes_class_name` (String) volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim. If specified, the CSI driver will create or update the volume with the attributes defined in the corresponding VolumeAttributesClass. This has a different purpose than storageClassName, it can be changed after the claim is created. An empty string value means that no VolumeAttributesClass will be applied to the claim but it's not allowed to reset this field to empty string once it is set. If unspecified and the PersistentVolumeClaim is unbound, the default VolumeAttributesClass will be set by the persistentvolume controller if it exists. If the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be set to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource exists. More info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/ (Alpha) Using this field requires the VolumeAttributesClass feature gate to be enabled.
- `volume_mode` (String) volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.
- `volume_name` (String) volumeName is the binding reference to the PersistentVolume backing this claim.
@@ -3010,7 +3208,7 @@ Optional:
Required:
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
Optional:
@@ -3041,6 +3239,7 @@ Required:
Optional:
- `api_group` (String) APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.
+- `namespace` (String) Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.
@@ -3079,11 +3278,49 @@ Optional:
Optional:
+- `cluster_trust_bundle` (Attributes) ClusterTrustBundle allows a pod to access the '.spec.trustBundle' field of ClusterTrustBundle objects in an auto-updating file. Alpha, gated by the ClusterTrustBundleProjection feature gate. ClusterTrustBundle objects can either be selected by name, or by the combination of signer name and a label selector. Kubelet performs aggressive normalization of the PEM contents written into the pod filesystem. Esoteric PEM features such as inter-block comments and block headers are stripped. Certificates are deduplicated. The ordering of certificates within the file is arbitrary, and Kubelet may change the order over time. (see [below for nested schema](#nestedatt--spec--config--files--cluster_trust_bundle))
- `config_map` (Attributes) configMap information about the configMap data to project (see [below for nested schema](#nestedatt--spec--config--files--config_map))
- `downward_api` (Attributes) downwardAPI information about the downwardAPI data to project (see [below for nested schema](#nestedatt--spec--config--files--downward_api))
- `secret` (Attributes) secret information about the secret data to project (see [below for nested schema](#nestedatt--spec--config--files--secret))
- `service_account_token` (Attributes) serviceAccountToken is information about the serviceAccountToken data to project (see [below for nested schema](#nestedatt--spec--config--files--service_account_token))
+
+### Nested Schema for `spec.config.files.cluster_trust_bundle`
+
+Required:
+
+- `path` (String) Relative path from the volume root to write the bundle.
+
+Optional:
+
+- `label_selector` (Attributes) Select all ClusterTrustBundles that match this label selector. Only has effect if signerName is set. Mutually-exclusive with name. If unset, interpreted as 'match nothing'. If set but empty, interpreted as 'match everything'. (see [below for nested schema](#nestedatt--spec--config--files--cluster_trust_bundle--label_selector))
+- `name` (String) Select a single ClusterTrustBundle by object name. Mutually-exclusive with signerName and labelSelector.
+- `optional` (Boolean) If true, don't block pod startup if the referenced ClusterTrustBundle(s) aren't available. If using name, then the named ClusterTrustBundle is allowed not to exist. If using signerName, then the combination of signerName and labelSelector is allowed to match zero ClusterTrustBundles.
+- `signer_name` (String) Select all ClusterTrustBundles that match this signer name. Mutually-exclusive with name. The contents of all selected ClusterTrustBundles will be unified and deduplicated.
+
+
+### Nested Schema for `spec.config.files.cluster_trust_bundle.label_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--config--files--cluster_trust_bundle--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is 'key', the operator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.config.files.cluster_trust_bundle.label_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.
+
+
+
+
### Nested Schema for `spec.config.files.config_map`
@@ -3123,7 +3360,7 @@ Required:
Optional:
-- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name and namespace are supported. (see [below for nested schema](#nestedatt--spec--config--files--downward_api--items--field_ref))
+- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported. (see [below for nested schema](#nestedatt--spec--config--files--downward_api--items--field_ref))
- `mode` (Number) Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported. (see [below for nested schema](#nestedatt--spec--config--files--downward_api--items--resource_field_ref))
@@ -3329,11 +3566,12 @@ Required:
Optional:
- `access_modes` (List of String) accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
-- `data_source` (Attributes) dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--repo--volume--volume_claim_spec--data_source))
-- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef preserves all values, and generates an error if a disallowed value is specified. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--repo--volume--volume_claim_spec--data_source_ref))
+- `data_source` (Attributes) dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef, and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified. If the namespace is specified, then dataSourceRef will not be copied to dataSource. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--repo--volume--volume_claim_spec--data_source))
+- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the dataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, when namespace isn't specified in dataSourceRef, both fields (dataSource and dataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. When namespace is specified in dataSourceRef, dataSource isn't set to the same value and must be empty. There are three important differences between dataSource and dataSourceRef: * While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified. * While dataSource only allows local objects, dataSourceRef allows objects in any namespaces. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--repo--volume--volume_claim_spec--data_source_ref))
- `resources` (Attributes) resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--repo--volume--volume_claim_spec--resources))
- `selector` (Attributes) selector is a label query over volumes to consider for binding. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--repo--volume--volume_claim_spec--selector))
- `storage_class_name` (String) storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
+- `volume_attributes_class_name` (String) volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim. If specified, the CSI driver will create or update the volume with the attributes defined in the corresponding VolumeAttributesClass. This has a different purpose than storageClassName, it can be changed after the claim is created. An empty string value means that no VolumeAttributesClass will be applied to the claim but it's not allowed to reset this field to empty string once it is set. If unspecified and the PersistentVolumeClaim is unbound, the default VolumeAttributesClass will be set by the persistentvolume controller if it exists. If the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be set to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource exists. More info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/ (Alpha) Using this field requires the VolumeAttributesClass feature gate to be enabled.
- `volume_mode` (String) volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.
- `volume_name` (String) volumeName is the binding reference to the PersistentVolume backing this claim.
@@ -3361,6 +3599,7 @@ Required:
Optional:
- `api_group` (String) APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.
+- `namespace` (String) Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.
@@ -3369,7 +3608,7 @@ Optional:
Optional:
- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
@@ -3527,7 +3766,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -3586,7 +3827,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -3661,7 +3904,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -3720,7 +3965,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -3776,11 +4023,49 @@ Optional:
Optional:
+- `cluster_trust_bundle` (Attributes) ClusterTrustBundle allows a pod to access the '.spec.trustBundle' field of ClusterTrustBundle objects in an auto-updating file. Alpha, gated by the ClusterTrustBundleProjection feature gate. ClusterTrustBundle objects can either be selected by name, or by the combination of signer name and a label selector. Kubelet performs aggressive normalization of the PEM contents written into the pod filesystem. Esoteric PEM features such as inter-block comments and block headers are stripped. Certificates are deduplicated. The ordering of certificates within the file is arbitrary, and Kubelet may change the order over time. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--configuration--cluster_trust_bundle))
- `config_map` (Attributes) configMap information about the configMap data to project (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--configuration--config_map))
- `downward_api` (Attributes) downwardAPI information about the downwardAPI data to project (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--configuration--downward_api))
- `secret` (Attributes) secret information about the secret data to project (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--configuration--secret))
- `service_account_token` (Attributes) serviceAccountToken is information about the serviceAccountToken data to project (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--configuration--service_account_token))
+
+### Nested Schema for `spec.data_source.pgbackrest.configuration.cluster_trust_bundle`
+
+Required:
+
+- `path` (String) Relative path from the volume root to write the bundle.
+
+Optional:
+
+- `label_selector` (Attributes) Select all ClusterTrustBundles that match this label selector. Only has effect if signerName is set. Mutually-exclusive with name. If unset, interpreted as 'match nothing'. If set but empty, interpreted as 'match everything'. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--configuration--cluster_trust_bundle--label_selector))
+- `name` (String) Select a single ClusterTrustBundle by object name. Mutually-exclusive with signerName and labelSelector.
+- `optional` (Boolean) If true, don't block pod startup if the referenced ClusterTrustBundle(s) aren't available. If using name, then the named ClusterTrustBundle is allowed not to exist. If using signerName, then the combination of signerName and labelSelector is allowed to match zero ClusterTrustBundles.
+- `signer_name` (String) Select all ClusterTrustBundles that match this signer name. Mutually-exclusive with name. The contents of all selected ClusterTrustBundles will be unified and deduplicated.
+
+
+### Nested Schema for `spec.data_source.pgbackrest.configuration.cluster_trust_bundle.label_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--configuration--cluster_trust_bundle--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is 'key', the operator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.data_source.pgbackrest.configuration.cluster_trust_bundle.label_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.
+
+
+
+
### Nested Schema for `spec.data_source.pgbackrest.configuration.config_map`
@@ -3820,7 +4105,7 @@ Required:
Optional:
-- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name and namespace are supported. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--configuration--downward_api--items--field_ref))
+- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--configuration--downward_api--items--field_ref))
- `mode` (Number) Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--configuration--downward_api--items--resource_field_ref))
@@ -3893,8 +4178,17 @@ Optional:
Optional:
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--data_source--pgbackrest--resources--claims))
- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+### Nested Schema for `spec.data_source.pgbackrest.resources.claims`
+
+Required:
+
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.
+
@@ -4057,7 +4351,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--data_source--postgres_cluster--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--data_source--postgres_cluster--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--data_source--postgres_cluster--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -4116,7 +4412,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--data_source--postgres_cluster--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--data_source--postgres_cluster--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--data_source--postgres_cluster--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -4191,7 +4489,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--data_source--postgres_cluster--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--data_source--postgres_cluster--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--data_source--postgres_cluster--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -4250,7 +4550,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--data_source--postgres_cluster--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--data_source--postgres_cluster--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--data_source--postgres_cluster--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -4306,8 +4608,17 @@ Optional:
Optional:
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--data_source--postgres_cluster--resources--claims))
- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+### Nested Schema for `spec.data_source.postgres_cluster.resources.claims`
+
+Required:
+
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.
+
@@ -4425,11 +4736,49 @@ Optional:
Optional:
+- `cluster_trust_bundle` (Attributes) ClusterTrustBundle allows a pod to access the '.spec.trustBundle' field of ClusterTrustBundle objects in an auto-updating file. Alpha, gated by the ClusterTrustBundleProjection feature gate. ClusterTrustBundle objects can either be selected by name, or by the combination of signer name and a label selector. Kubelet performs aggressive normalization of the PEM contents written into the pod filesystem. Esoteric PEM features such as inter-block comments and block headers are stripped. Certificates are deduplicated. The ordering of certificates within the file is arbitrary, and Kubelet may change the order over time. (see [below for nested schema](#nestedatt--spec--monitoring--pgmonitor--exporter--configuration--cluster_trust_bundle))
- `config_map` (Attributes) configMap information about the configMap data to project (see [below for nested schema](#nestedatt--spec--monitoring--pgmonitor--exporter--configuration--config_map))
- `downward_api` (Attributes) downwardAPI information about the downwardAPI data to project (see [below for nested schema](#nestedatt--spec--monitoring--pgmonitor--exporter--configuration--downward_api))
- `secret` (Attributes) secret information about the secret data to project (see [below for nested schema](#nestedatt--spec--monitoring--pgmonitor--exporter--configuration--secret))
- `service_account_token` (Attributes) serviceAccountToken is information about the serviceAccountToken data to project (see [below for nested schema](#nestedatt--spec--monitoring--pgmonitor--exporter--configuration--service_account_token))
+
+### Nested Schema for `spec.monitoring.pgmonitor.exporter.configuration.cluster_trust_bundle`
+
+Required:
+
+- `path` (String) Relative path from the volume root to write the bundle.
+
+Optional:
+
+- `label_selector` (Attributes) Select all ClusterTrustBundles that match this label selector. Only has effect if signerName is set. Mutually-exclusive with name. If unset, interpreted as 'match nothing'. If set but empty, interpreted as 'match everything'. (see [below for nested schema](#nestedatt--spec--monitoring--pgmonitor--exporter--configuration--cluster_trust_bundle--label_selector))
+- `name` (String) Select a single ClusterTrustBundle by object name. Mutually-exclusive with signerName and labelSelector.
+- `optional` (Boolean) If true, don't block pod startup if the referenced ClusterTrustBundle(s) aren't available. If using name, then the named ClusterTrustBundle is allowed not to exist. If using signerName, then the combination of signerName and labelSelector is allowed to match zero ClusterTrustBundles.
+- `signer_name` (String) Select all ClusterTrustBundles that match this signer name. Mutually-exclusive with name. The contents of all selected ClusterTrustBundles will be unified and deduplicated.
+
+
+### Nested Schema for `spec.monitoring.pgmonitor.exporter.configuration.cluster_trust_bundle.label_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--monitoring--pgmonitor--exporter--configuration--cluster_trust_bundle--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is 'key', the operator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.monitoring.pgmonitor.exporter.configuration.cluster_trust_bundle.label_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.
+
+
+
+
### Nested Schema for `spec.monitoring.pgmonitor.exporter.configuration.config_map`
@@ -4469,7 +4818,7 @@ Required:
Optional:
-- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name and namespace are supported. (see [below for nested schema](#nestedatt--spec--monitoring--pgmonitor--exporter--configuration--downward_api--items--field_ref))
+- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported. (see [below for nested schema](#nestedatt--spec--monitoring--pgmonitor--exporter--configuration--downward_api--items--field_ref))
- `mode` (Number) Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported. (see [below for nested schema](#nestedatt--spec--monitoring--pgmonitor--exporter--configuration--downward_api--items--resource_field_ref))
@@ -4565,8 +4914,17 @@ Optional:
Optional:
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--monitoring--pgmonitor--exporter--resources--claims))
- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+### Nested Schema for `spec.monitoring.pgmonitor.exporter.resources.claims`
+
+Required:
+
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.
+
@@ -4755,7 +5113,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -4814,7 +5174,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -4889,7 +5251,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -4948,7 +5312,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -5014,11 +5380,49 @@ Optional:
Optional:
+- `cluster_trust_bundle` (Attributes) ClusterTrustBundle allows a pod to access the '.spec.trustBundle' field of ClusterTrustBundle objects in an auto-updating file. Alpha, gated by the ClusterTrustBundleProjection feature gate. ClusterTrustBundle objects can either be selected by name, or by the combination of signer name and a label selector. Kubelet performs aggressive normalization of the PEM contents written into the pod filesystem. Esoteric PEM features such as inter-block comments and block headers are stripped. Certificates are deduplicated. The ordering of certificates within the file is arbitrary, and Kubelet may change the order over time. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--config--files--cluster_trust_bundle))
- `config_map` (Attributes) configMap information about the configMap data to project (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--config--files--config_map))
- `downward_api` (Attributes) downwardAPI information about the downwardAPI data to project (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--config--files--downward_api))
- `secret` (Attributes) secret information about the secret data to project (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--config--files--secret))
- `service_account_token` (Attributes) serviceAccountToken is information about the serviceAccountToken data to project (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--config--files--service_account_token))
+
+### Nested Schema for `spec.proxy.pg_bouncer.config.files.cluster_trust_bundle`
+
+Required:
+
+- `path` (String) Relative path from the volume root to write the bundle.
+
+Optional:
+
+- `label_selector` (Attributes) Select all ClusterTrustBundles that match this label selector. Only has effect if signerName is set. Mutually-exclusive with name. If unset, interpreted as 'match nothing'. If set but empty, interpreted as 'match everything'. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--config--files--cluster_trust_bundle--label_selector))
+- `name` (String) Select a single ClusterTrustBundle by object name. Mutually-exclusive with signerName and labelSelector.
+- `optional` (Boolean) If true, don't block pod startup if the referenced ClusterTrustBundle(s) aren't available. If using name, then the named ClusterTrustBundle is allowed not to exist. If using signerName, then the combination of signerName and labelSelector is allowed to match zero ClusterTrustBundles.
+- `signer_name` (String) Select all ClusterTrustBundles that match this signer name. Mutually-exclusive with name. The contents of all selected ClusterTrustBundles will be unified and deduplicated.
+
+
+### Nested Schema for `spec.proxy.pg_bouncer.config.files.cluster_trust_bundle.label_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--config--files--cluster_trust_bundle--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is 'key', the operator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.proxy.pg_bouncer.config.files.cluster_trust_bundle.label_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.
+
+
+
+
### Nested Schema for `spec.proxy.pg_bouncer.config.files.config_map`
@@ -5058,7 +5462,7 @@ Required:
Optional:
-- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name and namespace are supported. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--config--files--downward_api--items--field_ref))
+- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--config--files--downward_api--items--field_ref))
- `mode` (Number) Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--config--files--downward_api--items--resource_field_ref))
@@ -5144,9 +5548,11 @@ Optional:
- `image_pull_policy` (String) Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images
- `lifecycle` (Attributes) Actions that the management system should take in response to container lifecycle events. Cannot be updated. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--lifecycle))
- `liveness_probe` (Attributes) Periodic probe of container liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--liveness_probe))
-- `ports` (Attributes List) List of ports to expose from the container. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default '0.0.0.0' address inside a container will be accessible from the network. Cannot be updated. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--ports))
+- `ports` (Attributes List) List of ports to expose from the container. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default '0.0.0.0' address inside a container will be accessible from the network. Modifying this array with strategic merge patch may corrupt the data. For more information See https://github.com/kubernetes/kubernetes/issues/108255. Cannot be updated. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--ports))
- `readiness_probe` (Attributes) Periodic probe of container service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--readiness_probe))
+- `resize_policy` (Attributes List) Resources resize policy for the container. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--resize_policy))
- `resources` (Attributes) Compute Resources required by this container. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/ (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--resources))
+- `restart_policy` (String) RestartPolicy defines the restart behavior of individual containers in a pod. This field may only be set for init containers, and the only allowed value is 'Always'. For non-init containers or when this field is not specified, the restart behavior is defined by the Pod's restart policy and the container type. Setting the RestartPolicy as 'Always' for the init container will have the following effect: this init container will be continually restarted on exit until all regular containers have terminated. Once all regular containers have completed, all init containers with restartPolicy 'Always' will be shut down. This lifecycle differs from normal init containers and is often referred to as a 'sidecar' container. Although this init container still starts in the init container sequence, it does not wait for the container to complete before proceeding to the next init container. Instead, the next init container starts immediately after this init container is started, or after any startupProbe has successfully completed.
- `security_context` (Attributes) SecurityContext defines the security options the container should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/ (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--security_context))
- `startup_probe` (Attributes) StartupProbe indicates that the Pod has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--startup_probe))
- `stdin` (Boolean) Whether this container should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the container will always result in EOF. Default is false.
@@ -5276,6 +5682,7 @@ Optional:
- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--lifecycle--post_start--exec))
- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--lifecycle--post_start--http_get))
+- `sleep` (Attributes) Sleep represents the duration that the container should sleep before being terminated. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--lifecycle--post_start--sleep))
- `tcp_socket` (Attributes) Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept for the backward compatibility. There are no validation of this field and lifecycle hooks will fail in runtime when tcp handler is specified. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--lifecycle--post_start--tcp_socket))
@@ -5305,11 +5712,19 @@ Optional:
Required:
-- `name` (String) The header field name
+- `name` (String) The header field name. This will be canonicalized upon output, so case-variant names will be understood as the same header.
- `value` (String) The header field value
+
+### Nested Schema for `spec.proxy.pg_bouncer.containers.lifecycle.post_start.sleep`
+
+Required:
+
+- `seconds` (Number) Seconds is the number of seconds to sleep.
+
+
### Nested Schema for `spec.proxy.pg_bouncer.containers.lifecycle.post_start.tcp_socket`
@@ -5330,6 +5745,7 @@ Optional:
- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--lifecycle--pre_stop--exec))
- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--lifecycle--pre_stop--http_get))
+- `sleep` (Attributes) Sleep represents the duration that the container should sleep before being terminated. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--lifecycle--pre_stop--sleep))
- `tcp_socket` (Attributes) Deprecated. TCPSocket is NOT supported as a LifecycleHandler and kept for the backward compatibility. There are no validation of this field and lifecycle hooks will fail in runtime when tcp handler is specified. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--lifecycle--pre_stop--tcp_socket))
@@ -5359,11 +5775,19 @@ Optional:
Required:
-- `name` (String) The header field name
+- `name` (String) The header field name. This will be canonicalized upon output, so case-variant names will be understood as the same header.
- `value` (String) The header field value
+
+### Nested Schema for `spec.proxy.pg_bouncer.containers.lifecycle.pre_stop.sleep`
+
+Required:
+
+- `seconds` (Number) Seconds is the number of seconds to sleep.
+
+
### Nested Schema for `spec.proxy.pg_bouncer.containers.lifecycle.pre_stop.tcp_socket`
@@ -5385,7 +5809,7 @@ Optional:
- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--liveness_probe--exec))
- `failure_threshold` (Number) Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
-- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. This is a beta field and requires enabling GRPCContainerProbe feature gate. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--liveness_probe--grpc))
+- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--liveness_probe--grpc))
- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--liveness_probe--http_get))
- `initial_delay_seconds` (Number) Number of seconds after the container has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
- `period_seconds` (Number) How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
@@ -5433,7 +5857,7 @@ Optional:
Required:
-- `name` (String) The header field name
+- `name` (String) The header field name. This will be canonicalized upon output, so case-variant names will be understood as the same header.
- `value` (String) The header field value
@@ -5473,7 +5897,7 @@ Optional:
- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--readiness_probe--exec))
- `failure_threshold` (Number) Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
-- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. This is a beta field and requires enabling GRPCContainerProbe feature gate. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--readiness_probe--grpc))
+- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--readiness_probe--grpc))
- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--readiness_probe--http_get))
- `initial_delay_seconds` (Number) Number of seconds after the container has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
- `period_seconds` (Number) How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
@@ -5521,7 +5945,7 @@ Optional:
Required:
-- `name` (String) The header field name
+- `name` (String) The header field name. This will be canonicalized upon output, so case-variant names will be understood as the same header.
- `value` (String) The header field value
@@ -5539,13 +5963,31 @@ Optional:
+
+### Nested Schema for `spec.proxy.pg_bouncer.containers.resize_policy`
+
+Required:
+
+- `resource_name` (String) Name of the resource to which this resource resize policy applies. Supported values: cpu, memory.
+- `restart_policy` (String) Restart policy to apply when specified resource is resized. If not specified, it defaults to NotRequired.
+
+
### Nested Schema for `spec.proxy.pg_bouncer.containers.resources`
Optional:
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--resources--claims))
- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+### Nested Schema for `spec.proxy.pg_bouncer.containers.resources.claims`
+
+Required:
+
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.
+
@@ -5554,6 +5996,7 @@ Optional:
Optional:
- `allow_privilege_escalation` (Boolean) AllowPrivilegeEscalation controls whether a process can gain more privileges than its parent process. This bool directly controls if the no_new_privs flag will be set on the container process. AllowPrivilegeEscalation is true always when the container is: 1) run as Privileged 2) has CAP_SYS_ADMIN Note that this field cannot be set when spec.os.name is windows.
+- `app_armor_profile` (Attributes) appArmorProfile is the AppArmor options to use by this container. If set, this profile overrides the pod's appArmorProfile. Note that this field cannot be set when spec.os.name is windows. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--security_context--app_armor_profile))
- `capabilities` (Attributes) The capabilities to add/drop when running containers. Defaults to the default set of capabilities granted by the container runtime. Note that this field cannot be set when spec.os.name is windows. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--security_context--capabilities))
- `privileged` (Boolean) Run container in privileged mode. Processes in privileged containers are essentially equivalent to root on the host. Defaults to false. Note that this field cannot be set when spec.os.name is windows.
- `proc_mount` (String) procMount denotes the type of proc mount to use for the containers. The default is DefaultProcMount which uses the container runtime defaults for readonly paths and masked paths. This requires the ProcMountType feature flag to be enabled. Note that this field cannot be set when spec.os.name is windows.
@@ -5565,6 +6008,18 @@ Optional:
- `seccomp_profile` (Attributes) The seccomp options to use by this container. If seccomp options are provided at both the pod & container level, the container options override the pod options. Note that this field cannot be set when spec.os.name is windows. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--security_context--seccomp_profile))
- `windows_options` (Attributes) The Windows specific settings applied to all containers. If unspecified, the options from the PodSecurityContext will be used. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence. Note that this field cannot be set when spec.os.name is linux. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--security_context--windows_options))
+
+### Nested Schema for `spec.proxy.pg_bouncer.containers.security_context.app_armor_profile`
+
+Required:
+
+- `type` (String) type indicates which kind of AppArmor profile will be applied. Valid options are: Localhost - a profile pre-loaded on the node. RuntimeDefault - the container runtime's default profile. Unconfined - no AppArmor enforcement.
+
+Optional:
+
+- `localhost_profile` (String) localhostProfile indicates a profile loaded on the node that should be used. The profile must be preconfigured on the node to work. Must match the loaded name of the profile. Must be set if and only if type is 'Localhost'.
+
+
### Nested Schema for `spec.proxy.pg_bouncer.containers.security_context.capabilities`
@@ -5594,7 +6049,7 @@ Required:
Optional:
-- `localhost_profile` (String) localhostProfile indicates a profile defined in a file on the node should be used. The profile must be preconfigured on the node to work. Must be a descending path, relative to the kubelet's configured seccomp profile location. Must only be set if type is 'Localhost'.
+- `localhost_profile` (String) localhostProfile indicates a profile defined in a file on the node should be used. The profile must be preconfigured on the node to work. Must be a descending path, relative to the kubelet's configured seccomp profile location. Must be set if type is 'Localhost'. Must NOT be set for any other type.
@@ -5604,7 +6059,7 @@ Optional:
- `gmsa_credential_spec` (String) GMSACredentialSpec is where the GMSA admission webhook (https://github.com/kubernetes-sigs/windows-gmsa) inlines the contents of the GMSA credential spec named by the GMSACredentialSpecName field.
- `gmsa_credential_spec_name` (String) GMSACredentialSpecName is the name of the GMSA credential spec to use.
-- `host_process` (Boolean) HostProcess determines if a container should be run as a 'Host Process' container. This field is alpha-level and will only be honored by components that enable the WindowsHostProcessContainers feature flag. Setting this field without the feature flag will result in errors when validating the Pod. All of a Pod's containers must have the same effective HostProcess value (it is not allowed to have a mix of HostProcess containers and non-HostProcess containers). In addition, if HostProcess is true then HostNetwork must also be set to true.
+- `host_process` (Boolean) HostProcess determines if a container should be run as a 'Host Process' container. All of a Pod's containers must have the same effective HostProcess value (it is not allowed to have a mix of HostProcess containers and non-HostProcess containers). In addition, if HostProcess is true then HostNetwork must also be set to true.
- `run_as_user_name` (String) The UserName in Windows to run the entrypoint of the container process. Defaults to the user specified in image metadata if unspecified. May also be set in PodSecurityContext. If set in both SecurityContext and PodSecurityContext, the value specified in SecurityContext takes precedence.
@@ -5616,7 +6071,7 @@ Optional:
- `exec` (Attributes) Exec specifies the action to take. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--startup_probe--exec))
- `failure_threshold` (Number) Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.
-- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. This is a beta field and requires enabling GRPCContainerProbe feature gate. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--startup_probe--grpc))
+- `grpc` (Attributes) GRPC specifies an action involving a GRPC port. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--startup_probe--grpc))
- `http_get` (Attributes) HTTPGet specifies the http request to perform. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--containers--startup_probe--http_get))
- `initial_delay_seconds` (Number) Number of seconds after the container has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes
- `period_seconds` (Number) How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
@@ -5664,7 +6119,7 @@ Optional:
Required:
-- `name` (String) The header field name
+- `name` (String) The header field name. This will be canonicalized upon output, so case-variant names will be understood as the same header.
- `value` (String) The header field value
@@ -5701,8 +6156,9 @@ Required:
Optional:
-- `mount_propagation` (String) mountPropagation determines how mounts are propagated from the host to container and the other way around. When not set, MountPropagationNone is used. This field is beta in 1.10.
+- `mount_propagation` (String) mountPropagation determines how mounts are propagated from the host to container and the other way around. When not set, MountPropagationNone is used. This field is beta in 1.10. When RecursiveReadOnly is set to IfPossible or to Enabled, MountPropagation must be None or unspecified (which defaults to None).
- `read_only` (Boolean) Mounted read-only if true, read-write otherwise (false or unspecified). Defaults to false.
+- `recursive_read_only` (String) RecursiveReadOnly specifies whether read-only mounts should be handled recursively. If ReadOnly is false, this field has no meaning and must be unspecified. If ReadOnly is true, and this field is set to Disabled, the mount is not made recursively read-only. If this field is set to IfPossible, the mount is made recursively read-only, if it is supported by the container runtime. If this field is set to Enabled, the mount is made recursively read-only if it is supported by the container runtime, otherwise the pod will not be started and an error will be generated to indicate the reason. If this field is set to IfPossible or Enabled, MountPropagation must be set to None (or be unspecified, which defaults to None). If this field is not specified, it is treated as an equivalent of Disabled.
- `sub_path` (String) Path within the volume from which the container's volume should be mounted. Defaults to '' (volume's root).
- `sub_path_expr` (String) Expanded path within the volume from which the container's volume should be mounted. Behaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment. Defaults to '' (volume's root). SubPathExpr and SubPath are mutually exclusive.
@@ -5745,8 +6201,17 @@ Optional:
Optional:
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--resources--claims))
- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+### Nested Schema for `spec.proxy.pg_bouncer.resources.claims`
+
+Required:
+
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.
+
@@ -5789,8 +6254,17 @@ Optional:
Optional:
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--sidecars--pgbouncer_config--resources--claims))
- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+### Nested Schema for `spec.proxy.pg_bouncer.sidecars.pgbouncer_config.resources.claims`
+
+Required:
+
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.
+
@@ -5813,13 +6287,16 @@ Optional:
Required:
- `max_skew` (Number) MaxSkew describes the degree to which pods may be unevenly distributed. When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | | P P | P P | P | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.
-- `topology_key` (String) TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each as a 'bucket', and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes match the node selector. e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology. And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology. It's a required field.
+- `topology_key` (String) TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each as a 'bucket', and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes meet the requirements of nodeAffinityPolicy and nodeTaintsPolicy. e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology. And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology. It's a required field.
- `when_unsatisfiable` (String) WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew. A constraint is considered 'Unsatisfiable' for an incoming pod if and only if every possible node assignment for that pod would violate 'MaxSkew' on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P | P | P | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.
Optional:
- `label_selector` (Attributes) LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain. (see [below for nested schema](#nestedatt--spec--proxy--pg_bouncer--topology_spread_constraints--label_selector))
-- `min_domains` (Number) MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule. For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | | P P | P P | P P | The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew. This is an alpha field and requires enabling MinDomainsInPodTopologySpread feature gate.
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select the pods over which spreading will be calculated. The keys are used to lookup values from the incoming pod labels, those key-value labels are ANDed with labelSelector to select the group of existing pods over which spreading will be calculated for the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector. MatchLabelKeys cannot be set when LabelSelector isn't set. Keys that don't exist in the incoming pod labels will be ignored. A null or empty list means only match against labelSelector. This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).
+- `min_domains` (Number) MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule. For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | | P P | P P | P P | The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew.
+- `node_affinity_policy` (String) NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector when calculating pod topology spread skew. Options are: - Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations. - Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations. If this value is nil, the behavior is equivalent to the Honor policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.
+- `node_taints_policy` (String) NodeTaintsPolicy indicates how we will treat node taints when calculating pod topology spread skew. Options are: - Honor: nodes without taints, along with tainted nodes for which the incoming pod has a toleration, are included. - Ignore: node taints are ignored. All nodes are included. If this value is nil, the behavior is equivalent to the Ignore policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.
### Nested Schema for `spec.proxy.pg_bouncer.topology_spread_constraints.label_selector`
@@ -5932,11 +6409,12 @@ Optional:
Optional:
- `access_modes` (List of String) accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1
-- `data_source` (Attributes) dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--data_volume_claim_spec--data_source))
-- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef preserves all values, and generates an error if a disallowed value is specified. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--data_volume_claim_spec--data_source_ref))
+- `data_source` (Attributes) dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef, and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified. If the namespace is specified, then dataSourceRef will not be copied to dataSource. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--data_volume_claim_spec--data_source))
+- `data_source_ref` (Attributes) dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the dataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, when namespace isn't specified in dataSourceRef, both fields (dataSource and dataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. When namespace is specified in dataSourceRef, dataSource isn't set to the same value and must be empty. There are three important differences between dataSource and dataSourceRef: * While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified. * While dataSource only allows local objects, dataSourceRef allows objects in any namespaces. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--data_volume_claim_spec--data_source_ref))
- `resources` (Attributes) resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--data_volume_claim_spec--resources))
- `selector` (Attributes) selector is a label query over volumes to consider for binding. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--data_volume_claim_spec--selector))
- `storage_class_name` (String) storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1
+- `volume_attributes_class_name` (String) volumeAttributesClassName may be used to set the VolumeAttributesClass used by this claim. If specified, the CSI driver will create or update the volume with the attributes defined in the corresponding VolumeAttributesClass. This has a different purpose than storageClassName, it can be changed after the claim is created. An empty string value means that no VolumeAttributesClass will be applied to the claim but it's not allowed to reset this field to empty string once it is set. If unspecified and the PersistentVolumeClaim is unbound, the default VolumeAttributesClass will be set by the persistentvolume controller if it exists. If the resource referred to by volumeAttributesClass does not exist, this PersistentVolumeClaim will be set to a Pending state, as reflected by the modifyVolumeStatus field, until such as a resource exists. More info: https://kubernetes.io/docs/concepts/storage/volume-attributes-classes/ (Alpha) Using this field requires the VolumeAttributesClass feature gate to be enabled.
- `volume_mode` (String) volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.
- `volume_name` (String) volumeName is the binding reference to the PersistentVolume backing this claim.
@@ -5964,6 +6442,7 @@ Required:
Optional:
- `api_group` (String) APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.
+- `namespace` (String) Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.
@@ -5972,7 +6451,7 @@ Optional:
Optional:
- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
@@ -6128,7 +6607,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--affinity--pod_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -6187,7 +6668,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--affinity--pod_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -6262,7 +6745,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--affinity--pod_anti_affinity--preferred_during_scheduling_ignored_during_execution--pod_affinity_term--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -6321,7 +6806,9 @@ Required:
Optional:
-- `label_selector` (Attributes) A label query over a set of resources, in this case pods. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `label_selector` (Attributes) A label query over a set of resources, in this case pods. If it's null, this PodAffinityTerm matches with no Pods. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--label_selector))
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key in (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both matchLabelKeys and labelSelector. Also, matchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
+- `mismatch_label_keys` (List of String) MismatchLabelKeys is a set of pod label keys to select which pods will be taken into consideration. The keys are used to lookup values from the incoming pod labels, those key-value labels are merged with 'labelSelector' as 'key notin (value)' to select the group of existing pods which pods will be taken into consideration for the incoming pod's pod (anti) affinity. Keys that don't exist in the incoming pod labels will be ignored. The default value is empty. The same key is forbidden to exist in both mismatchLabelKeys and labelSelector. Also, mismatchLabelKeys cannot be set when labelSelector isn't set. This is an alpha field and requires enabling MatchLabelKeysInPodAffinity feature gate.
- `namespace_selector` (Attributes) A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means 'this pod's namespace'. An empty selector ({}) matches all namespaces. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--affinity--pod_anti_affinity--required_during_scheduling_ignored_during_execution--namespace_selector))
- `namespaces` (List of String) namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.
@@ -6386,11 +6873,49 @@ Optional:
Optional:
+- `cluster_trust_bundle` (Attributes) ClusterTrustBundle allows a pod to access the '.spec.trustBundle' field of ClusterTrustBundle objects in an auto-updating file. Alpha, gated by the ClusterTrustBundleProjection feature gate. ClusterTrustBundle objects can either be selected by name, or by the combination of signer name and a label selector. Kubelet performs aggressive normalization of the PEM contents written into the pod filesystem. Esoteric PEM features such as inter-block comments and block headers are stripped. Certificates are deduplicated. The ordering of certificates within the file is arbitrary, and Kubelet may change the order over time. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--config--files--cluster_trust_bundle))
- `config_map` (Attributes) configMap information about the configMap data to project (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--config--files--config_map))
- `downward_api` (Attributes) downwardAPI information about the downwardAPI data to project (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--config--files--downward_api))
- `secret` (Attributes) secret information about the secret data to project (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--config--files--secret))
- `service_account_token` (Attributes) serviceAccountToken is information about the serviceAccountToken data to project (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--config--files--service_account_token))
+
+### Nested Schema for `spec.user_interface.pg_admin.config.files.cluster_trust_bundle`
+
+Required:
+
+- `path` (String) Relative path from the volume root to write the bundle.
+
+Optional:
+
+- `label_selector` (Attributes) Select all ClusterTrustBundles that match this label selector. Only has effect if signerName is set. Mutually-exclusive with name. If unset, interpreted as 'match nothing'. If set but empty, interpreted as 'match everything'. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--config--files--cluster_trust_bundle--label_selector))
+- `name` (String) Select a single ClusterTrustBundle by object name. Mutually-exclusive with signerName and labelSelector.
+- `optional` (Boolean) If true, don't block pod startup if the referenced ClusterTrustBundle(s) aren't available. If using name, then the named ClusterTrustBundle is allowed not to exist. If using signerName, then the combination of signerName and labelSelector is allowed to match zero ClusterTrustBundles.
+- `signer_name` (String) Select all ClusterTrustBundles that match this signer name. Mutually-exclusive with name. The contents of all selected ClusterTrustBundles will be unified and deduplicated.
+
+
+### Nested Schema for `spec.user_interface.pg_admin.config.files.cluster_trust_bundle.label_selector`
+
+Optional:
+
+- `match_expressions` (Attributes List) matchExpressions is a list of label selector requirements. The requirements are ANDed. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--config--files--cluster_trust_bundle--label_selector--match_expressions))
+- `match_labels` (Map of String) matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is 'key', the operator is 'In', and the values array contains only 'value'. The requirements are ANDed.
+
+
+### Nested Schema for `spec.user_interface.pg_admin.config.files.cluster_trust_bundle.label_selector.match_expressions`
+
+Required:
+
+- `key` (String) key is the label key that the selector applies to.
+- `operator` (String) operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.
+
+Optional:
+
+- `values` (List of String) values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.
+
+
+
+
### Nested Schema for `spec.user_interface.pg_admin.config.files.config_map`
@@ -6430,7 +6955,7 @@ Required:
Optional:
-- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name and namespace are supported. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--config--files--downward_api--items--field_ref))
+- `field_ref` (Attributes) Required: Selects a field of the pod: only annotations, labels, name, namespace and uid are supported. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--config--files--downward_api--items--field_ref))
- `mode` (Number) Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.
- `resource_field_ref` (Attributes) Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--config--files--downward_api--items--resource_field_ref))
@@ -6526,8 +7051,17 @@ Optional:
Optional:
+- `claims` (Attributes List) Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. This field is immutable. It can only be set for containers. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--resources--claims))
- `limits` (Map of String) Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
-- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+- `requests` (Map of String) Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. Requests cannot exceed Limits. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
+
+
+### Nested Schema for `spec.user_interface.pg_admin.resources.claims`
+
+Required:
+
+- `name` (String) Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.
+
@@ -6569,13 +7103,16 @@ Optional:
Required:
- `max_skew` (Number) MaxSkew describes the degree to which pods may be unevenly distributed. When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | | P P | P P | P | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.
-- `topology_key` (String) TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each as a 'bucket', and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes match the node selector. e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology. And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology. It's a required field.
+- `topology_key` (String) TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each as a 'bucket', and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes meet the requirements of nodeAffinityPolicy and nodeTaintsPolicy. e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology. And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology. It's a required field.
- `when_unsatisfiable` (String) WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew. A constraint is considered 'Unsatisfiable' for an incoming pod if and only if every possible node assignment for that pod would violate 'MaxSkew' on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P | P | P | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.
Optional:
- `label_selector` (Attributes) LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain. (see [below for nested schema](#nestedatt--spec--user_interface--pg_admin--topology_spread_constraints--label_selector))
-- `min_domains` (Number) MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule. For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | | P P | P P | P P | The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew. This is an alpha field and requires enabling MinDomainsInPodTopologySpread feature gate.
+- `match_label_keys` (List of String) MatchLabelKeys is a set of pod label keys to select the pods over which spreading will be calculated. The keys are used to lookup values from the incoming pod labels, those key-value labels are ANDed with labelSelector to select the group of existing pods over which spreading will be calculated for the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector. MatchLabelKeys cannot be set when LabelSelector isn't set. Keys that don't exist in the incoming pod labels will be ignored. A null or empty list means only match against labelSelector. This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).
+- `min_domains` (Number) MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule. For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | | P P | P P | P P | The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew.
+- `node_affinity_policy` (String) NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector when calculating pod topology spread skew. Options are: - Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations. - Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations. If this value is nil, the behavior is equivalent to the Honor policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.
+- `node_taints_policy` (String) NodeTaintsPolicy indicates how we will treat node taints when calculating pod topology spread skew. Options are: - Honor: nodes without taints, along with tainted nodes for which the incoming pod has a toleration, are included. - Ignore: node taints are ignored. All nodes are included. If this value is nil, the behavior is equivalent to the Ignore policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.
### Nested Schema for `spec.user_interface.pg_admin.topology_spread_constraints.label_selector`
diff --git a/docs/data-sources/postgresql_cnpg_io_cluster_v1_manifest.md b/docs/data-sources/postgresql_cnpg_io_cluster_v1_manifest.md
index 879671286..631529537 100644
--- a/docs/data-sources/postgresql_cnpg_io_cluster_v1_manifest.md
+++ b/docs/data-sources/postgresql_cnpg_io_cluster_v1_manifest.md
@@ -1781,6 +1781,10 @@ Required:
- `enabled` (Boolean) If replica mode is enabled, this cluster will be a replica of anexisting cluster. Replica cluster can be created from a recoveryobject store or via streaming through pg_basebackup.Refer to the Replica clusters page of the documentation for more information.
- `source` (String) The name of the external cluster which is the replication origin
+Optional:
+
+- `promotion_token` (String) A demotion token generated by an external cluster used tocheck if the promotion requirements are met.
+
### Nested Schema for `spec.replication_slots`
diff --git a/docs/data-sources/ps_percona_com_percona_server_my_sql_v1alpha1_manifest.md b/docs/data-sources/ps_percona_com_percona_server_my_sql_v1alpha1_manifest.md
index 213d98124..59c827dd6 100644
--- a/docs/data-sources/ps_percona_com_percona_server_my_sql_v1alpha1_manifest.md
+++ b/docs/data-sources/ps_percona_com_percona_server_my_sql_v1alpha1_manifest.md
@@ -55,7 +55,6 @@ Optional:
Optional:
-- `allow_unsafe_configurations` (Boolean)
- `backup` (Attributes) (see [below for nested schema](#nestedatt--spec--backup))
- `cr_version` (String)
- `ignore_annotations` (List of String)
@@ -71,6 +70,7 @@ Optional:
- `ssl_secret_name` (String)
- `tls` (Attributes) (see [below for nested schema](#nestedatt--spec--tls))
- `toolkit` (Attributes) (see [below for nested schema](#nestedatt--spec--toolkit))
+- `unsafe_flags` (Attributes) (see [below for nested schema](#nestedatt--spec--unsafe_flags))
- `update_strategy` (String)
- `upgrade_options` (Attributes) (see [below for nested schema](#nestedatt--spec--upgrade_options))
@@ -7450,6 +7450,18 @@ Optional:
+
+### Nested Schema for `spec.unsafe_flags`
+
+Optional:
+
+- `mysql_size` (Boolean)
+- `orchestrator` (Boolean)
+- `orchestrator_size` (Boolean)
+- `proxy` (Boolean)
+- `proxy_size` (Boolean)
+
+
### Nested Schema for `spec.upgrade_options`
diff --git a/docs/data-sources/ptp_openshift_io_ptp_config_v1_manifest.md b/docs/data-sources/ptp_openshift_io_ptp_config_v1_manifest.md
index 68330ff57..6171bc410 100644
--- a/docs/data-sources/ptp_openshift_io_ptp_config_v1_manifest.md
+++ b/docs/data-sources/ptp_openshift_io_ptp_config_v1_manifest.md
@@ -77,6 +77,8 @@ Optional:
- `ptp_scheduling_policy` (String)
- `ptp_scheduling_priority` (Number)
- `ptp_settings` (Map of String)
+- `sync_e_conf` (String)
+- `sync_e_opts` (String)
- `ts2phc_conf` (String)
- `ts2phc_opts` (String)
diff --git a/docs/data-sources/ptp_openshift_io_ptp_operator_config_v1_manifest.md b/docs/data-sources/ptp_openshift_io_ptp_operator_config_v1_manifest.md
index edeb6d835..e71a0a016 100644
--- a/docs/data-sources/ptp_openshift_io_ptp_operator_config_v1_manifest.md
+++ b/docs/data-sources/ptp_openshift_io_ptp_operator_config_v1_manifest.md
@@ -67,6 +67,7 @@ Optional:
Optional:
+- `api_version` (String) ApiVersion is used to determine which API is used for the event service 1.0: default version. event service is mapped to internal REST-API. 2.x: event service is mapped to O-RAN v3.0 Compliant O-Cloud Notification REST-API.
- `enable_event_publisher` (Boolean) EnableEventPublisher will deploy event proxy as a sidecar
- `storage_type` (String) StorageType is the type of storage to store subscription data
- `transport_host` (String) TransportHost format is ://..svc.cluster.local: Example HTTP transport: 'http://ptp-event-publisher-service-NODE_NAME.openshift-ptp.svc.cluster.local:9043'
diff --git a/docs/data-sources/self_node_remediation_medik8s_io_self_node_remediation_template_v1alpha1_manifest.md b/docs/data-sources/self_node_remediation_medik8s_io_self_node_remediation_template_v1alpha1_manifest.md
index b89700aa8..eba9b0049 100644
--- a/docs/data-sources/self_node_remediation_medik8s_io_self_node_remediation_template_v1alpha1_manifest.md
+++ b/docs/data-sources/self_node_remediation_medik8s_io_self_node_remediation_template_v1alpha1_manifest.md
@@ -27,9 +27,6 @@ data "k8s_self_node_remediation_medik8s_io_self_node_remediation_template_v1alph
### Required
- `metadata` (Attributes) Data that helps uniquely identify this object. See https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#metadata for more details. (see [below for nested schema](#nestedatt--metadata))
-
-### Optional
-
- `spec` (Attributes) SelfNodeRemediationTemplateSpec defines the desired state of SelfNodeRemediationTemplate (see [below for nested schema](#nestedatt--spec))
### Read-Only
diff --git a/internal/provider/apps_kubeblocks_io_v1alpha1/apps_kubeblocks_io_cluster_v1alpha1_manifest.go b/internal/provider/apps_kubeblocks_io_v1alpha1/apps_kubeblocks_io_cluster_v1alpha1_manifest.go
index 809232012..792d14643 100644
--- a/internal/provider/apps_kubeblocks_io_v1alpha1/apps_kubeblocks_io_cluster_v1alpha1_manifest.go
+++ b/internal/provider/apps_kubeblocks_io_v1alpha1/apps_kubeblocks_io_cluster_v1alpha1_manifest.go
@@ -70,8 +70,9 @@ type AppsKubeblocksIoClusterV1Alpha1ManifestData struct {
Tenancy *string `tfsdk:"tenancy" json:"tenancy,omitempty"`
TopologyKeys *[]string `tfsdk:"topology_keys" json:"topologyKeys,omitempty"`
} `tfsdk:"affinity" json:"affinity,omitempty"`
- ComponentDef *string `tfsdk:"component_def" json:"componentDef,omitempty"`
- ComponentDefRef *string `tfsdk:"component_def_ref" json:"componentDefRef,omitempty"`
+ Annotations *map[string]string `tfsdk:"annotations" json:"annotations,omitempty"`
+ ComponentDef *string `tfsdk:"component_def" json:"componentDef,omitempty"`
+ ComponentDefRef *string `tfsdk:"component_def_ref" json:"componentDefRef,omitempty"`
Configs *[]struct {
ConfigMap *struct {
DefaultMode *int64 `tfsdk:"default_mode" json:"defaultMode,omitempty"`
@@ -87,7 +88,32 @@ type AppsKubeblocksIoClusterV1Alpha1ManifestData struct {
} `tfsdk:"configs" json:"configs,omitempty"`
DisableExporter *bool `tfsdk:"disable_exporter" json:"disableExporter,omitempty"`
EnabledLogs *[]string `tfsdk:"enabled_logs" json:"enabledLogs,omitempty"`
- Instances *[]struct {
+ Env *[]struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Value *string `tfsdk:"value" json:"value,omitempty"`
+ ValueFrom *struct {
+ ConfigMapKeyRef *struct {
+ Key *string `tfsdk:"key" json:"key,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Optional *bool `tfsdk:"optional" json:"optional,omitempty"`
+ } `tfsdk:"config_map_key_ref" json:"configMapKeyRef,omitempty"`
+ FieldRef *struct {
+ ApiVersion *string `tfsdk:"api_version" json:"apiVersion,omitempty"`
+ FieldPath *string `tfsdk:"field_path" json:"fieldPath,omitempty"`
+ } `tfsdk:"field_ref" json:"fieldRef,omitempty"`
+ ResourceFieldRef *struct {
+ ContainerName *string `tfsdk:"container_name" json:"containerName,omitempty"`
+ Divisor *string `tfsdk:"divisor" json:"divisor,omitempty"`
+ Resource *string `tfsdk:"resource" json:"resource,omitempty"`
+ } `tfsdk:"resource_field_ref" json:"resourceFieldRef,omitempty"`
+ SecretKeyRef *struct {
+ Key *string `tfsdk:"key" json:"key,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Optional *bool `tfsdk:"optional" json:"optional,omitempty"`
+ } `tfsdk:"secret_key_ref" json:"secretKeyRef,omitempty"`
+ } `tfsdk:"value_from" json:"valueFrom,omitempty"`
+ } `tfsdk:"env" json:"env,omitempty"`
+ Instances *[]struct {
Annotations *map[string]string `tfsdk:"annotations" json:"annotations,omitempty"`
Env *[]struct {
Name *string `tfsdk:"name" json:"name,omitempty"`
@@ -607,10 +633,11 @@ type AppsKubeblocksIoClusterV1Alpha1ManifestData struct {
Name *string `tfsdk:"name" json:"name,omitempty"`
} `tfsdk:"secret_ref" json:"secretRef,omitempty"`
} `tfsdk:"issuer" json:"issuer,omitempty"`
- Monitor *bool `tfsdk:"monitor" json:"monitor,omitempty"`
- Name *string `tfsdk:"name" json:"name,omitempty"`
- OfflineInstances *[]string `tfsdk:"offline_instances" json:"offlineInstances,omitempty"`
- Replicas *int64 `tfsdk:"replicas" json:"replicas,omitempty"`
+ Labels *map[string]string `tfsdk:"labels" json:"labels,omitempty"`
+ Monitor *bool `tfsdk:"monitor" json:"monitor,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ OfflineInstances *[]string `tfsdk:"offline_instances" json:"offlineInstances,omitempty"`
+ Replicas *int64 `tfsdk:"replicas" json:"replicas,omitempty"`
Resources *struct {
Claims *[]struct {
Name *string `tfsdk:"name" json:"name,omitempty"`
@@ -865,6 +892,303 @@ type AppsKubeblocksIoClusterV1Alpha1ManifestData struct {
VolumeMode *string `tfsdk:"volume_mode" json:"volumeMode,omitempty"`
} `tfsdk:"spec" json:"spec,omitempty"`
} `tfsdk:"volume_claim_templates" json:"volumeClaimTemplates,omitempty"`
+ Volumes *[]struct {
+ AwsElasticBlockStore *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ Partition *int64 `tfsdk:"partition" json:"partition,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ VolumeID *string `tfsdk:"volume_id" json:"volumeID,omitempty"`
+ } `tfsdk:"aws_elastic_block_store" json:"awsElasticBlockStore,omitempty"`
+ AzureDisk *struct {
+ CachingMode *string `tfsdk:"caching_mode" json:"cachingMode,omitempty"`
+ DiskName *string `tfsdk:"disk_name" json:"diskName,omitempty"`
+ DiskURI *string `tfsdk:"disk_uri" json:"diskURI,omitempty"`
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ Kind *string `tfsdk:"kind" json:"kind,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ } `tfsdk:"azure_disk" json:"azureDisk,omitempty"`
+ AzureFile *struct {
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretName *string `tfsdk:"secret_name" json:"secretName,omitempty"`
+ ShareName *string `tfsdk:"share_name" json:"shareName,omitempty"`
+ } `tfsdk:"azure_file" json:"azureFile,omitempty"`
+ Cephfs *struct {
+ Monitors *[]string `tfsdk:"monitors" json:"monitors,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretFile *string `tfsdk:"secret_file" json:"secretFile,omitempty"`
+ SecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"secret_ref" json:"secretRef,omitempty"`
+ User *string `tfsdk:"user" json:"user,omitempty"`
+ } `tfsdk:"cephfs" json:"cephfs,omitempty"`
+ Cinder *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"secret_ref" json:"secretRef,omitempty"`
+ VolumeID *string `tfsdk:"volume_id" json:"volumeID,omitempty"`
+ } `tfsdk:"cinder" json:"cinder,omitempty"`
+ ConfigMap *struct {
+ DefaultMode *int64 `tfsdk:"default_mode" json:"defaultMode,omitempty"`
+ Items *[]struct {
+ Key *string `tfsdk:"key" json:"key,omitempty"`
+ Mode *int64 `tfsdk:"mode" json:"mode,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ } `tfsdk:"items" json:"items,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Optional *bool `tfsdk:"optional" json:"optional,omitempty"`
+ } `tfsdk:"config_map" json:"configMap,omitempty"`
+ Csi *struct {
+ Driver *string `tfsdk:"driver" json:"driver,omitempty"`
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ NodePublishSecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"node_publish_secret_ref" json:"nodePublishSecretRef,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ VolumeAttributes *map[string]string `tfsdk:"volume_attributes" json:"volumeAttributes,omitempty"`
+ } `tfsdk:"csi" json:"csi,omitempty"`
+ DownwardAPI *struct {
+ DefaultMode *int64 `tfsdk:"default_mode" json:"defaultMode,omitempty"`
+ Items *[]struct {
+ FieldRef *struct {
+ ApiVersion *string `tfsdk:"api_version" json:"apiVersion,omitempty"`
+ FieldPath *string `tfsdk:"field_path" json:"fieldPath,omitempty"`
+ } `tfsdk:"field_ref" json:"fieldRef,omitempty"`
+ Mode *int64 `tfsdk:"mode" json:"mode,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ ResourceFieldRef *struct {
+ ContainerName *string `tfsdk:"container_name" json:"containerName,omitempty"`
+ Divisor *string `tfsdk:"divisor" json:"divisor,omitempty"`
+ Resource *string `tfsdk:"resource" json:"resource,omitempty"`
+ } `tfsdk:"resource_field_ref" json:"resourceFieldRef,omitempty"`
+ } `tfsdk:"items" json:"items,omitempty"`
+ } `tfsdk:"downward_api" json:"downwardAPI,omitempty"`
+ EmptyDir *struct {
+ Medium *string `tfsdk:"medium" json:"medium,omitempty"`
+ SizeLimit *string `tfsdk:"size_limit" json:"sizeLimit,omitempty"`
+ } `tfsdk:"empty_dir" json:"emptyDir,omitempty"`
+ Ephemeral *struct {
+ VolumeClaimTemplate *struct {
+ Metadata *struct {
+ Annotations *map[string]string `tfsdk:"annotations" json:"annotations,omitempty"`
+ Finalizers *[]string `tfsdk:"finalizers" json:"finalizers,omitempty"`
+ Labels *map[string]string `tfsdk:"labels" json:"labels,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Namespace *string `tfsdk:"namespace" json:"namespace,omitempty"`
+ } `tfsdk:"metadata" json:"metadata,omitempty"`
+ Spec *struct {
+ AccessModes *[]string `tfsdk:"access_modes" json:"accessModes,omitempty"`
+ DataSource *struct {
+ ApiGroup *string `tfsdk:"api_group" json:"apiGroup,omitempty"`
+ Kind *string `tfsdk:"kind" json:"kind,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"data_source" json:"dataSource,omitempty"`
+ DataSourceRef *struct {
+ ApiGroup *string `tfsdk:"api_group" json:"apiGroup,omitempty"`
+ Kind *string `tfsdk:"kind" json:"kind,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Namespace *string `tfsdk:"namespace" json:"namespace,omitempty"`
+ } `tfsdk:"data_source_ref" json:"dataSourceRef,omitempty"`
+ Resources *struct {
+ Claims *[]struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"claims" json:"claims,omitempty"`
+ Limits *map[string]string `tfsdk:"limits" json:"limits,omitempty"`
+ Requests *map[string]string `tfsdk:"requests" json:"requests,omitempty"`
+ } `tfsdk:"resources" json:"resources,omitempty"`
+ Selector *struct {
+ MatchExpressions *[]struct {
+ Key *string `tfsdk:"key" json:"key,omitempty"`
+ Operator *string `tfsdk:"operator" json:"operator,omitempty"`
+ Values *[]string `tfsdk:"values" json:"values,omitempty"`
+ } `tfsdk:"match_expressions" json:"matchExpressions,omitempty"`
+ MatchLabels *map[string]string `tfsdk:"match_labels" json:"matchLabels,omitempty"`
+ } `tfsdk:"selector" json:"selector,omitempty"`
+ StorageClassName *string `tfsdk:"storage_class_name" json:"storageClassName,omitempty"`
+ VolumeMode *string `tfsdk:"volume_mode" json:"volumeMode,omitempty"`
+ VolumeName *string `tfsdk:"volume_name" json:"volumeName,omitempty"`
+ } `tfsdk:"spec" json:"spec,omitempty"`
+ } `tfsdk:"volume_claim_template" json:"volumeClaimTemplate,omitempty"`
+ } `tfsdk:"ephemeral" json:"ephemeral,omitempty"`
+ Fc *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ Lun *int64 `tfsdk:"lun" json:"lun,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ TargetWWNs *[]string `tfsdk:"target_ww_ns" json:"targetWWNs,omitempty"`
+ Wwids *[]string `tfsdk:"wwids" json:"wwids,omitempty"`
+ } `tfsdk:"fc" json:"fc,omitempty"`
+ FlexVolume *struct {
+ Driver *string `tfsdk:"driver" json:"driver,omitempty"`
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ Options *map[string]string `tfsdk:"options" json:"options,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"secret_ref" json:"secretRef,omitempty"`
+ } `tfsdk:"flex_volume" json:"flexVolume,omitempty"`
+ Flocker *struct {
+ DatasetName *string `tfsdk:"dataset_name" json:"datasetName,omitempty"`
+ DatasetUUID *string `tfsdk:"dataset_uuid" json:"datasetUUID,omitempty"`
+ } `tfsdk:"flocker" json:"flocker,omitempty"`
+ GcePersistentDisk *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ Partition *int64 `tfsdk:"partition" json:"partition,omitempty"`
+ PdName *string `tfsdk:"pd_name" json:"pdName,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ } `tfsdk:"gce_persistent_disk" json:"gcePersistentDisk,omitempty"`
+ GitRepo *struct {
+ Directory *string `tfsdk:"directory" json:"directory,omitempty"`
+ Repository *string `tfsdk:"repository" json:"repository,omitempty"`
+ Revision *string `tfsdk:"revision" json:"revision,omitempty"`
+ } `tfsdk:"git_repo" json:"gitRepo,omitempty"`
+ Glusterfs *struct {
+ Endpoints *string `tfsdk:"endpoints" json:"endpoints,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ } `tfsdk:"glusterfs" json:"glusterfs,omitempty"`
+ HostPath *struct {
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ Type *string `tfsdk:"type" json:"type,omitempty"`
+ } `tfsdk:"host_path" json:"hostPath,omitempty"`
+ Iscsi *struct {
+ ChapAuthDiscovery *bool `tfsdk:"chap_auth_discovery" json:"chapAuthDiscovery,omitempty"`
+ ChapAuthSession *bool `tfsdk:"chap_auth_session" json:"chapAuthSession,omitempty"`
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ InitiatorName *string `tfsdk:"initiator_name" json:"initiatorName,omitempty"`
+ Iqn *string `tfsdk:"iqn" json:"iqn,omitempty"`
+ IscsiInterface *string `tfsdk:"iscsi_interface" json:"iscsiInterface,omitempty"`
+ Lun *int64 `tfsdk:"lun" json:"lun,omitempty"`
+ Portals *[]string `tfsdk:"portals" json:"portals,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"secret_ref" json:"secretRef,omitempty"`
+ TargetPortal *string `tfsdk:"target_portal" json:"targetPortal,omitempty"`
+ } `tfsdk:"iscsi" json:"iscsi,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Nfs *struct {
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ Server *string `tfsdk:"server" json:"server,omitempty"`
+ } `tfsdk:"nfs" json:"nfs,omitempty"`
+ PersistentVolumeClaim *struct {
+ ClaimName *string `tfsdk:"claim_name" json:"claimName,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ } `tfsdk:"persistent_volume_claim" json:"persistentVolumeClaim,omitempty"`
+ PhotonPersistentDisk *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ PdID *string `tfsdk:"pd_id" json:"pdID,omitempty"`
+ } `tfsdk:"photon_persistent_disk" json:"photonPersistentDisk,omitempty"`
+ PortworxVolume *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ VolumeID *string `tfsdk:"volume_id" json:"volumeID,omitempty"`
+ } `tfsdk:"portworx_volume" json:"portworxVolume,omitempty"`
+ Projected *struct {
+ DefaultMode *int64 `tfsdk:"default_mode" json:"defaultMode,omitempty"`
+ Sources *[]struct {
+ ConfigMap *struct {
+ Items *[]struct {
+ Key *string `tfsdk:"key" json:"key,omitempty"`
+ Mode *int64 `tfsdk:"mode" json:"mode,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ } `tfsdk:"items" json:"items,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Optional *bool `tfsdk:"optional" json:"optional,omitempty"`
+ } `tfsdk:"config_map" json:"configMap,omitempty"`
+ DownwardAPI *struct {
+ Items *[]struct {
+ FieldRef *struct {
+ ApiVersion *string `tfsdk:"api_version" json:"apiVersion,omitempty"`
+ FieldPath *string `tfsdk:"field_path" json:"fieldPath,omitempty"`
+ } `tfsdk:"field_ref" json:"fieldRef,omitempty"`
+ Mode *int64 `tfsdk:"mode" json:"mode,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ ResourceFieldRef *struct {
+ ContainerName *string `tfsdk:"container_name" json:"containerName,omitempty"`
+ Divisor *string `tfsdk:"divisor" json:"divisor,omitempty"`
+ Resource *string `tfsdk:"resource" json:"resource,omitempty"`
+ } `tfsdk:"resource_field_ref" json:"resourceFieldRef,omitempty"`
+ } `tfsdk:"items" json:"items,omitempty"`
+ } `tfsdk:"downward_api" json:"downwardAPI,omitempty"`
+ Secret *struct {
+ Items *[]struct {
+ Key *string `tfsdk:"key" json:"key,omitempty"`
+ Mode *int64 `tfsdk:"mode" json:"mode,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ } `tfsdk:"items" json:"items,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Optional *bool `tfsdk:"optional" json:"optional,omitempty"`
+ } `tfsdk:"secret" json:"secret,omitempty"`
+ ServiceAccountToken *struct {
+ Audience *string `tfsdk:"audience" json:"audience,omitempty"`
+ ExpirationSeconds *int64 `tfsdk:"expiration_seconds" json:"expirationSeconds,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ } `tfsdk:"service_account_token" json:"serviceAccountToken,omitempty"`
+ } `tfsdk:"sources" json:"sources,omitempty"`
+ } `tfsdk:"projected" json:"projected,omitempty"`
+ Quobyte *struct {
+ Group *string `tfsdk:"group" json:"group,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ Registry *string `tfsdk:"registry" json:"registry,omitempty"`
+ Tenant *string `tfsdk:"tenant" json:"tenant,omitempty"`
+ User *string `tfsdk:"user" json:"user,omitempty"`
+ Volume *string `tfsdk:"volume" json:"volume,omitempty"`
+ } `tfsdk:"quobyte" json:"quobyte,omitempty"`
+ Rbd *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ Image *string `tfsdk:"image" json:"image,omitempty"`
+ Keyring *string `tfsdk:"keyring" json:"keyring,omitempty"`
+ Monitors *[]string `tfsdk:"monitors" json:"monitors,omitempty"`
+ Pool *string `tfsdk:"pool" json:"pool,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"secret_ref" json:"secretRef,omitempty"`
+ User *string `tfsdk:"user" json:"user,omitempty"`
+ } `tfsdk:"rbd" json:"rbd,omitempty"`
+ ScaleIO *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ Gateway *string `tfsdk:"gateway" json:"gateway,omitempty"`
+ ProtectionDomain *string `tfsdk:"protection_domain" json:"protectionDomain,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"secret_ref" json:"secretRef,omitempty"`
+ SslEnabled *bool `tfsdk:"ssl_enabled" json:"sslEnabled,omitempty"`
+ StorageMode *string `tfsdk:"storage_mode" json:"storageMode,omitempty"`
+ StoragePool *string `tfsdk:"storage_pool" json:"storagePool,omitempty"`
+ System *string `tfsdk:"system" json:"system,omitempty"`
+ VolumeName *string `tfsdk:"volume_name" json:"volumeName,omitempty"`
+ } `tfsdk:"scale_io" json:"scaleIO,omitempty"`
+ Secret *struct {
+ DefaultMode *int64 `tfsdk:"default_mode" json:"defaultMode,omitempty"`
+ Items *[]struct {
+ Key *string `tfsdk:"key" json:"key,omitempty"`
+ Mode *int64 `tfsdk:"mode" json:"mode,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ } `tfsdk:"items" json:"items,omitempty"`
+ Optional *bool `tfsdk:"optional" json:"optional,omitempty"`
+ SecretName *string `tfsdk:"secret_name" json:"secretName,omitempty"`
+ } `tfsdk:"secret" json:"secret,omitempty"`
+ Storageos *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"secret_ref" json:"secretRef,omitempty"`
+ VolumeName *string `tfsdk:"volume_name" json:"volumeName,omitempty"`
+ VolumeNamespace *string `tfsdk:"volume_namespace" json:"volumeNamespace,omitempty"`
+ } `tfsdk:"storageos" json:"storageos,omitempty"`
+ VsphereVolume *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ StoragePolicyID *string `tfsdk:"storage_policy_id" json:"storagePolicyID,omitempty"`
+ StoragePolicyName *string `tfsdk:"storage_policy_name" json:"storagePolicyName,omitempty"`
+ VolumePath *string `tfsdk:"volume_path" json:"volumePath,omitempty"`
+ } `tfsdk:"vsphere_volume" json:"vsphereVolume,omitempty"`
+ } `tfsdk:"volumes" json:"volumes,omitempty"`
} `tfsdk:"component_specs" json:"componentSpecs,omitempty"`
Network *struct {
HostNetworkAccessible *bool `tfsdk:"host_network_accessible" json:"hostNetworkAccessible,omitempty"`
@@ -1039,8 +1363,9 @@ type AppsKubeblocksIoClusterV1Alpha1ManifestData struct {
Tenancy *string `tfsdk:"tenancy" json:"tenancy,omitempty"`
TopologyKeys *[]string `tfsdk:"topology_keys" json:"topologyKeys,omitempty"`
} `tfsdk:"affinity" json:"affinity,omitempty"`
- ComponentDef *string `tfsdk:"component_def" json:"componentDef,omitempty"`
- ComponentDefRef *string `tfsdk:"component_def_ref" json:"componentDefRef,omitempty"`
+ Annotations *map[string]string `tfsdk:"annotations" json:"annotations,omitempty"`
+ ComponentDef *string `tfsdk:"component_def" json:"componentDef,omitempty"`
+ ComponentDefRef *string `tfsdk:"component_def_ref" json:"componentDefRef,omitempty"`
Configs *[]struct {
ConfigMap *struct {
DefaultMode *int64 `tfsdk:"default_mode" json:"defaultMode,omitempty"`
@@ -1056,7 +1381,32 @@ type AppsKubeblocksIoClusterV1Alpha1ManifestData struct {
} `tfsdk:"configs" json:"configs,omitempty"`
DisableExporter *bool `tfsdk:"disable_exporter" json:"disableExporter,omitempty"`
EnabledLogs *[]string `tfsdk:"enabled_logs" json:"enabledLogs,omitempty"`
- Instances *[]struct {
+ Env *[]struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Value *string `tfsdk:"value" json:"value,omitempty"`
+ ValueFrom *struct {
+ ConfigMapKeyRef *struct {
+ Key *string `tfsdk:"key" json:"key,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Optional *bool `tfsdk:"optional" json:"optional,omitempty"`
+ } `tfsdk:"config_map_key_ref" json:"configMapKeyRef,omitempty"`
+ FieldRef *struct {
+ ApiVersion *string `tfsdk:"api_version" json:"apiVersion,omitempty"`
+ FieldPath *string `tfsdk:"field_path" json:"fieldPath,omitempty"`
+ } `tfsdk:"field_ref" json:"fieldRef,omitempty"`
+ ResourceFieldRef *struct {
+ ContainerName *string `tfsdk:"container_name" json:"containerName,omitempty"`
+ Divisor *string `tfsdk:"divisor" json:"divisor,omitempty"`
+ Resource *string `tfsdk:"resource" json:"resource,omitempty"`
+ } `tfsdk:"resource_field_ref" json:"resourceFieldRef,omitempty"`
+ SecretKeyRef *struct {
+ Key *string `tfsdk:"key" json:"key,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Optional *bool `tfsdk:"optional" json:"optional,omitempty"`
+ } `tfsdk:"secret_key_ref" json:"secretKeyRef,omitempty"`
+ } `tfsdk:"value_from" json:"valueFrom,omitempty"`
+ } `tfsdk:"env" json:"env,omitempty"`
+ Instances *[]struct {
Annotations *map[string]string `tfsdk:"annotations" json:"annotations,omitempty"`
Env *[]struct {
Name *string `tfsdk:"name" json:"name,omitempty"`
@@ -1576,10 +1926,11 @@ type AppsKubeblocksIoClusterV1Alpha1ManifestData struct {
Name *string `tfsdk:"name" json:"name,omitempty"`
} `tfsdk:"secret_ref" json:"secretRef,omitempty"`
} `tfsdk:"issuer" json:"issuer,omitempty"`
- Monitor *bool `tfsdk:"monitor" json:"monitor,omitempty"`
- Name *string `tfsdk:"name" json:"name,omitempty"`
- OfflineInstances *[]string `tfsdk:"offline_instances" json:"offlineInstances,omitempty"`
- Replicas *int64 `tfsdk:"replicas" json:"replicas,omitempty"`
+ Labels *map[string]string `tfsdk:"labels" json:"labels,omitempty"`
+ Monitor *bool `tfsdk:"monitor" json:"monitor,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ OfflineInstances *[]string `tfsdk:"offline_instances" json:"offlineInstances,omitempty"`
+ Replicas *int64 `tfsdk:"replicas" json:"replicas,omitempty"`
Resources *struct {
Claims *[]struct {
Name *string `tfsdk:"name" json:"name,omitempty"`
@@ -1834,137 +2185,514 @@ type AppsKubeblocksIoClusterV1Alpha1ManifestData struct {
VolumeMode *string `tfsdk:"volume_mode" json:"volumeMode,omitempty"`
} `tfsdk:"spec" json:"spec,omitempty"`
} `tfsdk:"volume_claim_templates" json:"volumeClaimTemplates,omitempty"`
- } `tfsdk:"template" json:"template,omitempty"`
- } `tfsdk:"sharding_specs" json:"shardingSpecs,omitempty"`
- Storage *struct {
- Size *string `tfsdk:"size" json:"size,omitempty"`
- } `tfsdk:"storage" json:"storage,omitempty"`
- Tenancy *string `tfsdk:"tenancy" json:"tenancy,omitempty"`
- TerminationPolicy *string `tfsdk:"termination_policy" json:"terminationPolicy,omitempty"`
- Tolerations *map[string]string `tfsdk:"tolerations" json:"tolerations,omitempty"`
- Topology *string `tfsdk:"topology" json:"topology,omitempty"`
- } `tfsdk:"spec" json:"spec,omitempty"`
-}
-
-func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Metadata(_ context.Context, request datasource.MetadataRequest, response *datasource.MetadataResponse) {
- response.TypeName = request.ProviderTypeName + "_apps_kubeblocks_io_cluster_v1alpha1_manifest"
-}
-
-func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ datasource.SchemaRequest, response *datasource.SchemaResponse) {
- response.Schema = schema.Schema{
- Description: "Cluster offers a unified management interface for a wide variety of database and storage systems:- Relational databases: MySQL, PostgreSQL, MariaDB- NoSQL databases: Redis, MongoDB- KV stores: ZooKeeper, etcd- Analytics systems: ElasticSearch, OpenSearch, ClickHouse, Doris, StarRocks, Solr- Message queues: Kafka, Pulsar- Distributed SQL: TiDB, OceanBase- Vector databases: Qdrant, Milvus, Weaviate- Object storage: MinioKubeBlocks utilizes an abstraction layer to encapsulate the characteristics of these diverse systems.A Cluster is composed of multiple Components, each defined by vendors or KubeBlocks Addon developers via ComponentDefinition,arranged in Directed Acyclic Graph (DAG) topologies.The topologies, defined in a ClusterDefinition, coordinate reconciliation across Cluster's lifecycle phases:Creating, Running, Updating, Stopping, Stopped, Deleting.Lifecycle management ensures that each Component operates in harmony, executing appropriate actions at each lifecycle stage.For sharded-nothing architecture, the Cluster supports managing multiple shards,each shard managed by a separate Component, supporting dynamic resharding.The Cluster object is aimed to maintain the overall integrity and availability of a database cluster,serves as the central control point, abstracting the complexity of multiple-component management,and providing a unified interface for cluster-wide operations.",
- MarkdownDescription: "Cluster offers a unified management interface for a wide variety of database and storage systems:- Relational databases: MySQL, PostgreSQL, MariaDB- NoSQL databases: Redis, MongoDB- KV stores: ZooKeeper, etcd- Analytics systems: ElasticSearch, OpenSearch, ClickHouse, Doris, StarRocks, Solr- Message queues: Kafka, Pulsar- Distributed SQL: TiDB, OceanBase- Vector databases: Qdrant, Milvus, Weaviate- Object storage: MinioKubeBlocks utilizes an abstraction layer to encapsulate the characteristics of these diverse systems.A Cluster is composed of multiple Components, each defined by vendors or KubeBlocks Addon developers via ComponentDefinition,arranged in Directed Acyclic Graph (DAG) topologies.The topologies, defined in a ClusterDefinition, coordinate reconciliation across Cluster's lifecycle phases:Creating, Running, Updating, Stopping, Stopped, Deleting.Lifecycle management ensures that each Component operates in harmony, executing appropriate actions at each lifecycle stage.For sharded-nothing architecture, the Cluster supports managing multiple shards,each shard managed by a separate Component, supporting dynamic resharding.The Cluster object is aimed to maintain the overall integrity and availability of a database cluster,serves as the central control point, abstracting the complexity of multiple-component management,and providing a unified interface for cluster-wide operations.",
- Attributes: map[string]schema.Attribute{
- "yaml": schema.StringAttribute{
- Description: "The generated manifest in YAML format.",
- MarkdownDescription: "The generated manifest in YAML format.",
- Required: false,
- Optional: false,
- Computed: true,
- },
-
- "metadata": schema.SingleNestedAttribute{
- Description: "Data that helps uniquely identify this object. See https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#metadata for more details.",
- MarkdownDescription: "Data that helps uniquely identify this object. See https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#metadata for more details.",
- Required: true,
- Optional: false,
- Computed: false,
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Unique identifier for this object. See https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names for more details.",
- MarkdownDescription: "Unique identifier for this object. See https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names for more details.",
- Required: true,
- Optional: false,
- Computed: false,
- Validators: []validator.String{
- validators.NameValidator(),
- stringvalidator.LengthAtLeast(1),
- },
- },
-
- "namespace": schema.StringAttribute{
- Description: "Namespaces provides a mechanism for isolating groups of resources within a single cluster. See https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ for more details.",
- MarkdownDescription: "Namespaces provides a mechanism for isolating groups of resources within a single cluster. See https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ for more details.",
- Required: true,
- Optional: false,
- Computed: false,
- Validators: []validator.String{
- validators.NameValidator(),
- stringvalidator.LengthAtLeast(1),
- },
- },
-
- "labels": schema.MapAttribute{
- Description: "Keys and values that can be used to organize and categorize objects. See https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ for more details.",
- MarkdownDescription: "Keys and values that can be used to organize and categorize objects. See https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ for more details.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.Map{
- validators.LabelValidator(),
- },
- },
- "annotations": schema.MapAttribute{
- Description: "Keys and values that can be used by external tooling to store and retrieve arbitrary metadata about this object. See https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ for more details.",
- MarkdownDescription: "Keys and values that can be used by external tooling to store and retrieve arbitrary metadata about this object. See https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ for more details.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.Map{
- validators.AnnotationValidator(),
- },
- },
- },
- },
-
- "spec": schema.SingleNestedAttribute{
- Description: "ClusterSpec defines the desired state of Cluster.",
- MarkdownDescription: "ClusterSpec defines the desired state of Cluster.",
- Attributes: map[string]schema.Attribute{
- "affinity": schema.SingleNestedAttribute{
- Description: "Defines a set of node affinity scheduling rules for the Cluster's Pods.This field helps control the placement of Pods on nodes within the Cluster.Deprecated since v0.10. Use the 'schedulingPolicy' field instead.",
- MarkdownDescription: "Defines a set of node affinity scheduling rules for the Cluster's Pods.This field helps control the placement of Pods on nodes within the Cluster.Deprecated since v0.10. Use the 'schedulingPolicy' field instead.",
- Attributes: map[string]schema.Attribute{
- "node_labels": schema.MapAttribute{
- Description: "Indicates the node labels that must be present on nodes for pods to be scheduled on them.It is a map where the keys are the label keys and the values are the corresponding label values.Pods will only be scheduled on nodes that have all the specified labels with the corresponding values.For example, if NodeLabels is set to {'nodeType': 'ssd', 'environment': 'production'},pods will only be scheduled on nodes that have both the 'nodeType' label with value 'ssd'and the 'environment' label with value 'production'.This field allows users to control Pod placement based on specific node labels.It can be used to ensure that Pods are scheduled on nodes with certain characteristics,such as specific hardware (e.g., SSD), environment (e.g., production, staging),or any other custom labels assigned to nodes.",
- MarkdownDescription: "Indicates the node labels that must be present on nodes for pods to be scheduled on them.It is a map where the keys are the label keys and the values are the corresponding label values.Pods will only be scheduled on nodes that have all the specified labels with the corresponding values.For example, if NodeLabels is set to {'nodeType': 'ssd', 'environment': 'production'},pods will only be scheduled on nodes that have both the 'nodeType' label with value 'ssd'and the 'environment' label with value 'production'.This field allows users to control Pod placement based on specific node labels.It can be used to ensure that Pods are scheduled on nodes with certain characteristics,such as specific hardware (e.g., SSD), environment (e.g., production, staging),or any other custom labels assigned to nodes.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "pod_anti_affinity": schema.StringAttribute{
- Description: "Specifies the anti-affinity level of Pods within a Component.It determines how pods should be spread across nodes to improve availability and performance.It can have the following values: 'Preferred' and 'Required'.The default value is 'Preferred'.",
- MarkdownDescription: "Specifies the anti-affinity level of Pods within a Component.It determines how pods should be spread across nodes to improve availability and performance.It can have the following values: 'Preferred' and 'Required'.The default value is 'Preferred'.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.OneOf("Preferred", "Required"),
- },
- },
-
- "tenancy": schema.StringAttribute{
- Description: "Determines the level of resource isolation between Pods.It can have the following values: 'SharedNode' and 'DedicatedNode'.- SharedNode: Allow that multiple Pods may share the same node, which is the default behavior of K8s.- DedicatedNode: Each Pod runs on a dedicated node, ensuring that no two Pods share the same node. In other words, if a Pod is already running on a node, no other Pods will be scheduled on that node. Which provides a higher level of isolation and resource guarantee for Pods. The default value is 'SharedNode'.",
- MarkdownDescription: "Determines the level of resource isolation between Pods.It can have the following values: 'SharedNode' and 'DedicatedNode'.- SharedNode: Allow that multiple Pods may share the same node, which is the default behavior of K8s.- DedicatedNode: Each Pod runs on a dedicated node, ensuring that no two Pods share the same node. In other words, if a Pod is already running on a node, no other Pods will be scheduled on that node. Which provides a higher level of isolation and resource guarantee for Pods. The default value is 'SharedNode'.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.OneOf("SharedNode", "DedicatedNode"),
- },
- },
-
- "topology_keys": schema.ListAttribute{
- Description: "Represents the key of node labels used to define the topology domain for Pod anti-affinityand Pod spread constraints.In K8s, a topology domain is a set of nodes that have the same value for a specific label key.Nodes with labels containing any of the specified TopologyKeys and identical values are consideredto be in the same topology domain.Note: The concept of topology in the context of K8s TopologyKeys is different from the concept oftopology in the ClusterDefinition.When a Pod has anti-affinity or spread constraints specified, Kubernetes will attempt to schedule thePod on nodes with different values for the specified TopologyKeys.This ensures that Pods are spread across different topology domains, promoting high availability andreducing the impact of node failures.Some well-known label keys, such as 'kubernetes.io/hostname' and 'topology.kubernetes.io/zone',are often used as TopologyKey.These keys represent the hostname and zone of a node, respectively.By including these keys in the TopologyKeys list, Pods will be spread across nodes withdifferent hostnames or zones.In addition to the well-known keys, users can also specify custom label keys as TopologyKeys.This allows for more flexible and custom topology definitions based on the specific needsof the application or environment.The TopologyKeys field is a slice of strings, where each string represents a label key.The order of the keys in the slice does not matter.",
- MarkdownDescription: "Represents the key of node labels used to define the topology domain for Pod anti-affinityand Pod spread constraints.In K8s, a topology domain is a set of nodes that have the same value for a specific label key.Nodes with labels containing any of the specified TopologyKeys and identical values are consideredto be in the same topology domain.Note: The concept of topology in the context of K8s TopologyKeys is different from the concept oftopology in the ClusterDefinition.When a Pod has anti-affinity or spread constraints specified, Kubernetes will attempt to schedule thePod on nodes with different values for the specified TopologyKeys.This ensures that Pods are spread across different topology domains, promoting high availability andreducing the impact of node failures.Some well-known label keys, such as 'kubernetes.io/hostname' and 'topology.kubernetes.io/zone',are often used as TopologyKey.These keys represent the hostname and zone of a node, respectively.By including these keys in the TopologyKeys list, Pods will be spread across nodes withdifferent hostnames or zones.In addition to the well-known keys, users can also specify custom label keys as TopologyKeys.This allows for more flexible and custom topology definitions based on the specific needsof the application or environment.The TopologyKeys field is a slice of strings, where each string represents a label key.The order of the keys in the slice does not matter.",
- ElementType: types.StringType,
- Required: false,
+ Volumes *[]struct {
+ AwsElasticBlockStore *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ Partition *int64 `tfsdk:"partition" json:"partition,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ VolumeID *string `tfsdk:"volume_id" json:"volumeID,omitempty"`
+ } `tfsdk:"aws_elastic_block_store" json:"awsElasticBlockStore,omitempty"`
+ AzureDisk *struct {
+ CachingMode *string `tfsdk:"caching_mode" json:"cachingMode,omitempty"`
+ DiskName *string `tfsdk:"disk_name" json:"diskName,omitempty"`
+ DiskURI *string `tfsdk:"disk_uri" json:"diskURI,omitempty"`
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ Kind *string `tfsdk:"kind" json:"kind,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ } `tfsdk:"azure_disk" json:"azureDisk,omitempty"`
+ AzureFile *struct {
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretName *string `tfsdk:"secret_name" json:"secretName,omitempty"`
+ ShareName *string `tfsdk:"share_name" json:"shareName,omitempty"`
+ } `tfsdk:"azure_file" json:"azureFile,omitempty"`
+ Cephfs *struct {
+ Monitors *[]string `tfsdk:"monitors" json:"monitors,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretFile *string `tfsdk:"secret_file" json:"secretFile,omitempty"`
+ SecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"secret_ref" json:"secretRef,omitempty"`
+ User *string `tfsdk:"user" json:"user,omitempty"`
+ } `tfsdk:"cephfs" json:"cephfs,omitempty"`
+ Cinder *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"secret_ref" json:"secretRef,omitempty"`
+ VolumeID *string `tfsdk:"volume_id" json:"volumeID,omitempty"`
+ } `tfsdk:"cinder" json:"cinder,omitempty"`
+ ConfigMap *struct {
+ DefaultMode *int64 `tfsdk:"default_mode" json:"defaultMode,omitempty"`
+ Items *[]struct {
+ Key *string `tfsdk:"key" json:"key,omitempty"`
+ Mode *int64 `tfsdk:"mode" json:"mode,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ } `tfsdk:"items" json:"items,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Optional *bool `tfsdk:"optional" json:"optional,omitempty"`
+ } `tfsdk:"config_map" json:"configMap,omitempty"`
+ Csi *struct {
+ Driver *string `tfsdk:"driver" json:"driver,omitempty"`
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ NodePublishSecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"node_publish_secret_ref" json:"nodePublishSecretRef,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ VolumeAttributes *map[string]string `tfsdk:"volume_attributes" json:"volumeAttributes,omitempty"`
+ } `tfsdk:"csi" json:"csi,omitempty"`
+ DownwardAPI *struct {
+ DefaultMode *int64 `tfsdk:"default_mode" json:"defaultMode,omitempty"`
+ Items *[]struct {
+ FieldRef *struct {
+ ApiVersion *string `tfsdk:"api_version" json:"apiVersion,omitempty"`
+ FieldPath *string `tfsdk:"field_path" json:"fieldPath,omitempty"`
+ } `tfsdk:"field_ref" json:"fieldRef,omitempty"`
+ Mode *int64 `tfsdk:"mode" json:"mode,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ ResourceFieldRef *struct {
+ ContainerName *string `tfsdk:"container_name" json:"containerName,omitempty"`
+ Divisor *string `tfsdk:"divisor" json:"divisor,omitempty"`
+ Resource *string `tfsdk:"resource" json:"resource,omitempty"`
+ } `tfsdk:"resource_field_ref" json:"resourceFieldRef,omitempty"`
+ } `tfsdk:"items" json:"items,omitempty"`
+ } `tfsdk:"downward_api" json:"downwardAPI,omitempty"`
+ EmptyDir *struct {
+ Medium *string `tfsdk:"medium" json:"medium,omitempty"`
+ SizeLimit *string `tfsdk:"size_limit" json:"sizeLimit,omitempty"`
+ } `tfsdk:"empty_dir" json:"emptyDir,omitempty"`
+ Ephemeral *struct {
+ VolumeClaimTemplate *struct {
+ Metadata *struct {
+ Annotations *map[string]string `tfsdk:"annotations" json:"annotations,omitempty"`
+ Finalizers *[]string `tfsdk:"finalizers" json:"finalizers,omitempty"`
+ Labels *map[string]string `tfsdk:"labels" json:"labels,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Namespace *string `tfsdk:"namespace" json:"namespace,omitempty"`
+ } `tfsdk:"metadata" json:"metadata,omitempty"`
+ Spec *struct {
+ AccessModes *[]string `tfsdk:"access_modes" json:"accessModes,omitempty"`
+ DataSource *struct {
+ ApiGroup *string `tfsdk:"api_group" json:"apiGroup,omitempty"`
+ Kind *string `tfsdk:"kind" json:"kind,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"data_source" json:"dataSource,omitempty"`
+ DataSourceRef *struct {
+ ApiGroup *string `tfsdk:"api_group" json:"apiGroup,omitempty"`
+ Kind *string `tfsdk:"kind" json:"kind,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Namespace *string `tfsdk:"namespace" json:"namespace,omitempty"`
+ } `tfsdk:"data_source_ref" json:"dataSourceRef,omitempty"`
+ Resources *struct {
+ Claims *[]struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"claims" json:"claims,omitempty"`
+ Limits *map[string]string `tfsdk:"limits" json:"limits,omitempty"`
+ Requests *map[string]string `tfsdk:"requests" json:"requests,omitempty"`
+ } `tfsdk:"resources" json:"resources,omitempty"`
+ Selector *struct {
+ MatchExpressions *[]struct {
+ Key *string `tfsdk:"key" json:"key,omitempty"`
+ Operator *string `tfsdk:"operator" json:"operator,omitempty"`
+ Values *[]string `tfsdk:"values" json:"values,omitempty"`
+ } `tfsdk:"match_expressions" json:"matchExpressions,omitempty"`
+ MatchLabels *map[string]string `tfsdk:"match_labels" json:"matchLabels,omitempty"`
+ } `tfsdk:"selector" json:"selector,omitempty"`
+ StorageClassName *string `tfsdk:"storage_class_name" json:"storageClassName,omitempty"`
+ VolumeMode *string `tfsdk:"volume_mode" json:"volumeMode,omitempty"`
+ VolumeName *string `tfsdk:"volume_name" json:"volumeName,omitempty"`
+ } `tfsdk:"spec" json:"spec,omitempty"`
+ } `tfsdk:"volume_claim_template" json:"volumeClaimTemplate,omitempty"`
+ } `tfsdk:"ephemeral" json:"ephemeral,omitempty"`
+ Fc *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ Lun *int64 `tfsdk:"lun" json:"lun,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ TargetWWNs *[]string `tfsdk:"target_ww_ns" json:"targetWWNs,omitempty"`
+ Wwids *[]string `tfsdk:"wwids" json:"wwids,omitempty"`
+ } `tfsdk:"fc" json:"fc,omitempty"`
+ FlexVolume *struct {
+ Driver *string `tfsdk:"driver" json:"driver,omitempty"`
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ Options *map[string]string `tfsdk:"options" json:"options,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"secret_ref" json:"secretRef,omitempty"`
+ } `tfsdk:"flex_volume" json:"flexVolume,omitempty"`
+ Flocker *struct {
+ DatasetName *string `tfsdk:"dataset_name" json:"datasetName,omitempty"`
+ DatasetUUID *string `tfsdk:"dataset_uuid" json:"datasetUUID,omitempty"`
+ } `tfsdk:"flocker" json:"flocker,omitempty"`
+ GcePersistentDisk *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ Partition *int64 `tfsdk:"partition" json:"partition,omitempty"`
+ PdName *string `tfsdk:"pd_name" json:"pdName,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ } `tfsdk:"gce_persistent_disk" json:"gcePersistentDisk,omitempty"`
+ GitRepo *struct {
+ Directory *string `tfsdk:"directory" json:"directory,omitempty"`
+ Repository *string `tfsdk:"repository" json:"repository,omitempty"`
+ Revision *string `tfsdk:"revision" json:"revision,omitempty"`
+ } `tfsdk:"git_repo" json:"gitRepo,omitempty"`
+ Glusterfs *struct {
+ Endpoints *string `tfsdk:"endpoints" json:"endpoints,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ } `tfsdk:"glusterfs" json:"glusterfs,omitempty"`
+ HostPath *struct {
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ Type *string `tfsdk:"type" json:"type,omitempty"`
+ } `tfsdk:"host_path" json:"hostPath,omitempty"`
+ Iscsi *struct {
+ ChapAuthDiscovery *bool `tfsdk:"chap_auth_discovery" json:"chapAuthDiscovery,omitempty"`
+ ChapAuthSession *bool `tfsdk:"chap_auth_session" json:"chapAuthSession,omitempty"`
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ InitiatorName *string `tfsdk:"initiator_name" json:"initiatorName,omitempty"`
+ Iqn *string `tfsdk:"iqn" json:"iqn,omitempty"`
+ IscsiInterface *string `tfsdk:"iscsi_interface" json:"iscsiInterface,omitempty"`
+ Lun *int64 `tfsdk:"lun" json:"lun,omitempty"`
+ Portals *[]string `tfsdk:"portals" json:"portals,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"secret_ref" json:"secretRef,omitempty"`
+ TargetPortal *string `tfsdk:"target_portal" json:"targetPortal,omitempty"`
+ } `tfsdk:"iscsi" json:"iscsi,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Nfs *struct {
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ Server *string `tfsdk:"server" json:"server,omitempty"`
+ } `tfsdk:"nfs" json:"nfs,omitempty"`
+ PersistentVolumeClaim *struct {
+ ClaimName *string `tfsdk:"claim_name" json:"claimName,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ } `tfsdk:"persistent_volume_claim" json:"persistentVolumeClaim,omitempty"`
+ PhotonPersistentDisk *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ PdID *string `tfsdk:"pd_id" json:"pdID,omitempty"`
+ } `tfsdk:"photon_persistent_disk" json:"photonPersistentDisk,omitempty"`
+ PortworxVolume *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ VolumeID *string `tfsdk:"volume_id" json:"volumeID,omitempty"`
+ } `tfsdk:"portworx_volume" json:"portworxVolume,omitempty"`
+ Projected *struct {
+ DefaultMode *int64 `tfsdk:"default_mode" json:"defaultMode,omitempty"`
+ Sources *[]struct {
+ ConfigMap *struct {
+ Items *[]struct {
+ Key *string `tfsdk:"key" json:"key,omitempty"`
+ Mode *int64 `tfsdk:"mode" json:"mode,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ } `tfsdk:"items" json:"items,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Optional *bool `tfsdk:"optional" json:"optional,omitempty"`
+ } `tfsdk:"config_map" json:"configMap,omitempty"`
+ DownwardAPI *struct {
+ Items *[]struct {
+ FieldRef *struct {
+ ApiVersion *string `tfsdk:"api_version" json:"apiVersion,omitempty"`
+ FieldPath *string `tfsdk:"field_path" json:"fieldPath,omitempty"`
+ } `tfsdk:"field_ref" json:"fieldRef,omitempty"`
+ Mode *int64 `tfsdk:"mode" json:"mode,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ ResourceFieldRef *struct {
+ ContainerName *string `tfsdk:"container_name" json:"containerName,omitempty"`
+ Divisor *string `tfsdk:"divisor" json:"divisor,omitempty"`
+ Resource *string `tfsdk:"resource" json:"resource,omitempty"`
+ } `tfsdk:"resource_field_ref" json:"resourceFieldRef,omitempty"`
+ } `tfsdk:"items" json:"items,omitempty"`
+ } `tfsdk:"downward_api" json:"downwardAPI,omitempty"`
+ Secret *struct {
+ Items *[]struct {
+ Key *string `tfsdk:"key" json:"key,omitempty"`
+ Mode *int64 `tfsdk:"mode" json:"mode,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ } `tfsdk:"items" json:"items,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Optional *bool `tfsdk:"optional" json:"optional,omitempty"`
+ } `tfsdk:"secret" json:"secret,omitempty"`
+ ServiceAccountToken *struct {
+ Audience *string `tfsdk:"audience" json:"audience,omitempty"`
+ ExpirationSeconds *int64 `tfsdk:"expiration_seconds" json:"expirationSeconds,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ } `tfsdk:"service_account_token" json:"serviceAccountToken,omitempty"`
+ } `tfsdk:"sources" json:"sources,omitempty"`
+ } `tfsdk:"projected" json:"projected,omitempty"`
+ Quobyte *struct {
+ Group *string `tfsdk:"group" json:"group,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ Registry *string `tfsdk:"registry" json:"registry,omitempty"`
+ Tenant *string `tfsdk:"tenant" json:"tenant,omitempty"`
+ User *string `tfsdk:"user" json:"user,omitempty"`
+ Volume *string `tfsdk:"volume" json:"volume,omitempty"`
+ } `tfsdk:"quobyte" json:"quobyte,omitempty"`
+ Rbd *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ Image *string `tfsdk:"image" json:"image,omitempty"`
+ Keyring *string `tfsdk:"keyring" json:"keyring,omitempty"`
+ Monitors *[]string `tfsdk:"monitors" json:"monitors,omitempty"`
+ Pool *string `tfsdk:"pool" json:"pool,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"secret_ref" json:"secretRef,omitempty"`
+ User *string `tfsdk:"user" json:"user,omitempty"`
+ } `tfsdk:"rbd" json:"rbd,omitempty"`
+ ScaleIO *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ Gateway *string `tfsdk:"gateway" json:"gateway,omitempty"`
+ ProtectionDomain *string `tfsdk:"protection_domain" json:"protectionDomain,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"secret_ref" json:"secretRef,omitempty"`
+ SslEnabled *bool `tfsdk:"ssl_enabled" json:"sslEnabled,omitempty"`
+ StorageMode *string `tfsdk:"storage_mode" json:"storageMode,omitempty"`
+ StoragePool *string `tfsdk:"storage_pool" json:"storagePool,omitempty"`
+ System *string `tfsdk:"system" json:"system,omitempty"`
+ VolumeName *string `tfsdk:"volume_name" json:"volumeName,omitempty"`
+ } `tfsdk:"scale_io" json:"scaleIO,omitempty"`
+ Secret *struct {
+ DefaultMode *int64 `tfsdk:"default_mode" json:"defaultMode,omitempty"`
+ Items *[]struct {
+ Key *string `tfsdk:"key" json:"key,omitempty"`
+ Mode *int64 `tfsdk:"mode" json:"mode,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ } `tfsdk:"items" json:"items,omitempty"`
+ Optional *bool `tfsdk:"optional" json:"optional,omitempty"`
+ SecretName *string `tfsdk:"secret_name" json:"secretName,omitempty"`
+ } `tfsdk:"secret" json:"secret,omitempty"`
+ Storageos *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"secret_ref" json:"secretRef,omitempty"`
+ VolumeName *string `tfsdk:"volume_name" json:"volumeName,omitempty"`
+ VolumeNamespace *string `tfsdk:"volume_namespace" json:"volumeNamespace,omitempty"`
+ } `tfsdk:"storageos" json:"storageos,omitempty"`
+ VsphereVolume *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ StoragePolicyID *string `tfsdk:"storage_policy_id" json:"storagePolicyID,omitempty"`
+ StoragePolicyName *string `tfsdk:"storage_policy_name" json:"storagePolicyName,omitempty"`
+ VolumePath *string `tfsdk:"volume_path" json:"volumePath,omitempty"`
+ } `tfsdk:"vsphere_volume" json:"vsphereVolume,omitempty"`
+ } `tfsdk:"volumes" json:"volumes,omitempty"`
+ } `tfsdk:"template" json:"template,omitempty"`
+ } `tfsdk:"sharding_specs" json:"shardingSpecs,omitempty"`
+ Storage *struct {
+ Size *string `tfsdk:"size" json:"size,omitempty"`
+ } `tfsdk:"storage" json:"storage,omitempty"`
+ Tenancy *string `tfsdk:"tenancy" json:"tenancy,omitempty"`
+ TerminationPolicy *string `tfsdk:"termination_policy" json:"terminationPolicy,omitempty"`
+ Tolerations *map[string]string `tfsdk:"tolerations" json:"tolerations,omitempty"`
+ Topology *string `tfsdk:"topology" json:"topology,omitempty"`
+ } `tfsdk:"spec" json:"spec,omitempty"`
+}
+
+func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Metadata(_ context.Context, request datasource.MetadataRequest, response *datasource.MetadataResponse) {
+ response.TypeName = request.ProviderTypeName + "_apps_kubeblocks_io_cluster_v1alpha1_manifest"
+}
+
+func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ datasource.SchemaRequest, response *datasource.SchemaResponse) {
+ response.Schema = schema.Schema{
+ Description: "Cluster offers a unified management interface for a wide variety of database and storage systems:- Relational databases: MySQL, PostgreSQL, MariaDB- NoSQL databases: Redis, MongoDB- KV stores: ZooKeeper, etcd- Analytics systems: ElasticSearch, OpenSearch, ClickHouse, Doris, StarRocks, Solr- Message queues: Kafka, Pulsar- Distributed SQL: TiDB, OceanBase- Vector databases: Qdrant, Milvus, Weaviate- Object storage: MinioKubeBlocks utilizes an abstraction layer to encapsulate the characteristics of these diverse systems.A Cluster is composed of multiple Components, each defined by vendors or KubeBlocks Addon developers via ComponentDefinition,arranged in Directed Acyclic Graph (DAG) topologies.The topologies, defined in a ClusterDefinition, coordinate reconciliation across Cluster's lifecycle phases:Creating, Running, Updating, Stopping, Stopped, Deleting.Lifecycle management ensures that each Component operates in harmony, executing appropriate actions at each lifecycle stage.For sharded-nothing architecture, the Cluster supports managing multiple shards,each shard managed by a separate Component, supporting dynamic resharding.The Cluster object is aimed to maintain the overall integrity and availability of a database cluster,serves as the central control point, abstracting the complexity of multiple-component management,and providing a unified interface for cluster-wide operations.",
+ MarkdownDescription: "Cluster offers a unified management interface for a wide variety of database and storage systems:- Relational databases: MySQL, PostgreSQL, MariaDB- NoSQL databases: Redis, MongoDB- KV stores: ZooKeeper, etcd- Analytics systems: ElasticSearch, OpenSearch, ClickHouse, Doris, StarRocks, Solr- Message queues: Kafka, Pulsar- Distributed SQL: TiDB, OceanBase- Vector databases: Qdrant, Milvus, Weaviate- Object storage: MinioKubeBlocks utilizes an abstraction layer to encapsulate the characteristics of these diverse systems.A Cluster is composed of multiple Components, each defined by vendors or KubeBlocks Addon developers via ComponentDefinition,arranged in Directed Acyclic Graph (DAG) topologies.The topologies, defined in a ClusterDefinition, coordinate reconciliation across Cluster's lifecycle phases:Creating, Running, Updating, Stopping, Stopped, Deleting.Lifecycle management ensures that each Component operates in harmony, executing appropriate actions at each lifecycle stage.For sharded-nothing architecture, the Cluster supports managing multiple shards,each shard managed by a separate Component, supporting dynamic resharding.The Cluster object is aimed to maintain the overall integrity and availability of a database cluster,serves as the central control point, abstracting the complexity of multiple-component management,and providing a unified interface for cluster-wide operations.",
+ Attributes: map[string]schema.Attribute{
+ "yaml": schema.StringAttribute{
+ Description: "The generated manifest in YAML format.",
+ MarkdownDescription: "The generated manifest in YAML format.",
+ Required: false,
+ Optional: false,
+ Computed: true,
+ },
+
+ "metadata": schema.SingleNestedAttribute{
+ Description: "Data that helps uniquely identify this object. See https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#metadata for more details.",
+ MarkdownDescription: "Data that helps uniquely identify this object. See https://github.com/kubernetes/community/blob/master/contributors/devel/sig-architecture/api-conventions.md#metadata for more details.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Unique identifier for this object. See https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names for more details.",
+ MarkdownDescription: "Unique identifier for this object. See https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names for more details.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ Validators: []validator.String{
+ validators.NameValidator(),
+ stringvalidator.LengthAtLeast(1),
+ },
+ },
+
+ "namespace": schema.StringAttribute{
+ Description: "Namespaces provides a mechanism for isolating groups of resources within a single cluster. See https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ for more details.",
+ MarkdownDescription: "Namespaces provides a mechanism for isolating groups of resources within a single cluster. See https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ for more details.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ Validators: []validator.String{
+ validators.NameValidator(),
+ stringvalidator.LengthAtLeast(1),
+ },
+ },
+
+ "labels": schema.MapAttribute{
+ Description: "Keys and values that can be used to organize and categorize objects. See https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ for more details.",
+ MarkdownDescription: "Keys and values that can be used to organize and categorize objects. See https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ for more details.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.Map{
+ validators.LabelValidator(),
+ },
+ },
+ "annotations": schema.MapAttribute{
+ Description: "Keys and values that can be used by external tooling to store and retrieve arbitrary metadata about this object. See https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ for more details.",
+ MarkdownDescription: "Keys and values that can be used by external tooling to store and retrieve arbitrary metadata about this object. See https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ for more details.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.Map{
+ validators.AnnotationValidator(),
+ },
+ },
+ },
+ },
+
+ "spec": schema.SingleNestedAttribute{
+ Description: "ClusterSpec defines the desired state of Cluster.",
+ MarkdownDescription: "ClusterSpec defines the desired state of Cluster.",
+ Attributes: map[string]schema.Attribute{
+ "affinity": schema.SingleNestedAttribute{
+ Description: "Defines a set of node affinity scheduling rules for the Cluster's Pods.This field helps control the placement of Pods on nodes within the Cluster.Deprecated since v0.10. Use the 'schedulingPolicy' field instead.",
+ MarkdownDescription: "Defines a set of node affinity scheduling rules for the Cluster's Pods.This field helps control the placement of Pods on nodes within the Cluster.Deprecated since v0.10. Use the 'schedulingPolicy' field instead.",
+ Attributes: map[string]schema.Attribute{
+ "node_labels": schema.MapAttribute{
+ Description: "Indicates the node labels that must be present on nodes for pods to be scheduled on them.It is a map where the keys are the label keys and the values are the corresponding label values.Pods will only be scheduled on nodes that have all the specified labels with the corresponding values.For example, if NodeLabels is set to {'nodeType': 'ssd', 'environment': 'production'},pods will only be scheduled on nodes that have both the 'nodeType' label with value 'ssd'and the 'environment' label with value 'production'.This field allows users to control Pod placement based on specific node labels.It can be used to ensure that Pods are scheduled on nodes with certain characteristics,such as specific hardware (e.g., SSD), environment (e.g., production, staging),or any other custom labels assigned to nodes.",
+ MarkdownDescription: "Indicates the node labels that must be present on nodes for pods to be scheduled on them.It is a map where the keys are the label keys and the values are the corresponding label values.Pods will only be scheduled on nodes that have all the specified labels with the corresponding values.For example, if NodeLabels is set to {'nodeType': 'ssd', 'environment': 'production'},pods will only be scheduled on nodes that have both the 'nodeType' label with value 'ssd'and the 'environment' label with value 'production'.This field allows users to control Pod placement based on specific node labels.It can be used to ensure that Pods are scheduled on nodes with certain characteristics,such as specific hardware (e.g., SSD), environment (e.g., production, staging),or any other custom labels assigned to nodes.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "pod_anti_affinity": schema.StringAttribute{
+ Description: "Specifies the anti-affinity level of Pods within a Component.It determines how pods should be spread across nodes to improve availability and performance.It can have the following values: 'Preferred' and 'Required'.The default value is 'Preferred'.",
+ MarkdownDescription: "Specifies the anti-affinity level of Pods within a Component.It determines how pods should be spread across nodes to improve availability and performance.It can have the following values: 'Preferred' and 'Required'.The default value is 'Preferred'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.OneOf("Preferred", "Required"),
+ },
+ },
+
+ "tenancy": schema.StringAttribute{
+ Description: "Determines the level of resource isolation between Pods.It can have the following values: 'SharedNode' and 'DedicatedNode'.- SharedNode: Allow that multiple Pods may share the same node, which is the default behavior of K8s.- DedicatedNode: Each Pod runs on a dedicated node, ensuring that no two Pods share the same node. In other words, if a Pod is already running on a node, no other Pods will be scheduled on that node. Which provides a higher level of isolation and resource guarantee for Pods. The default value is 'SharedNode'.",
+ MarkdownDescription: "Determines the level of resource isolation between Pods.It can have the following values: 'SharedNode' and 'DedicatedNode'.- SharedNode: Allow that multiple Pods may share the same node, which is the default behavior of K8s.- DedicatedNode: Each Pod runs on a dedicated node, ensuring that no two Pods share the same node. In other words, if a Pod is already running on a node, no other Pods will be scheduled on that node. Which provides a higher level of isolation and resource guarantee for Pods. The default value is 'SharedNode'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.OneOf("SharedNode", "DedicatedNode"),
+ },
+ },
+
+ "topology_keys": schema.ListAttribute{
+ Description: "Represents the key of node labels used to define the topology domain for Pod anti-affinityand Pod spread constraints.In K8s, a topology domain is a set of nodes that have the same value for a specific label key.Nodes with labels containing any of the specified TopologyKeys and identical values are consideredto be in the same topology domain.Note: The concept of topology in the context of K8s TopologyKeys is different from the concept oftopology in the ClusterDefinition.When a Pod has anti-affinity or spread constraints specified, Kubernetes will attempt to schedule thePod on nodes with different values for the specified TopologyKeys.This ensures that Pods are spread across different topology domains, promoting high availability andreducing the impact of node failures.Some well-known label keys, such as 'kubernetes.io/hostname' and 'topology.kubernetes.io/zone',are often used as TopologyKey.These keys represent the hostname and zone of a node, respectively.By including these keys in the TopologyKeys list, Pods will be spread across nodes withdifferent hostnames or zones.In addition to the well-known keys, users can also specify custom label keys as TopologyKeys.This allows for more flexible and custom topology definitions based on the specific needsof the application or environment.The TopologyKeys field is a slice of strings, where each string represents a label key.The order of the keys in the slice does not matter.",
+ MarkdownDescription: "Represents the key of node labels used to define the topology domain for Pod anti-affinityand Pod spread constraints.In K8s, a topology domain is a set of nodes that have the same value for a specific label key.Nodes with labels containing any of the specified TopologyKeys and identical values are consideredto be in the same topology domain.Note: The concept of topology in the context of K8s TopologyKeys is different from the concept oftopology in the ClusterDefinition.When a Pod has anti-affinity or spread constraints specified, Kubernetes will attempt to schedule thePod on nodes with different values for the specified TopologyKeys.This ensures that Pods are spread across different topology domains, promoting high availability andreducing the impact of node failures.Some well-known label keys, such as 'kubernetes.io/hostname' and 'topology.kubernetes.io/zone',are often used as TopologyKey.These keys represent the hostname and zone of a node, respectively.By including these keys in the TopologyKeys list, Pods will be spread across nodes withdifferent hostnames or zones.In addition to the well-known keys, users can also specify custom label keys as TopologyKeys.This allows for more flexible and custom topology definitions based on the specific needsof the application or environment.The TopologyKeys field is a slice of strings, where each string represents a label key.The order of the keys in the slice does not matter.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "availability_policy": schema.StringAttribute{
+ Description: "Describes the availability policy, including zone, node, and none.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
+ MarkdownDescription: "Describes the availability policy, including zone, node, and none.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.OneOf("zone", "node", "none"),
+ },
+ },
+
+ "backup": schema.SingleNestedAttribute{
+ Description: "Specifies the backup configuration of the Cluster.",
+ MarkdownDescription: "Specifies the backup configuration of the Cluster.",
+ Attributes: map[string]schema.Attribute{
+ "cron_expression": schema.StringAttribute{
+ Description: "The cron expression for the schedule. The timezone is in UTC. See https://en.wikipedia.org/wiki/Cron.",
+ MarkdownDescription: "The cron expression for the schedule. The timezone is in UTC. See https://en.wikipedia.org/wiki/Cron.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "enabled": schema.BoolAttribute{
+ Description: "Specifies whether automated backup is enabled for the Cluster.",
+ MarkdownDescription: "Specifies whether automated backup is enabled for the Cluster.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "method": schema.StringAttribute{
+ Description: "Specifies the backup method to use, as defined in backupPolicy.",
+ MarkdownDescription: "Specifies the backup method to use, as defined in backupPolicy.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "pitr_enabled": schema.BoolAttribute{
+ Description: "Specifies whether to enable point-in-time recovery.",
+ MarkdownDescription: "Specifies whether to enable point-in-time recovery.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "repo_name": schema.StringAttribute{
+ Description: "Specifies the name of the backupRepo. If not set, the default backupRepo will be used.",
+ MarkdownDescription: "Specifies the name of the backupRepo. If not set, the default backupRepo will be used.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "retention_period": schema.StringAttribute{
+ Description: "Determines the duration to retain backups. Backups older than this period are automatically removed.For example, RetentionPeriod of '30d' will keep only the backups of last 30 days.Sample duration format:- years: 2y- months: 6mo- days: 30d- hours: 12h- minutes: 30mYou can also combine the above durations. For example: 30d12h30m.Default value is 7d.",
+ MarkdownDescription: "Determines the duration to retain backups. Backups older than this period are automatically removed.For example, RetentionPeriod of '30d' will keep only the backups of last 30 days.Sample duration format:- years: 2y- months: 6mo- days: 30d- hours: 12h- minutes: 30mYou can also combine the above durations. For example: 30d12h30m.Default value is 7d.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "starting_deadline_minutes": schema.Int64Attribute{
+ Description: "Specifies the maximum time in minutes that the system will wait to start a missed backup job.If the scheduled backup time is missed for any reason, the backup job must start within this deadline.Values must be between 0 (immediate execution) and 1440 (one day).",
+ MarkdownDescription: "Specifies the maximum time in minutes that the system will wait to start a missed backup job.If the scheduled backup time is missed for any reason, the backup job must start within this deadline.Values must be between 0 (immediate execution) and 1440 (one day).",
+ Required: false,
Optional: true,
Computed: false,
+ Validators: []validator.Int64{
+ int64validator.AtLeast(0),
+ int64validator.AtMost(1440),
+ },
},
},
Required: false,
@@ -1972,1651 +2700,4443 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "availability_policy": schema.StringAttribute{
- Description: "Describes the availability policy, including zone, node, and none.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
- MarkdownDescription: "Describes the availability policy, including zone, node, and none.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.OneOf("zone", "node", "none"),
- },
- },
+ "cluster_definition_ref": schema.StringAttribute{
+ Description: "Specifies the name of the ClusterDefinition to use when creating a Cluster.This field enables users to create a Cluster based on a specific ClusterDefinition.Which, in conjunction with the 'topology' field, determine:- The Components to be included in the Cluster.- The sequences in which the Components are created, updated, and terminate.This facilitates multiple-components management with predefined ClusterDefinition.Users with advanced requirements can bypass this general setting and specify more precise control overthe composition of the Cluster by directly referencing specific ComponentDefinitions for each componentwithin 'componentSpecs[*].componentDef'.If this field is not provided, each component must be explicitly defined in 'componentSpecs[*].componentDef'.Note: Once set, this field cannot be modified; it is immutable.",
+ MarkdownDescription: "Specifies the name of the ClusterDefinition to use when creating a Cluster.This field enables users to create a Cluster based on a specific ClusterDefinition.Which, in conjunction with the 'topology' field, determine:- The Components to be included in the Cluster.- The sequences in which the Components are created, updated, and terminate.This facilitates multiple-components management with predefined ClusterDefinition.Users with advanced requirements can bypass this general setting and specify more precise control overthe composition of the Cluster by directly referencing specific ComponentDefinitions for each componentwithin 'componentSpecs[*].componentDef'.If this field is not provided, each component must be explicitly defined in 'componentSpecs[*].componentDef'.Note: Once set, this field cannot be modified; it is immutable.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.LengthAtMost(63),
+ stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z0-9]([a-z0-9\.\-]*[a-z0-9])?$`), ""),
+ },
+ },
+
+ "cluster_version_ref": schema.StringAttribute{
+ Description: "Refers to the ClusterVersion name.Deprecated since v0.9, use ComponentVersion instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
+ MarkdownDescription: "Refers to the ClusterVersion name.Deprecated since v0.9, use ComponentVersion instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.LengthAtMost(63),
+ stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z0-9]([a-z0-9\.\-]*[a-z0-9])?$`), ""),
+ },
+ },
+
+ "component_specs": schema.ListNestedAttribute{
+ Description: "Specifies a list of ClusterComponentSpec objects used to define the individual Components that make up a Cluster.This field allows for detailed configuration of each Component within the Cluster.Note: 'shardingSpecs' and 'componentSpecs' cannot both be empty; at least one must be defined to configure a Cluster.",
+ MarkdownDescription: "Specifies a list of ClusterComponentSpec objects used to define the individual Components that make up a Cluster.This field allows for detailed configuration of each Component within the Cluster.Note: 'shardingSpecs' and 'componentSpecs' cannot both be empty; at least one must be defined to configure a Cluster.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "affinity": schema.SingleNestedAttribute{
+ Description: "Specifies a group of affinity scheduling rules for the Component.It allows users to control how the Component's Pods are scheduled onto nodes in the K8s cluster.Deprecated since v0.10, replaced by the 'schedulingPolicy' field.",
+ MarkdownDescription: "Specifies a group of affinity scheduling rules for the Component.It allows users to control how the Component's Pods are scheduled onto nodes in the K8s cluster.Deprecated since v0.10, replaced by the 'schedulingPolicy' field.",
+ Attributes: map[string]schema.Attribute{
+ "node_labels": schema.MapAttribute{
+ Description: "Indicates the node labels that must be present on nodes for pods to be scheduled on them.It is a map where the keys are the label keys and the values are the corresponding label values.Pods will only be scheduled on nodes that have all the specified labels with the corresponding values.For example, if NodeLabels is set to {'nodeType': 'ssd', 'environment': 'production'},pods will only be scheduled on nodes that have both the 'nodeType' label with value 'ssd'and the 'environment' label with value 'production'.This field allows users to control Pod placement based on specific node labels.It can be used to ensure that Pods are scheduled on nodes with certain characteristics,such as specific hardware (e.g., SSD), environment (e.g., production, staging),or any other custom labels assigned to nodes.",
+ MarkdownDescription: "Indicates the node labels that must be present on nodes for pods to be scheduled on them.It is a map where the keys are the label keys and the values are the corresponding label values.Pods will only be scheduled on nodes that have all the specified labels with the corresponding values.For example, if NodeLabels is set to {'nodeType': 'ssd', 'environment': 'production'},pods will only be scheduled on nodes that have both the 'nodeType' label with value 'ssd'and the 'environment' label with value 'production'.This field allows users to control Pod placement based on specific node labels.It can be used to ensure that Pods are scheduled on nodes with certain characteristics,such as specific hardware (e.g., SSD), environment (e.g., production, staging),or any other custom labels assigned to nodes.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "pod_anti_affinity": schema.StringAttribute{
+ Description: "Specifies the anti-affinity level of Pods within a Component.It determines how pods should be spread across nodes to improve availability and performance.It can have the following values: 'Preferred' and 'Required'.The default value is 'Preferred'.",
+ MarkdownDescription: "Specifies the anti-affinity level of Pods within a Component.It determines how pods should be spread across nodes to improve availability and performance.It can have the following values: 'Preferred' and 'Required'.The default value is 'Preferred'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.OneOf("Preferred", "Required"),
+ },
+ },
+
+ "tenancy": schema.StringAttribute{
+ Description: "Determines the level of resource isolation between Pods.It can have the following values: 'SharedNode' and 'DedicatedNode'.- SharedNode: Allow that multiple Pods may share the same node, which is the default behavior of K8s.- DedicatedNode: Each Pod runs on a dedicated node, ensuring that no two Pods share the same node. In other words, if a Pod is already running on a node, no other Pods will be scheduled on that node. Which provides a higher level of isolation and resource guarantee for Pods. The default value is 'SharedNode'.",
+ MarkdownDescription: "Determines the level of resource isolation between Pods.It can have the following values: 'SharedNode' and 'DedicatedNode'.- SharedNode: Allow that multiple Pods may share the same node, which is the default behavior of K8s.- DedicatedNode: Each Pod runs on a dedicated node, ensuring that no two Pods share the same node. In other words, if a Pod is already running on a node, no other Pods will be scheduled on that node. Which provides a higher level of isolation and resource guarantee for Pods. The default value is 'SharedNode'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.OneOf("SharedNode", "DedicatedNode"),
+ },
+ },
+
+ "topology_keys": schema.ListAttribute{
+ Description: "Represents the key of node labels used to define the topology domain for Pod anti-affinityand Pod spread constraints.In K8s, a topology domain is a set of nodes that have the same value for a specific label key.Nodes with labels containing any of the specified TopologyKeys and identical values are consideredto be in the same topology domain.Note: The concept of topology in the context of K8s TopologyKeys is different from the concept oftopology in the ClusterDefinition.When a Pod has anti-affinity or spread constraints specified, Kubernetes will attempt to schedule thePod on nodes with different values for the specified TopologyKeys.This ensures that Pods are spread across different topology domains, promoting high availability andreducing the impact of node failures.Some well-known label keys, such as 'kubernetes.io/hostname' and 'topology.kubernetes.io/zone',are often used as TopologyKey.These keys represent the hostname and zone of a node, respectively.By including these keys in the TopologyKeys list, Pods will be spread across nodes withdifferent hostnames or zones.In addition to the well-known keys, users can also specify custom label keys as TopologyKeys.This allows for more flexible and custom topology definitions based on the specific needsof the application or environment.The TopologyKeys field is a slice of strings, where each string represents a label key.The order of the keys in the slice does not matter.",
+ MarkdownDescription: "Represents the key of node labels used to define the topology domain for Pod anti-affinityand Pod spread constraints.In K8s, a topology domain is a set of nodes that have the same value for a specific label key.Nodes with labels containing any of the specified TopologyKeys and identical values are consideredto be in the same topology domain.Note: The concept of topology in the context of K8s TopologyKeys is different from the concept oftopology in the ClusterDefinition.When a Pod has anti-affinity or spread constraints specified, Kubernetes will attempt to schedule thePod on nodes with different values for the specified TopologyKeys.This ensures that Pods are spread across different topology domains, promoting high availability andreducing the impact of node failures.Some well-known label keys, such as 'kubernetes.io/hostname' and 'topology.kubernetes.io/zone',are often used as TopologyKey.These keys represent the hostname and zone of a node, respectively.By including these keys in the TopologyKeys list, Pods will be spread across nodes withdifferent hostnames or zones.In addition to the well-known keys, users can also specify custom label keys as TopologyKeys.This allows for more flexible and custom topology definitions based on the specific needsof the application or environment.The TopologyKeys field is a slice of strings, where each string represents a label key.The order of the keys in the slice does not matter.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "annotations": schema.MapAttribute{
+ Description: "Specifies Annotations to override or add for underlying Pods.",
+ MarkdownDescription: "Specifies Annotations to override or add for underlying Pods.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "component_def": schema.StringAttribute{
+ Description: "References the name of a ComponentDefinition object.The ComponentDefinition specifies the behavior and characteristics of the Component.If both 'componentDefRef' and 'componentDef' are provided,the 'componentDef' will take precedence over 'componentDefRef'.",
+ MarkdownDescription: "References the name of a ComponentDefinition object.The ComponentDefinition specifies the behavior and characteristics of the Component.If both 'componentDefRef' and 'componentDef' are provided,the 'componentDef' will take precedence over 'componentDefRef'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.LengthAtMost(64),
+ stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z0-9]([a-z0-9\.\-]*[a-z0-9])?$`), ""),
+ },
+ },
+
+ "component_def_ref": schema.StringAttribute{
+ Description: "References a ClusterComponentDefinition defined in the 'clusterDefinition.spec.componentDef' field.Must comply with the IANA service naming rule.Deprecated since v0.9,because defining Components in 'clusterDefinition.spec.componentDef' field has been deprecated.This field is replaced by the 'componentDef' field, use 'componentDef' instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.TODO +kubebuilder:validation:XValidation:rule='self == oldSelf',message='componentDefRef is immutable'",
+ MarkdownDescription: "References a ClusterComponentDefinition defined in the 'clusterDefinition.spec.componentDef' field.Must comply with the IANA service naming rule.Deprecated since v0.9,because defining Components in 'clusterDefinition.spec.componentDef' field has been deprecated.This field is replaced by the 'componentDef' field, use 'componentDef' instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.TODO +kubebuilder:validation:XValidation:rule='self == oldSelf',message='componentDefRef is immutable'",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.LengthAtMost(22),
+ stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z]([a-z0-9\-]*[a-z0-9])?$`), ""),
+ },
+ },
+
+ "configs": schema.ListNestedAttribute{
+ Description: "Specifies the configuration content of a config template.",
+ MarkdownDescription: "Specifies the configuration content of a config template.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "config_map": schema.SingleNestedAttribute{
+ Description: "ConfigMap source for the config.",
+ MarkdownDescription: "ConfigMap source for the config.",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "items": schema.ListNestedAttribute{
+ Description: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "optional": schema.BoolAttribute{
+ Description: "optional specify whether the ConfigMap or its keys must be defined",
+ MarkdownDescription: "optional specify whether the ConfigMap or its keys must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "The name of the config.",
+ MarkdownDescription: "The name of the config.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "disable_exporter": schema.BoolAttribute{
+ Description: "Determines whether metrics exporter information is annotated on the Component's headless Service.If set to true, the following annotations will not be patched into the Service:- 'monitor.kubeblocks.io/path'- 'monitor.kubeblocks.io/port'- 'monitor.kubeblocks.io/scheme'These annotations allow the Prometheus installed by KubeBlocks to discover and scrape metrics from the exporter.",
+ MarkdownDescription: "Determines whether metrics exporter information is annotated on the Component's headless Service.If set to true, the following annotations will not be patched into the Service:- 'monitor.kubeblocks.io/path'- 'monitor.kubeblocks.io/port'- 'monitor.kubeblocks.io/scheme'These annotations allow the Prometheus installed by KubeBlocks to discover and scrape metrics from the exporter.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "enabled_logs": schema.ListAttribute{
+ Description: "Specifies which types of logs should be collected for the Component.The log types are defined in the 'componentDefinition.spec.logConfigs' field with the LogConfig entries.The elements in the 'enabledLogs' array correspond to the names of the LogConfig entries.For example, if the 'componentDefinition.spec.logConfigs' defines LogConfig entries withnames 'slow_query_log' and 'error_log',you can enable the collection of these logs by including their names in the 'enabledLogs' array:'''yamlenabledLogs:- slow_query_log- error_log'''",
+ MarkdownDescription: "Specifies which types of logs should be collected for the Component.The log types are defined in the 'componentDefinition.spec.logConfigs' field with the LogConfig entries.The elements in the 'enabledLogs' array correspond to the names of the LogConfig entries.For example, if the 'componentDefinition.spec.logConfigs' defines LogConfig entries withnames 'slow_query_log' and 'error_log',you can enable the collection of these logs by including their names in the 'enabledLogs' array:'''yamlenabledLogs:- slow_query_log- error_log'''",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "env": schema.ListNestedAttribute{
+ Description: "List of environment variables to add.These environment variables will be placed after the environment variables declared in the Pod.",
+ MarkdownDescription: "List of environment variables to add.These environment variables will be placed after the environment variables declared in the Pod.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the environment variable. Must be a C_IDENTIFIER.",
+ MarkdownDescription: "Name of the environment variable. Must be a C_IDENTIFIER.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "value": schema.StringAttribute{
+ Description: "Variable references $(VAR_NAME) are expandedusing the previously defined environment variables in the container andany service environment variables. If a variable cannot be resolved,the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.'$$(VAR_NAME)' will produce the string literal '$(VAR_NAME)'.Escaped references will never be expanded, regardless of whether the variableexists or not.Defaults to ''.",
+ MarkdownDescription: "Variable references $(VAR_NAME) are expandedusing the previously defined environment variables in the container andany service environment variables. If a variable cannot be resolved,the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.'$$(VAR_NAME)' will produce the string literal '$(VAR_NAME)'.Escaped references will never be expanded, regardless of whether the variableexists or not.Defaults to ''.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "value_from": schema.SingleNestedAttribute{
+ Description: "Source for the environment variable's value. Cannot be used if value is not empty.",
+ MarkdownDescription: "Source for the environment variable's value. Cannot be used if value is not empty.",
+ Attributes: map[string]schema.Attribute{
+ "config_map_key_ref": schema.SingleNestedAttribute{
+ Description: "Selects a key of a ConfigMap.",
+ MarkdownDescription: "Selects a key of a ConfigMap.",
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The key to select.",
+ MarkdownDescription: "The key to select.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "optional": schema.BoolAttribute{
+ Description: "Specify whether the ConfigMap or its key must be defined",
+ MarkdownDescription: "Specify whether the ConfigMap or its key must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "field_ref": schema.SingleNestedAttribute{
+ Description: "Selects a field of the pod: supports metadata.name, metadata.namespace, 'metadata.labels['']', 'metadata.annotations['']',spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.",
+ MarkdownDescription: "Selects a field of the pod: supports metadata.name, metadata.namespace, 'metadata.labels['']', 'metadata.annotations['']',spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.",
+ Attributes: map[string]schema.Attribute{
+ "api_version": schema.StringAttribute{
+ Description: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ MarkdownDescription: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "field_path": schema.StringAttribute{
+ Description: "Path of the field to select in the specified API version.",
+ MarkdownDescription: "Path of the field to select in the specified API version.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "resource_field_ref": schema.SingleNestedAttribute{
+ Description: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.",
+ MarkdownDescription: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.",
+ Attributes: map[string]schema.Attribute{
+ "container_name": schema.StringAttribute{
+ Description: "Container name: required for volumes, optional for env vars",
+ MarkdownDescription: "Container name: required for volumes, optional for env vars",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "divisor": schema.StringAttribute{
+ Description: "Specifies the output format of the exposed resources, defaults to '1'",
+ MarkdownDescription: "Specifies the output format of the exposed resources, defaults to '1'",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "resource": schema.StringAttribute{
+ Description: "Required: resource to select",
+ MarkdownDescription: "Required: resource to select",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_key_ref": schema.SingleNestedAttribute{
+ Description: "Selects a key of a secret in the pod's namespace",
+ MarkdownDescription: "Selects a key of a secret in the pod's namespace",
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The key of the secret to select from. Must be a valid secret key.",
+ MarkdownDescription: "The key of the secret to select from. Must be a valid secret key.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "optional": schema.BoolAttribute{
+ Description: "Specify whether the Secret or its key must be defined",
+ MarkdownDescription: "Specify whether the Secret or its key must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "instances": schema.ListNestedAttribute{
+ Description: "Allows for the customization of configuration values for each instance within a Component.An instance represent a single replica (Pod and associated K8s resources like PVCs, Services, and ConfigMaps).While instances typically share a common configuration as defined in the ClusterComponentSpec,they can require unique settings in various scenarios:For example:- A database Component might require different resource allocations for primary and secondary instances, with primaries needing more resources.- During a rolling upgrade, a Component may first update the image for one or a few instances, and then update the remaining instances after verifying that the updated instances are functioning correctly.InstanceTemplate allows for specifying these unique configurations per instance.Each instance's name is constructed using the pattern: $(component.name)-$(template.name)-$(ordinal),starting with an ordinal of 0.It is crucial to maintain unique names for each InstanceTemplate to avoid conflicts.The sum of replicas across all InstanceTemplates should not exceed the total number of replicas specified for the Component.Any remaining replicas will be generated using the default template and will follow the default naming rules.",
+ MarkdownDescription: "Allows for the customization of configuration values for each instance within a Component.An instance represent a single replica (Pod and associated K8s resources like PVCs, Services, and ConfigMaps).While instances typically share a common configuration as defined in the ClusterComponentSpec,they can require unique settings in various scenarios:For example:- A database Component might require different resource allocations for primary and secondary instances, with primaries needing more resources.- During a rolling upgrade, a Component may first update the image for one or a few instances, and then update the remaining instances after verifying that the updated instances are functioning correctly.InstanceTemplate allows for specifying these unique configurations per instance.Each instance's name is constructed using the pattern: $(component.name)-$(template.name)-$(ordinal),starting with an ordinal of 0.It is crucial to maintain unique names for each InstanceTemplate to avoid conflicts.The sum of replicas across all InstanceTemplates should not exceed the total number of replicas specified for the Component.Any remaining replicas will be generated using the default template and will follow the default naming rules.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "annotations": schema.MapAttribute{
+ Description: "Specifies a map of key-value pairs to be merged into the Pod's existing annotations.Existing keys will have their values overwritten, while new keys will be added to the annotations.",
+ MarkdownDescription: "Specifies a map of key-value pairs to be merged into the Pod's existing annotations.Existing keys will have their values overwritten, while new keys will be added to the annotations.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "env": schema.ListNestedAttribute{
+ Description: "Defines Env to override.Add new or override existing envs.",
+ MarkdownDescription: "Defines Env to override.Add new or override existing envs.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the environment variable. Must be a C_IDENTIFIER.",
+ MarkdownDescription: "Name of the environment variable. Must be a C_IDENTIFIER.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "value": schema.StringAttribute{
+ Description: "Variable references $(VAR_NAME) are expandedusing the previously defined environment variables in the container andany service environment variables. If a variable cannot be resolved,the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.'$$(VAR_NAME)' will produce the string literal '$(VAR_NAME)'.Escaped references will never be expanded, regardless of whether the variableexists or not.Defaults to ''.",
+ MarkdownDescription: "Variable references $(VAR_NAME) are expandedusing the previously defined environment variables in the container andany service environment variables. If a variable cannot be resolved,the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.'$$(VAR_NAME)' will produce the string literal '$(VAR_NAME)'.Escaped references will never be expanded, regardless of whether the variableexists or not.Defaults to ''.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "value_from": schema.SingleNestedAttribute{
+ Description: "Source for the environment variable's value. Cannot be used if value is not empty.",
+ MarkdownDescription: "Source for the environment variable's value. Cannot be used if value is not empty.",
+ Attributes: map[string]schema.Attribute{
+ "config_map_key_ref": schema.SingleNestedAttribute{
+ Description: "Selects a key of a ConfigMap.",
+ MarkdownDescription: "Selects a key of a ConfigMap.",
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The key to select.",
+ MarkdownDescription: "The key to select.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "optional": schema.BoolAttribute{
+ Description: "Specify whether the ConfigMap or its key must be defined",
+ MarkdownDescription: "Specify whether the ConfigMap or its key must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "field_ref": schema.SingleNestedAttribute{
+ Description: "Selects a field of the pod: supports metadata.name, metadata.namespace, 'metadata.labels['']', 'metadata.annotations['']',spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.",
+ MarkdownDescription: "Selects a field of the pod: supports metadata.name, metadata.namespace, 'metadata.labels['']', 'metadata.annotations['']',spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.",
+ Attributes: map[string]schema.Attribute{
+ "api_version": schema.StringAttribute{
+ Description: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ MarkdownDescription: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "field_path": schema.StringAttribute{
+ Description: "Path of the field to select in the specified API version.",
+ MarkdownDescription: "Path of the field to select in the specified API version.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "resource_field_ref": schema.SingleNestedAttribute{
+ Description: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.",
+ MarkdownDescription: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.",
+ Attributes: map[string]schema.Attribute{
+ "container_name": schema.StringAttribute{
+ Description: "Container name: required for volumes, optional for env vars",
+ MarkdownDescription: "Container name: required for volumes, optional for env vars",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "divisor": schema.StringAttribute{
+ Description: "Specifies the output format of the exposed resources, defaults to '1'",
+ MarkdownDescription: "Specifies the output format of the exposed resources, defaults to '1'",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "resource": schema.StringAttribute{
+ Description: "Required: resource to select",
+ MarkdownDescription: "Required: resource to select",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_key_ref": schema.SingleNestedAttribute{
+ Description: "Selects a key of a secret in the pod's namespace",
+ MarkdownDescription: "Selects a key of a secret in the pod's namespace",
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The key of the secret to select from. Must be a valid secret key.",
+ MarkdownDescription: "The key of the secret to select from. Must be a valid secret key.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "optional": schema.BoolAttribute{
+ Description: "Specify whether the Secret or its key must be defined",
+ MarkdownDescription: "Specify whether the Secret or its key must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "image": schema.StringAttribute{
+ Description: "Specifies an override for the first container's image in the Pod.",
+ MarkdownDescription: "Specifies an override for the first container's image in the Pod.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "labels": schema.MapAttribute{
+ Description: "Specifies a map of key-value pairs that will be merged into the Pod's existing labels.Values for existing keys will be overwritten, and new keys will be added.",
+ MarkdownDescription: "Specifies a map of key-value pairs that will be merged into the Pod's existing labels.Values for existing keys will be overwritten, and new keys will be added.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name specifies the unique name of the instance Pod created using this InstanceTemplate.This name is constructed by concatenating the Component's name, the template's name, and the instance's ordinalusing the pattern: $(cluster.name)-$(component.name)-$(template.name)-$(ordinal). Ordinals start from 0.The specified name overrides any default naming conventions or patterns.",
+ MarkdownDescription: "Name specifies the unique name of the instance Pod created using this InstanceTemplate.This name is constructed by concatenating the Component's name, the template's name, and the instance's ordinalusing the pattern: $(cluster.name)-$(component.name)-$(template.name)-$(ordinal). Ordinals start from 0.The specified name overrides any default naming conventions or patterns.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.LengthAtMost(54),
+ stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z0-9]([a-z0-9\.\-]*[a-z0-9])?$`), ""),
+ },
+ },
+
+ "replicas": schema.Int64Attribute{
+ Description: "Specifies the number of instances (Pods) to create from this InstanceTemplate.This field allows setting how many replicated instances of the Component,with the specific overrides in the InstanceTemplate, are created.The default value is 1. A value of 0 disables instance creation.",
+ MarkdownDescription: "Specifies the number of instances (Pods) to create from this InstanceTemplate.This field allows setting how many replicated instances of the Component,with the specific overrides in the InstanceTemplate, are created.The default value is 1. A value of 0 disables instance creation.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.Int64{
+ int64validator.AtLeast(0),
+ },
+ },
+
+ "resources": schema.SingleNestedAttribute{
+ Description: "Specifies an override for the resource requirements of the first container in the Pod.This field allows for customizing resource allocation (CPU, memory, etc.) for the container.",
+ MarkdownDescription: "Specifies an override for the resource requirements of the first container in the Pod.This field allows for customizing resource allocation (CPU, memory, etc.) for the container.",
+ Attributes: map[string]schema.Attribute{
+ "claims": schema.ListNestedAttribute{
+ Description: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ MarkdownDescription: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ MarkdownDescription: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "limits": schema.MapAttribute{
+ Description: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "requests": schema.MapAttribute{
+ Description: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "scheduling_policy": schema.SingleNestedAttribute{
+ Description: "Specifies the scheduling policy for the Component.",
+ MarkdownDescription: "Specifies the scheduling policy for the Component.",
+ Attributes: map[string]schema.Attribute{
+ "affinity": schema.SingleNestedAttribute{
+ Description: "Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity.",
+ MarkdownDescription: "Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity.",
+ Attributes: map[string]schema.Attribute{
+ "node_affinity": schema.SingleNestedAttribute{
+ Description: "Describes node affinity scheduling rules for the pod.",
+ MarkdownDescription: "Describes node affinity scheduling rules for the pod.",
+ Attributes: map[string]schema.Attribute{
+ "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred.",
+ MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "preference": schema.SingleNestedAttribute{
+ Description: "A node selector term, associated with the corresponding weight.",
+ MarkdownDescription: "A node selector term, associated with the corresponding weight.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "A list of node selector requirements by node's labels.",
+ MarkdownDescription: "A list of node selector requirements by node's labels.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The label key that the selector applies to.",
+ MarkdownDescription: "The label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "match_fields": schema.ListNestedAttribute{
+ Description: "A list of node selector requirements by node's fields.",
+ MarkdownDescription: "A list of node selector requirements by node's fields.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The label key that the selector applies to.",
+ MarkdownDescription: "The label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "weight": schema.Int64Attribute{
+ Description: "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.",
+ MarkdownDescription: "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "required_during_scheduling_ignored_during_execution": schema.SingleNestedAttribute{
+ Description: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node.",
+ MarkdownDescription: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node.",
+ Attributes: map[string]schema.Attribute{
+ "node_selector_terms": schema.ListNestedAttribute{
+ Description: "Required. A list of node selector terms. The terms are ORed.",
+ MarkdownDescription: "Required. A list of node selector terms. The terms are ORed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "A list of node selector requirements by node's labels.",
+ MarkdownDescription: "A list of node selector requirements by node's labels.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The label key that the selector applies to.",
+ MarkdownDescription: "The label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "match_fields": schema.ListNestedAttribute{
+ Description: "A list of node selector requirements by node's fields.",
+ MarkdownDescription: "A list of node selector requirements by node's fields.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The label key that the selector applies to.",
+ MarkdownDescription: "The label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "pod_affinity": schema.SingleNestedAttribute{
+ Description: "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).",
+ MarkdownDescription: "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).",
+ Attributes: map[string]schema.Attribute{
+ "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
+ MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "pod_affinity_term": schema.SingleNestedAttribute{
+ Description: "Required. A pod affinity term, associated with the corresponding weight.",
+ MarkdownDescription: "Required. A pod affinity term, associated with the corresponding weight.",
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "A label query over a set of resources, in this case pods.",
+ MarkdownDescription: "A label query over a set of resources, in this case pods.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "namespace_selector": schema.SingleNestedAttribute{
+ Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "namespaces": schema.ListAttribute{
+ Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "topology_key": schema.StringAttribute{
+ Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "weight": schema.Int64Attribute{
+ Description: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
+ MarkdownDescription: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "required_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
+ MarkdownDescription: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "A label query over a set of resources, in this case pods.",
+ MarkdownDescription: "A label query over a set of resources, in this case pods.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "namespace_selector": schema.SingleNestedAttribute{
+ Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "namespaces": schema.ListAttribute{
+ Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "topology_key": schema.StringAttribute{
+ Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "pod_anti_affinity": schema.SingleNestedAttribute{
+ Description: "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).",
+ MarkdownDescription: "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).",
+ Attributes: map[string]schema.Attribute{
+ "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
+ MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "pod_affinity_term": schema.SingleNestedAttribute{
+ Description: "Required. A pod affinity term, associated with the corresponding weight.",
+ MarkdownDescription: "Required. A pod affinity term, associated with the corresponding weight.",
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "A label query over a set of resources, in this case pods.",
+ MarkdownDescription: "A label query over a set of resources, in this case pods.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "namespace_selector": schema.SingleNestedAttribute{
+ Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "namespaces": schema.ListAttribute{
+ Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "topology_key": schema.StringAttribute{
+ Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "weight": schema.Int64Attribute{
+ Description: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
+ MarkdownDescription: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "required_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
+ MarkdownDescription: "If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "A label query over a set of resources, in this case pods.",
+ MarkdownDescription: "A label query over a set of resources, in this case pods.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "namespace_selector": schema.SingleNestedAttribute{
+ Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "namespaces": schema.ListAttribute{
+ Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "topology_key": schema.StringAttribute{
+ Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "node_name": schema.StringAttribute{
+ Description: "NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.",
+ MarkdownDescription: "NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "node_selector": schema.MapAttribute{
+ Description: "NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/",
+ MarkdownDescription: "NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "scheduler_name": schema.StringAttribute{
+ Description: "If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.",
+ MarkdownDescription: "If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "tolerations": schema.ListNestedAttribute{
+ Description: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.",
+ MarkdownDescription: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "effect": schema.StringAttribute{
+ Description: "Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.",
+ MarkdownDescription: "Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "key": schema.StringAttribute{
+ Description: "Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.",
+ MarkdownDescription: "Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.",
+ MarkdownDescription: "Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "toleration_seconds": schema.Int64Attribute{
+ Description: "TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.",
+ MarkdownDescription: "TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "value": schema.StringAttribute{
+ Description: "Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.",
+ MarkdownDescription: "Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "topology_spread_constraints": schema.ListNestedAttribute{
+ Description: "TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed.",
+ MarkdownDescription: "TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain.",
+ MarkdownDescription: "LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "match_label_keys": schema.ListAttribute{
+ Description: "MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).",
+ MarkdownDescription: "MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "max_skew": schema.Int64Attribute{
+ Description: "MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.",
+ MarkdownDescription: "MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "min_domains": schema.Int64Attribute{
+ Description: "MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).",
+ MarkdownDescription: "MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "node_affinity_policy": schema.StringAttribute{
+ Description: "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
+ MarkdownDescription: "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "node_taints_policy": schema.StringAttribute{
+ Description: "NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
+ MarkdownDescription: "NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "topology_key": schema.StringAttribute{
+ Description: "TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.",
+ MarkdownDescription: "TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "when_unsatisfiable": schema.StringAttribute{
+ Description: "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.",
+ MarkdownDescription: "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_claim_templates": schema.ListNestedAttribute{
+ Description: "Defines VolumeClaimTemplates to override.Add new or override existing volume claim templates.",
+ MarkdownDescription: "Defines VolumeClaimTemplates to override.Add new or override existing volume claim templates.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Refers to the name of a volumeMount defined in either:- 'componentDefinition.spec.runtime.containers[*].volumeMounts'- 'clusterDefinition.spec.componentDefs[*].podSpec.containers[*].volumeMounts' (deprecated)The value of 'name' must match the 'name' field of a volumeMount specified in the corresponding 'volumeMounts' array.",
+ MarkdownDescription: "Refers to the name of a volumeMount defined in either:- 'componentDefinition.spec.runtime.containers[*].volumeMounts'- 'clusterDefinition.spec.componentDefs[*].podSpec.containers[*].volumeMounts' (deprecated)The value of 'name' must match the 'name' field of a volumeMount specified in the corresponding 'volumeMounts' array.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "spec": schema.SingleNestedAttribute{
+ Description: "Defines the desired characteristics of a PersistentVolumeClaim that will be created for the volumewith the mount name specified in the 'name' field.When a Pod is created for this ClusterComponent, a new PVC will be created based on the specificationdefined in the 'spec' field. The PVC will be associated with the volume mount specified by the 'name' field.",
+ MarkdownDescription: "Defines the desired characteristics of a PersistentVolumeClaim that will be created for the volumewith the mount name specified in the 'name' field.When a Pod is created for this ClusterComponent, a new PVC will be created based on the specificationdefined in the 'spec' field. The PVC will be associated with the volume mount specified by the 'name' field.",
+ Attributes: map[string]schema.Attribute{
+ "access_modes": schema.MapAttribute{
+ Description: "Contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1.",
+ MarkdownDescription: "Contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "resources": schema.SingleNestedAttribute{
+ Description: "Represents the minimum resources the volume should have.If the RecoverVolumeExpansionFailure feature is enabled, users are allowed to specify resource requirements thatare lower than the previous value but must still be higher than the capacity recorded in the status field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources.",
+ MarkdownDescription: "Represents the minimum resources the volume should have.If the RecoverVolumeExpansionFailure feature is enabled, users are allowed to specify resource requirements thatare lower than the previous value but must still be higher than the capacity recorded in the status field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources.",
+ Attributes: map[string]schema.Attribute{
+ "claims": schema.ListNestedAttribute{
+ Description: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ MarkdownDescription: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ MarkdownDescription: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "limits": schema.MapAttribute{
+ Description: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "requests": schema.MapAttribute{
+ Description: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "storage_class_name": schema.StringAttribute{
+ Description: "The name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1.",
+ MarkdownDescription: "The name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_mode": schema.StringAttribute{
+ Description: "Defines what type of volume is required by the claim, either Block or Filesystem.",
+ MarkdownDescription: "Defines what type of volume is required by the claim, either Block or Filesystem.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_mounts": schema.ListNestedAttribute{
+ Description: "Defines VolumeMounts to override.Add new or override existing volume mounts of the first container in the Pod.",
+ MarkdownDescription: "Defines VolumeMounts to override.Add new or override existing volume mounts of the first container in the Pod.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "mount_path": schema.StringAttribute{
+ Description: "Path within the container at which the volume should be mounted. Mustnot contain ':'.",
+ MarkdownDescription: "Path within the container at which the volume should be mounted. Mustnot contain ':'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "mount_propagation": schema.StringAttribute{
+ Description: "mountPropagation determines how mounts are propagated from the hostto container and the other way around.When not set, MountPropagationNone is used.This field is beta in 1.10.",
+ MarkdownDescription: "mountPropagation determines how mounts are propagated from the hostto container and the other way around.When not set, MountPropagationNone is used.This field is beta in 1.10.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "This must match the Name of a Volume.",
+ MarkdownDescription: "This must match the Name of a Volume.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "Mounted read-only if true, read-write otherwise (false or unspecified).Defaults to false.",
+ MarkdownDescription: "Mounted read-only if true, read-write otherwise (false or unspecified).Defaults to false.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "sub_path": schema.StringAttribute{
+ Description: "Path within the volume from which the container's volume should be mounted.Defaults to '' (volume's root).",
+ MarkdownDescription: "Path within the volume from which the container's volume should be mounted.Defaults to '' (volume's root).",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "sub_path_expr": schema.StringAttribute{
+ Description: "Expanded path within the volume from which the container's volume should be mounted.Behaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.Defaults to '' (volume's root).SubPathExpr and SubPath are mutually exclusive.",
+ MarkdownDescription: "Expanded path within the volume from which the container's volume should be mounted.Behaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.Defaults to '' (volume's root).SubPathExpr and SubPath are mutually exclusive.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volumes": schema.ListNestedAttribute{
+ Description: "Defines Volumes to override.Add new or override existing volumes.",
+ MarkdownDescription: "Defines Volumes to override.Add new or override existing volumes.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "aws_elastic_block_store": schema.SingleNestedAttribute{
+ Description: "awsElasticBlockStore represents an AWS Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ MarkdownDescription: "awsElasticBlockStore represents an AWS Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstoreTODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstoreTODO: how do we prevent errors in the filesystem from compromising the machine",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "partition": schema.Int64Attribute{
+ Description: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).",
+ MarkdownDescription: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly value true will force the readOnly setting in VolumeMounts.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ MarkdownDescription: "readOnly value true will force the readOnly setting in VolumeMounts.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_id": schema.StringAttribute{
+ Description: "volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ MarkdownDescription: "volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "azure_disk": schema.SingleNestedAttribute{
+ Description: "azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.",
+ MarkdownDescription: "azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.",
+ Attributes: map[string]schema.Attribute{
+ "caching_mode": schema.StringAttribute{
+ Description: "cachingMode is the Host Caching mode: None, Read Only, Read Write.",
+ MarkdownDescription: "cachingMode is the Host Caching mode: None, Read Only, Read Write.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "disk_name": schema.StringAttribute{
+ Description: "diskName is the Name of the data disk in the blob storage",
+ MarkdownDescription: "diskName is the Name of the data disk in the blob storage",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "disk_uri": schema.StringAttribute{
+ Description: "diskURI is the URI of data disk in the blob storage",
+ MarkdownDescription: "diskURI is the URI of data disk in the blob storage",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is Filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fsType is Filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "kind": schema.StringAttribute{
+ Description: "kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared",
+ MarkdownDescription: "kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "azure_file": schema.SingleNestedAttribute{
+ Description: "azureFile represents an Azure File Service mount on the host and bind mount to the pod.",
+ MarkdownDescription: "azureFile represents an Azure File Service mount on the host and bind mount to the pod.",
+ Attributes: map[string]schema.Attribute{
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_name": schema.StringAttribute{
+ Description: "secretName is the name of secret that contains Azure Storage Account Name and Key",
+ MarkdownDescription: "secretName is the name of secret that contains Azure Storage Account Name and Key",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "share_name": schema.StringAttribute{
+ Description: "shareName is the azure share Name",
+ MarkdownDescription: "shareName is the azure share Name",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "cephfs": schema.SingleNestedAttribute{
+ Description: "cephFS represents a Ceph FS mount on the host that shares a pod's lifetime",
+ MarkdownDescription: "cephFS represents a Ceph FS mount on the host that shares a pod's lifetime",
+ Attributes: map[string]schema.Attribute{
+ "monitors": schema.ListAttribute{
+ Description: "monitors is Required: Monitors is a collection of Ceph monitorsMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "monitors is Required: Monitors is a collection of Ceph monitorsMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ ElementType: types.StringType,
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /",
+ MarkdownDescription: "path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_file": schema.StringAttribute{
+ Description: "secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secretMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secretMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "user": schema.StringAttribute{
+ Description: "user is optional: User is the rados user name, default is adminMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "user is optional: User is the rados user name, default is adminMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "cinder": schema.SingleNestedAttribute{
+ Description: "cinder represents a cinder volume attached and mounted on kubelets host machine.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ MarkdownDescription: "cinder represents a cinder volume attached and mounted on kubelets host machine.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is optional: points to a secret object containing parameters used to connectto OpenStack.",
+ MarkdownDescription: "secretRef is optional: points to a secret object containing parameters used to connectto OpenStack.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_id": schema.StringAttribute{
+ Description: "volumeID used to identify the volume in cinder.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ MarkdownDescription: "volumeID used to identify the volume in cinder.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "config_map": schema.SingleNestedAttribute{
+ Description: "configMap represents a configMap that should populate this volume",
+ MarkdownDescription: "configMap represents a configMap that should populate this volume",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "items": schema.ListNestedAttribute{
+ Description: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "optional": schema.BoolAttribute{
+ Description: "optional specify whether the ConfigMap or its keys must be defined",
+ MarkdownDescription: "optional specify whether the ConfigMap or its keys must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "csi": schema.SingleNestedAttribute{
+ Description: "csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).",
+ MarkdownDescription: "csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).",
+ Attributes: map[string]schema.Attribute{
+ "driver": schema.StringAttribute{
+ Description: "driver is the name of the CSI driver that handles this volume.Consult with your admin for the correct name as registered in the cluster.",
+ MarkdownDescription: "driver is the name of the CSI driver that handles this volume.Consult with your admin for the correct name as registered in the cluster.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "fs_type": schema.StringAttribute{
+ Description: "fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'.If not provided, the empty value is passed to the associated CSI driverwhich will determine the default filesystem to apply.",
+ MarkdownDescription: "fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'.If not provided, the empty value is passed to the associated CSI driverwhich will determine the default filesystem to apply.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "node_publish_secret_ref": schema.SingleNestedAttribute{
+ Description: "nodePublishSecretRef is a reference to the secret object containingsensitive information to pass to the CSI driver to complete the CSINodePublishVolume and NodeUnpublishVolume calls.This field is optional, and may be empty if no secret is required. If thesecret object contains more than one secret, all secret references are passed.",
+ MarkdownDescription: "nodePublishSecretRef is a reference to the secret object containingsensitive information to pass to the CSI driver to complete the CSINodePublishVolume and NodeUnpublishVolume calls.This field is optional, and may be empty if no secret is required. If thesecret object contains more than one secret, all secret references are passed.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly specifies a read-only configuration for the volume.Defaults to false (read/write).",
+ MarkdownDescription: "readOnly specifies a read-only configuration for the volume.Defaults to false (read/write).",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_attributes": schema.MapAttribute{
+ Description: "volumeAttributes stores driver-specific properties that are passed to the CSIdriver. Consult your driver's documentation for supported values.",
+ MarkdownDescription: "volumeAttributes stores driver-specific properties that are passed to the CSIdriver. Consult your driver's documentation for supported values.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "downward_api": schema.SingleNestedAttribute{
+ Description: "downwardAPI represents downward API about the pod that should populate this volume",
+ MarkdownDescription: "downwardAPI represents downward API about the pod that should populate this volume",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "Optional: mode bits to use on created files by default. Must be aOptional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "Optional: mode bits to use on created files by default. Must be aOptional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "items": schema.ListNestedAttribute{
+ Description: "Items is a list of downward API volume file",
+ MarkdownDescription: "Items is a list of downward API volume file",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "field_ref": schema.SingleNestedAttribute{
+ Description: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
+ MarkdownDescription: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
+ Attributes: map[string]schema.Attribute{
+ "api_version": schema.StringAttribute{
+ Description: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ MarkdownDescription: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "field_path": schema.StringAttribute{
+ Description: "Path of the field to select in the specified API version.",
+ MarkdownDescription: "Path of the field to select in the specified API version.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "mode": schema.Int64Attribute{
+ Description: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
+ MarkdownDescription: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "resource_field_ref": schema.SingleNestedAttribute{
+ Description: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
+ MarkdownDescription: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
+ Attributes: map[string]schema.Attribute{
+ "container_name": schema.StringAttribute{
+ Description: "Container name: required for volumes, optional for env vars",
+ MarkdownDescription: "Container name: required for volumes, optional for env vars",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "divisor": schema.StringAttribute{
+ Description: "Specifies the output format of the exposed resources, defaults to '1'",
+ MarkdownDescription: "Specifies the output format of the exposed resources, defaults to '1'",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "resource": schema.StringAttribute{
+ Description: "Required: resource to select",
+ MarkdownDescription: "Required: resource to select",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "empty_dir": schema.SingleNestedAttribute{
+ Description: "emptyDir represents a temporary directory that shares a pod's lifetime.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ MarkdownDescription: "emptyDir represents a temporary directory that shares a pod's lifetime.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ Attributes: map[string]schema.Attribute{
+ "medium": schema.StringAttribute{
+ Description: "medium represents what type of storage medium should back this directory.The default is '' which means to use the node's default medium.Must be an empty string (default) or Memory.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ MarkdownDescription: "medium represents what type of storage medium should back this directory.The default is '' which means to use the node's default medium.Must be an empty string (default) or Memory.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "size_limit": schema.StringAttribute{
+ Description: "sizeLimit is the total amount of local storage required for this EmptyDir volume.The size limit is also applicable for memory medium.The maximum usage on memory medium EmptyDir would be the minimum value betweenthe SizeLimit specified here and the sum of memory limits of all containers in a pod.The default is nil which means that the limit is undefined.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ MarkdownDescription: "sizeLimit is the total amount of local storage required for this EmptyDir volume.The size limit is also applicable for memory medium.The maximum usage on memory medium EmptyDir would be the minimum value betweenthe SizeLimit specified here and the sum of memory limits of all containers in a pod.The default is nil which means that the limit is undefined.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "ephemeral": schema.SingleNestedAttribute{
+ Description: "ephemeral represents a volume that is handled by a cluster storage driver.The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,and deleted when the pod is removed.Use this if:a) the volume is only needed while the pod runs,b) features of normal volumes like restoring from snapshot or capacity tracking are needed,c) the storage driver is specified through a storage class, andd) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim).Use PersistentVolumeClaim or one of the vendor-specificAPIs for volumes that persist for longer than the lifecycleof an individual pod.Use CSI for light-weight local ephemeral volumes if the CSI driver is meant tobe used that way - see the documentation of the driver formore information.A pod can use both types of ephemeral volumes andpersistent volumes at the same time.",
+ MarkdownDescription: "ephemeral represents a volume that is handled by a cluster storage driver.The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,and deleted when the pod is removed.Use this if:a) the volume is only needed while the pod runs,b) features of normal volumes like restoring from snapshot or capacity tracking are needed,c) the storage driver is specified through a storage class, andd) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim).Use PersistentVolumeClaim or one of the vendor-specificAPIs for volumes that persist for longer than the lifecycleof an individual pod.Use CSI for light-weight local ephemeral volumes if the CSI driver is meant tobe used that way - see the documentation of the driver formore information.A pod can use both types of ephemeral volumes andpersistent volumes at the same time.",
+ Attributes: map[string]schema.Attribute{
+ "volume_claim_template": schema.SingleNestedAttribute{
+ Description: "Will be used to create a stand-alone PVC to provision the volume.The pod in which this EphemeralVolumeSource is embedded will be theowner of the PVC, i.e. the PVC will be deleted together with thepod. The name of the PVC will be '-' where'' is the name from the 'PodSpec.Volumes' arrayentry. Pod validation will reject the pod if the concatenated nameis not valid for a PVC (for example, too long).An existing PVC with that name that is not owned by the podwill *not* be used for the pod to avoid using an unrelatedvolume by mistake. Starting the pod is then blocked untilthe unrelated PVC is removed. If such a pre-created PVC ismeant to be used by the pod, the PVC has to updated with anowner reference to the pod once the pod exists. Normallythis should not be necessary, but it may be useful whenmanually reconstructing a broken cluster.This field is read-only and no changes will be made by Kubernetesto the PVC after it has been created.Required, must not be nil.",
+ MarkdownDescription: "Will be used to create a stand-alone PVC to provision the volume.The pod in which this EphemeralVolumeSource is embedded will be theowner of the PVC, i.e. the PVC will be deleted together with thepod. The name of the PVC will be '-' where'' is the name from the 'PodSpec.Volumes' arrayentry. Pod validation will reject the pod if the concatenated nameis not valid for a PVC (for example, too long).An existing PVC with that name that is not owned by the podwill *not* be used for the pod to avoid using an unrelatedvolume by mistake. Starting the pod is then blocked untilthe unrelated PVC is removed. If such a pre-created PVC ismeant to be used by the pod, the PVC has to updated with anowner reference to the pod once the pod exists. Normallythis should not be necessary, but it may be useful whenmanually reconstructing a broken cluster.This field is read-only and no changes will be made by Kubernetesto the PVC after it has been created.Required, must not be nil.",
+ Attributes: map[string]schema.Attribute{
+ "metadata": schema.SingleNestedAttribute{
+ Description: "May contain labels and annotations that will be copied into the PVCwhen creating it. No other fields are allowed and will be rejected duringvalidation.",
+ MarkdownDescription: "May contain labels and annotations that will be copied into the PVCwhen creating it. No other fields are allowed and will be rejected duringvalidation.",
+ Attributes: map[string]schema.Attribute{
+ "annotations": schema.MapAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "finalizers": schema.ListAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "labels": schema.MapAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "namespace": schema.StringAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "spec": schema.SingleNestedAttribute{
+ Description: "The specification for the PersistentVolumeClaim. The entire content iscopied unchanged into the PVC that gets created from thistemplate. The same fields as in a PersistentVolumeClaimare also valid here.",
+ MarkdownDescription: "The specification for the PersistentVolumeClaim. The entire content iscopied unchanged into the PVC that gets created from thistemplate. The same fields as in a PersistentVolumeClaimare also valid here.",
+ Attributes: map[string]schema.Attribute{
+ "access_modes": schema.ListAttribute{
+ Description: "accessModes contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1",
+ MarkdownDescription: "accessModes contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "data_source": schema.SingleNestedAttribute{
+ Description: "dataSource field can be used to specify either:* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)* An existing PVC (PersistentVolumeClaim)If the provisioner or an external controller can support the specified data source,it will create a new volume based on the contents of the specified data source.When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.If the namespace is specified, then dataSourceRef will not be copied to dataSource.",
+ MarkdownDescription: "dataSource field can be used to specify either:* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)* An existing PVC (PersistentVolumeClaim)If the provisioner or an external controller can support the specified data source,it will create a new volume based on the contents of the specified data source.When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.If the namespace is specified, then dataSourceRef will not be copied to dataSource.",
+ Attributes: map[string]schema.Attribute{
+ "api_group": schema.StringAttribute{
+ Description: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
+ MarkdownDescription: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "kind": schema.StringAttribute{
+ Description: "Kind is the type of resource being referenced",
+ MarkdownDescription: "Kind is the type of resource being referenced",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name is the name of resource being referenced",
+ MarkdownDescription: "Name is the name of resource being referenced",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "data_source_ref": schema.SingleNestedAttribute{
+ Description: "dataSourceRef specifies the object from which to populate the volume with data, if a non-emptyvolume is desired. This may be any object from a non-empty API group (noncore object) or a PersistentVolumeClaim object.When this field is specified, volume binding will only succeed if the type ofthe specified object matches some installed volume populator or dynamicprovisioner.This field will replace the functionality of the dataSource field and as suchif both fields are non-empty, they must have the same value. For backwardscompatibility, when namespace isn't specified in dataSourceRef,both fields (dataSource and dataSourceRef) will be set to the samevalue automatically if one of them is empty and the other is non-empty.When namespace is specified in dataSourceRef,dataSource isn't set to the same value and must be empty.There are three important differences between dataSource and dataSourceRef:* While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects.* While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified.* While dataSource only allows local objects, dataSourceRef allows objects in any namespaces.(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
+ MarkdownDescription: "dataSourceRef specifies the object from which to populate the volume with data, if a non-emptyvolume is desired. This may be any object from a non-empty API group (noncore object) or a PersistentVolumeClaim object.When this field is specified, volume binding will only succeed if the type ofthe specified object matches some installed volume populator or dynamicprovisioner.This field will replace the functionality of the dataSource field and as suchif both fields are non-empty, they must have the same value. For backwardscompatibility, when namespace isn't specified in dataSourceRef,both fields (dataSource and dataSourceRef) will be set to the samevalue automatically if one of them is empty and the other is non-empty.When namespace is specified in dataSourceRef,dataSource isn't set to the same value and must be empty.There are three important differences between dataSource and dataSourceRef:* While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects.* While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified.* While dataSource only allows local objects, dataSourceRef allows objects in any namespaces.(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
+ Attributes: map[string]schema.Attribute{
+ "api_group": schema.StringAttribute{
+ Description: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
+ MarkdownDescription: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "kind": schema.StringAttribute{
+ Description: "Kind is the type of resource being referenced",
+ MarkdownDescription: "Kind is the type of resource being referenced",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name is the name of resource being referenced",
+ MarkdownDescription: "Name is the name of resource being referenced",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "namespace": schema.StringAttribute{
+ Description: "Namespace is the namespace of resource being referencedNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
+ MarkdownDescription: "Namespace is the namespace of resource being referencedNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "resources": schema.SingleNestedAttribute{
+ Description: "resources represents the minimum resources the volume should have.If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirementsthat are lower than previous value but must still be higher than capacity recorded in thestatus field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources",
+ MarkdownDescription: "resources represents the minimum resources the volume should have.If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirementsthat are lower than previous value but must still be higher than capacity recorded in thestatus field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources",
+ Attributes: map[string]schema.Attribute{
+ "claims": schema.ListNestedAttribute{
+ Description: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ MarkdownDescription: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ MarkdownDescription: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "limits": schema.MapAttribute{
+ Description: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "requests": schema.MapAttribute{
+ Description: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "selector": schema.SingleNestedAttribute{
+ Description: "selector is a label query over volumes to consider for binding.",
+ MarkdownDescription: "selector is a label query over volumes to consider for binding.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "storage_class_name": schema.StringAttribute{
+ Description: "storageClassName is the name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1",
+ MarkdownDescription: "storageClassName is the name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_mode": schema.StringAttribute{
+ Description: "volumeMode defines what type of volume is required by the claim.Value of Filesystem is implied when not included in claim spec.",
+ MarkdownDescription: "volumeMode defines what type of volume is required by the claim.Value of Filesystem is implied when not included in claim spec.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_name": schema.StringAttribute{
+ Description: "volumeName is the binding reference to the PersistentVolume backing this claim.",
+ MarkdownDescription: "volumeName is the binding reference to the PersistentVolume backing this claim.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "fc": schema.SingleNestedAttribute{
+ Description: "fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.",
+ MarkdownDescription: "fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.TODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.TODO: how do we prevent errors in the filesystem from compromising the machine",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "lun": schema.Int64Attribute{
+ Description: "lun is Optional: FC target lun number",
+ MarkdownDescription: "lun is Optional: FC target lun number",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "target_ww_ns": schema.ListAttribute{
+ Description: "targetWWNs is Optional: FC target worldwide names (WWNs)",
+ MarkdownDescription: "targetWWNs is Optional: FC target worldwide names (WWNs)",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "wwids": schema.ListAttribute{
+ Description: "wwids Optional: FC volume world wide identifiers (wwids)Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.",
+ MarkdownDescription: "wwids Optional: FC volume world wide identifiers (wwids)Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "flex_volume": schema.SingleNestedAttribute{
+ Description: "flexVolume represents a generic volume resource that isprovisioned/attached using an exec based plugin.",
+ MarkdownDescription: "flexVolume represents a generic volume resource that isprovisioned/attached using an exec based plugin.",
+ Attributes: map[string]schema.Attribute{
+ "driver": schema.StringAttribute{
+ Description: "driver is the name of the driver to use for this volume.",
+ MarkdownDescription: "driver is the name of the driver to use for this volume.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "options": schema.MapAttribute{
+ Description: "options is Optional: this field holds extra command options if any.",
+ MarkdownDescription: "options is Optional: this field holds extra command options if any.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly is Optional: defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly is Optional: defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is Optional: secretRef is reference to the secret object containingsensitive information to pass to the plugin scripts. This may beempty if no secret object is specified. If the secret objectcontains more than one secret, all secrets are passed to the pluginscripts.",
+ MarkdownDescription: "secretRef is Optional: secretRef is reference to the secret object containingsensitive information to pass to the plugin scripts. This may beempty if no secret object is specified. If the secret objectcontains more than one secret, all secrets are passed to the pluginscripts.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "flocker": schema.SingleNestedAttribute{
+ Description: "flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running",
+ MarkdownDescription: "flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running",
+ Attributes: map[string]schema.Attribute{
+ "dataset_name": schema.StringAttribute{
+ Description: "datasetName is Name of the dataset stored as metadata -> name on the dataset for Flockershould be considered as deprecated",
+ MarkdownDescription: "datasetName is Name of the dataset stored as metadata -> name on the dataset for Flockershould be considered as deprecated",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "dataset_uuid": schema.StringAttribute{
+ Description: "datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset",
+ MarkdownDescription: "datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "gce_persistent_disk": schema.SingleNestedAttribute{
+ Description: "gcePersistentDisk represents a GCE Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ MarkdownDescription: "gcePersistentDisk represents a GCE Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskTODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskTODO: how do we prevent errors in the filesystem from compromising the machine",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "partition": schema.Int64Attribute{
+ Description: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ MarkdownDescription: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "pd_name": schema.StringAttribute{
+ Description: "pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ MarkdownDescription: "pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ MarkdownDescription: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "git_repo": schema.SingleNestedAttribute{
+ Description: "gitRepo represents a git repository at a particular revision.DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount anEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDirinto the Pod's container.",
+ MarkdownDescription: "gitRepo represents a git repository at a particular revision.DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount anEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDirinto the Pod's container.",
+ Attributes: map[string]schema.Attribute{
+ "directory": schema.StringAttribute{
+ Description: "directory is the target directory name.Must not contain or start with '..'. If '.' is supplied, the volume directory will be thegit repository. Otherwise, if specified, the volume will contain the git repository inthe subdirectory with the given name.",
+ MarkdownDescription: "directory is the target directory name.Must not contain or start with '..'. If '.' is supplied, the volume directory will be thegit repository. Otherwise, if specified, the volume will contain the git repository inthe subdirectory with the given name.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "repository": schema.StringAttribute{
+ Description: "repository is the URL",
+ MarkdownDescription: "repository is the URL",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "revision": schema.StringAttribute{
+ Description: "revision is the commit hash for the specified revision.",
+ MarkdownDescription: "revision is the commit hash for the specified revision.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "glusterfs": schema.SingleNestedAttribute{
+ Description: "glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/glusterfs/README.md",
+ MarkdownDescription: "glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/glusterfs/README.md",
+ Attributes: map[string]schema.Attribute{
+ "endpoints": schema.StringAttribute{
+ Description: "endpoints is the endpoint name that details Glusterfs topology.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ MarkdownDescription: "endpoints is the endpoint name that details Glusterfs topology.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is the Glusterfs volume path.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ MarkdownDescription: "path is the Glusterfs volume path.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "backup": schema.SingleNestedAttribute{
- Description: "Specifies the backup configuration of the Cluster.",
- MarkdownDescription: "Specifies the backup configuration of the Cluster.",
- Attributes: map[string]schema.Attribute{
- "cron_expression": schema.StringAttribute{
- Description: "The cron expression for the schedule. The timezone is in UTC. See https://en.wikipedia.org/wiki/Cron.",
- MarkdownDescription: "The cron expression for the schedule. The timezone is in UTC. See https://en.wikipedia.org/wiki/Cron.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the Glusterfs volume to be mounted with read-only permissions.Defaults to false.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ MarkdownDescription: "readOnly here will force the Glusterfs volume to be mounted with read-only permissions.Defaults to false.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "enabled": schema.BoolAttribute{
- Description: "Specifies whether automated backup is enabled for the Cluster.",
- MarkdownDescription: "Specifies whether automated backup is enabled for the Cluster.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "host_path": schema.SingleNestedAttribute{
+ Description: "hostPath represents a pre-existing file or directory on the hostmachine that is directly exposed to the container. This is generallyused for system agents or other privileged things that are allowedto see the host machine. Most containers will NOT need this.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath---TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can notmount host directories as read/write.",
+ MarkdownDescription: "hostPath represents a pre-existing file or directory on the hostmachine that is directly exposed to the container. This is generallyused for system agents or other privileged things that are allowedto see the host machine. Most containers will NOT need this.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath---TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can notmount host directories as read/write.",
+ Attributes: map[string]schema.Attribute{
+ "path": schema.StringAttribute{
+ Description: "path of the directory on the host.If the path is a symlink, it will follow the link to the real path.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
+ MarkdownDescription: "path of the directory on the host.If the path is a symlink, it will follow the link to the real path.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "method": schema.StringAttribute{
- Description: "Specifies the backup method to use, as defined in backupPolicy.",
- MarkdownDescription: "Specifies the backup method to use, as defined in backupPolicy.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "type": schema.StringAttribute{
+ Description: "type for HostPath VolumeDefaults to ''More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
+ MarkdownDescription: "type for HostPath VolumeDefaults to ''More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "pitr_enabled": schema.BoolAttribute{
- Description: "Specifies whether to enable point-in-time recovery.",
- MarkdownDescription: "Specifies whether to enable point-in-time recovery.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "iscsi": schema.SingleNestedAttribute{
+ Description: "iscsi represents an ISCSI Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://examples.k8s.io/volumes/iscsi/README.md",
+ MarkdownDescription: "iscsi represents an ISCSI Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://examples.k8s.io/volumes/iscsi/README.md",
+ Attributes: map[string]schema.Attribute{
+ "chap_auth_discovery": schema.BoolAttribute{
+ Description: "chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication",
+ MarkdownDescription: "chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "repo_name": schema.StringAttribute{
- Description: "Specifies the name of the backupRepo. If not set, the default backupRepo will be used.",
- MarkdownDescription: "Specifies the name of the backupRepo. If not set, the default backupRepo will be used.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "chap_auth_session": schema.BoolAttribute{
+ Description: "chapAuthSession defines whether support iSCSI Session CHAP authentication",
+ MarkdownDescription: "chapAuthSession defines whether support iSCSI Session CHAP authentication",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "retention_period": schema.StringAttribute{
- Description: "Determines the duration to retain backups. Backups older than this period are automatically removed.For example, RetentionPeriod of '30d' will keep only the backups of last 30 days.Sample duration format:- years: 2y- months: 6mo- days: 30d- hours: 12h- minutes: 30mYou can also combine the above durations. For example: 30d12h30m.Default value is 7d.",
- MarkdownDescription: "Determines the duration to retain backups. Backups older than this period are automatically removed.For example, RetentionPeriod of '30d' will keep only the backups of last 30 days.Sample duration format:- years: 2y- months: 6mo- days: 30d- hours: 12h- minutes: 30mYou can also combine the above durations. For example: 30d12h30m.Default value is 7d.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsiTODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsiTODO: how do we prevent errors in the filesystem from compromising the machine",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "starting_deadline_minutes": schema.Int64Attribute{
- Description: "Specifies the maximum time in minutes that the system will wait to start a missed backup job.If the scheduled backup time is missed for any reason, the backup job must start within this deadline.Values must be between 0 (immediate execution) and 1440 (one day).",
- MarkdownDescription: "Specifies the maximum time in minutes that the system will wait to start a missed backup job.If the scheduled backup time is missed for any reason, the backup job must start within this deadline.Values must be between 0 (immediate execution) and 1440 (one day).",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.Int64{
- int64validator.AtLeast(0),
- int64validator.AtMost(1440),
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "initiator_name": schema.StringAttribute{
+ Description: "initiatorName is the custom iSCSI Initiator Name.If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface: will be created for the connection.",
+ MarkdownDescription: "initiatorName is the custom iSCSI Initiator Name.If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface: will be created for the connection.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "cluster_definition_ref": schema.StringAttribute{
- Description: "Specifies the name of the ClusterDefinition to use when creating a Cluster.This field enables users to create a Cluster based on a specific ClusterDefinition.Which, in conjunction with the 'topology' field, determine:- The Components to be included in the Cluster.- The sequences in which the Components are created, updated, and terminate.This facilitates multiple-components management with predefined ClusterDefinition.Users with advanced requirements can bypass this general setting and specify more precise control overthe composition of the Cluster by directly referencing specific ComponentDefinitions for each componentwithin 'componentSpecs[*].componentDef'.If this field is not provided, each component must be explicitly defined in 'componentSpecs[*].componentDef'.Note: Once set, this field cannot be modified; it is immutable.",
- MarkdownDescription: "Specifies the name of the ClusterDefinition to use when creating a Cluster.This field enables users to create a Cluster based on a specific ClusterDefinition.Which, in conjunction with the 'topology' field, determine:- The Components to be included in the Cluster.- The sequences in which the Components are created, updated, and terminate.This facilitates multiple-components management with predefined ClusterDefinition.Users with advanced requirements can bypass this general setting and specify more precise control overthe composition of the Cluster by directly referencing specific ComponentDefinitions for each componentwithin 'componentSpecs[*].componentDef'.If this field is not provided, each component must be explicitly defined in 'componentSpecs[*].componentDef'.Note: Once set, this field cannot be modified; it is immutable.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.LengthAtMost(63),
- stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z0-9]([a-z0-9\.\-]*[a-z0-9])?$`), ""),
- },
- },
+ "iqn": schema.StringAttribute{
+ Description: "iqn is the target iSCSI Qualified Name.",
+ MarkdownDescription: "iqn is the target iSCSI Qualified Name.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "cluster_version_ref": schema.StringAttribute{
- Description: "Refers to the ClusterVersion name.Deprecated since v0.9, use ComponentVersion instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
- MarkdownDescription: "Refers to the ClusterVersion name.Deprecated since v0.9, use ComponentVersion instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.LengthAtMost(63),
- stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z0-9]([a-z0-9\.\-]*[a-z0-9])?$`), ""),
- },
- },
+ "iscsi_interface": schema.StringAttribute{
+ Description: "iscsiInterface is the interface Name that uses an iSCSI transport.Defaults to 'default' (tcp).",
+ MarkdownDescription: "iscsiInterface is the interface Name that uses an iSCSI transport.Defaults to 'default' (tcp).",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "component_specs": schema.ListNestedAttribute{
- Description: "Specifies a list of ClusterComponentSpec objects used to define the individual Components that make up a Cluster.This field allows for detailed configuration of each Component within the Cluster.Note: 'shardingSpecs' and 'componentSpecs' cannot both be empty; at least one must be defined to configure a Cluster.",
- MarkdownDescription: "Specifies a list of ClusterComponentSpec objects used to define the individual Components that make up a Cluster.This field allows for detailed configuration of each Component within the Cluster.Note: 'shardingSpecs' and 'componentSpecs' cannot both be empty; at least one must be defined to configure a Cluster.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "affinity": schema.SingleNestedAttribute{
- Description: "Specifies a group of affinity scheduling rules for the Component.It allows users to control how the Component's Pods are scheduled onto nodes in the K8s cluster.Deprecated since v0.10, replaced by the 'schedulingPolicy' field.",
- MarkdownDescription: "Specifies a group of affinity scheduling rules for the Component.It allows users to control how the Component's Pods are scheduled onto nodes in the K8s cluster.Deprecated since v0.10, replaced by the 'schedulingPolicy' field.",
- Attributes: map[string]schema.Attribute{
- "node_labels": schema.MapAttribute{
- Description: "Indicates the node labels that must be present on nodes for pods to be scheduled on them.It is a map where the keys are the label keys and the values are the corresponding label values.Pods will only be scheduled on nodes that have all the specified labels with the corresponding values.For example, if NodeLabels is set to {'nodeType': 'ssd', 'environment': 'production'},pods will only be scheduled on nodes that have both the 'nodeType' label with value 'ssd'and the 'environment' label with value 'production'.This field allows users to control Pod placement based on specific node labels.It can be used to ensure that Pods are scheduled on nodes with certain characteristics,such as specific hardware (e.g., SSD), environment (e.g., production, staging),or any other custom labels assigned to nodes.",
- MarkdownDescription: "Indicates the node labels that must be present on nodes for pods to be scheduled on them.It is a map where the keys are the label keys and the values are the corresponding label values.Pods will only be scheduled on nodes that have all the specified labels with the corresponding values.For example, if NodeLabels is set to {'nodeType': 'ssd', 'environment': 'production'},pods will only be scheduled on nodes that have both the 'nodeType' label with value 'ssd'and the 'environment' label with value 'production'.This field allows users to control Pod placement based on specific node labels.It can be used to ensure that Pods are scheduled on nodes with certain characteristics,such as specific hardware (e.g., SSD), environment (e.g., production, staging),or any other custom labels assigned to nodes.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "lun": schema.Int64Attribute{
+ Description: "lun represents iSCSI Target Lun number.",
+ MarkdownDescription: "lun represents iSCSI Target Lun number.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "portals": schema.ListAttribute{
+ Description: "portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
+ MarkdownDescription: "portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.",
+ MarkdownDescription: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is the CHAP Secret for iSCSI target and initiator authentication",
+ MarkdownDescription: "secretRef is the CHAP Secret for iSCSI target and initiator authentication",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "target_portal": schema.StringAttribute{
+ Description: "targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
+ MarkdownDescription: "targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "pod_anti_affinity": schema.StringAttribute{
- Description: "Specifies the anti-affinity level of Pods within a Component.It determines how pods should be spread across nodes to improve availability and performance.It can have the following values: 'Preferred' and 'Required'.The default value is 'Preferred'.",
- MarkdownDescription: "Specifies the anti-affinity level of Pods within a Component.It determines how pods should be spread across nodes to improve availability and performance.It can have the following values: 'Preferred' and 'Required'.The default value is 'Preferred'.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.OneOf("Preferred", "Required"),
- },
- },
+ "name": schema.StringAttribute{
+ Description: "name of the volume.Must be a DNS_LABEL and unique within the pod.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names",
+ MarkdownDescription: "name of the volume.Must be a DNS_LABEL and unique within the pod.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "tenancy": schema.StringAttribute{
- Description: "Determines the level of resource isolation between Pods.It can have the following values: 'SharedNode' and 'DedicatedNode'.- SharedNode: Allow that multiple Pods may share the same node, which is the default behavior of K8s.- DedicatedNode: Each Pod runs on a dedicated node, ensuring that no two Pods share the same node. In other words, if a Pod is already running on a node, no other Pods will be scheduled on that node. Which provides a higher level of isolation and resource guarantee for Pods. The default value is 'SharedNode'.",
- MarkdownDescription: "Determines the level of resource isolation between Pods.It can have the following values: 'SharedNode' and 'DedicatedNode'.- SharedNode: Allow that multiple Pods may share the same node, which is the default behavior of K8s.- DedicatedNode: Each Pod runs on a dedicated node, ensuring that no two Pods share the same node. In other words, if a Pod is already running on a node, no other Pods will be scheduled on that node. Which provides a higher level of isolation and resource guarantee for Pods. The default value is 'SharedNode'.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.OneOf("SharedNode", "DedicatedNode"),
- },
- },
+ "nfs": schema.SingleNestedAttribute{
+ Description: "nfs represents an NFS mount on the host that shares a pod's lifetimeMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ MarkdownDescription: "nfs represents an NFS mount on the host that shares a pod's lifetimeMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ Attributes: map[string]schema.Attribute{
+ "path": schema.StringAttribute{
+ Description: "path that is exported by the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ MarkdownDescription: "path that is exported by the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "topology_keys": schema.ListAttribute{
- Description: "Represents the key of node labels used to define the topology domain for Pod anti-affinityand Pod spread constraints.In K8s, a topology domain is a set of nodes that have the same value for a specific label key.Nodes with labels containing any of the specified TopologyKeys and identical values are consideredto be in the same topology domain.Note: The concept of topology in the context of K8s TopologyKeys is different from the concept oftopology in the ClusterDefinition.When a Pod has anti-affinity or spread constraints specified, Kubernetes will attempt to schedule thePod on nodes with different values for the specified TopologyKeys.This ensures that Pods are spread across different topology domains, promoting high availability andreducing the impact of node failures.Some well-known label keys, such as 'kubernetes.io/hostname' and 'topology.kubernetes.io/zone',are often used as TopologyKey.These keys represent the hostname and zone of a node, respectively.By including these keys in the TopologyKeys list, Pods will be spread across nodes withdifferent hostnames or zones.In addition to the well-known keys, users can also specify custom label keys as TopologyKeys.This allows for more flexible and custom topology definitions based on the specific needsof the application or environment.The TopologyKeys field is a slice of strings, where each string represents a label key.The order of the keys in the slice does not matter.",
- MarkdownDescription: "Represents the key of node labels used to define the topology domain for Pod anti-affinityand Pod spread constraints.In K8s, a topology domain is a set of nodes that have the same value for a specific label key.Nodes with labels containing any of the specified TopologyKeys and identical values are consideredto be in the same topology domain.Note: The concept of topology in the context of K8s TopologyKeys is different from the concept oftopology in the ClusterDefinition.When a Pod has anti-affinity or spread constraints specified, Kubernetes will attempt to schedule thePod on nodes with different values for the specified TopologyKeys.This ensures that Pods are spread across different topology domains, promoting high availability andreducing the impact of node failures.Some well-known label keys, such as 'kubernetes.io/hostname' and 'topology.kubernetes.io/zone',are often used as TopologyKey.These keys represent the hostname and zone of a node, respectively.By including these keys in the TopologyKeys list, Pods will be spread across nodes withdifferent hostnames or zones.In addition to the well-known keys, users can also specify custom label keys as TopologyKeys.This allows for more flexible and custom topology definitions based on the specific needsof the application or environment.The TopologyKeys field is a slice of strings, where each string represents a label key.The order of the keys in the slice does not matter.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the NFS export to be mounted with read-only permissions.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ MarkdownDescription: "readOnly here will force the NFS export to be mounted with read-only permissions.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "component_def": schema.StringAttribute{
- Description: "References the name of a ComponentDefinition object.The ComponentDefinition specifies the behavior and characteristics of the Component.If both 'componentDefRef' and 'componentDef' are provided,the 'componentDef' will take precedence over 'componentDefRef'.",
- MarkdownDescription: "References the name of a ComponentDefinition object.The ComponentDefinition specifies the behavior and characteristics of the Component.If both 'componentDefRef' and 'componentDef' are provided,the 'componentDef' will take precedence over 'componentDefRef'.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.LengthAtMost(64),
- stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z0-9]([a-z0-9\.\-]*[a-z0-9])?$`), ""),
- },
- },
+ "server": schema.StringAttribute{
+ Description: "server is the hostname or IP address of the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ MarkdownDescription: "server is the hostname or IP address of the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "component_def_ref": schema.StringAttribute{
- Description: "References a ClusterComponentDefinition defined in the 'clusterDefinition.spec.componentDef' field.Must comply with the IANA service naming rule.Deprecated since v0.9,because defining Components in 'clusterDefinition.spec.componentDef' field has been deprecated.This field is replaced by the 'componentDef' field, use 'componentDef' instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.TODO +kubebuilder:validation:XValidation:rule='self == oldSelf',message='componentDefRef is immutable'",
- MarkdownDescription: "References a ClusterComponentDefinition defined in the 'clusterDefinition.spec.componentDef' field.Must comply with the IANA service naming rule.Deprecated since v0.9,because defining Components in 'clusterDefinition.spec.componentDef' field has been deprecated.This field is replaced by the 'componentDef' field, use 'componentDef' instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.TODO +kubebuilder:validation:XValidation:rule='self == oldSelf',message='componentDefRef is immutable'",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.LengthAtMost(22),
- stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z]([a-z0-9\-]*[a-z0-9])?$`), ""),
- },
- },
+ "persistent_volume_claim": schema.SingleNestedAttribute{
+ Description: "persistentVolumeClaimVolumeSource represents a reference to aPersistentVolumeClaim in the same namespace.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
+ MarkdownDescription: "persistentVolumeClaimVolumeSource represents a reference to aPersistentVolumeClaim in the same namespace.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
+ Attributes: map[string]schema.Attribute{
+ "claim_name": schema.StringAttribute{
+ Description: "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
+ MarkdownDescription: "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "configs": schema.ListNestedAttribute{
- Description: "",
- MarkdownDescription: "",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "config_map": schema.SingleNestedAttribute{
- Description: "ConfigMap source for the config.",
- MarkdownDescription: "ConfigMap source for the config.",
- Attributes: map[string]schema.Attribute{
- "default_mode": schema.Int64Attribute{
- Description: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly Will force the ReadOnly setting in VolumeMounts.Default false.",
+ MarkdownDescription: "readOnly Will force the ReadOnly setting in VolumeMounts.Default false.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "items": schema.ListNestedAttribute{
- Description: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- NestedObject: schema.NestedAttributeObject{
+ "photon_persistent_disk": schema.SingleNestedAttribute{
+ Description: "photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine",
+ MarkdownDescription: "photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine",
Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the key to project.",
- MarkdownDescription: "key is the key to project.",
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "pd_id": schema.StringAttribute{
+ Description: "pdID is the ID that identifies Photon Controller persistent disk",
+ MarkdownDescription: "pdID is the ID that identifies Photon Controller persistent disk",
Required: true,
Optional: false,
Computed: false,
},
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "portworx_volume": schema.SingleNestedAttribute{
+ Description: "portworxVolume represents a portworx volume attached and mounted on kubelets host machine",
+ MarkdownDescription: "portworxVolume represents a portworx volume attached and mounted on kubelets host machine",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fSType represents the filesystem type to mountMust be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fSType represents the filesystem type to mountMust be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "mode": schema.Int64Attribute{
- Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_id": schema.StringAttribute{
+ Description: "volumeID uniquely identifies a Portworx volume",
+ MarkdownDescription: "volumeID uniquely identifies a Portworx volume",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "projected": schema.SingleNestedAttribute{
+ Description: "projected items for all in one resources secrets, configmaps, and downward API",
+ MarkdownDescription: "projected items for all in one resources secrets, configmaps, and downward API",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "defaultMode are the mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "defaultMode are the mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
Required: false,
Optional: true,
Computed: false,
},
- "path": schema.StringAttribute{
- Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "sources": schema.ListNestedAttribute{
+ Description: "sources is the list of volume projections",
+ MarkdownDescription: "sources is the list of volume projections",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "config_map": schema.SingleNestedAttribute{
+ Description: "configMap information about the configMap data to project",
+ MarkdownDescription: "configMap information about the configMap data to project",
+ Attributes: map[string]schema.Attribute{
+ "items": schema.ListNestedAttribute{
+ Description: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "optional": schema.BoolAttribute{
+ Description: "optional specify whether the ConfigMap or its keys must be defined",
+ MarkdownDescription: "optional specify whether the ConfigMap or its keys must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "downward_api": schema.SingleNestedAttribute{
+ Description: "downwardAPI information about the downwardAPI data to project",
+ MarkdownDescription: "downwardAPI information about the downwardAPI data to project",
+ Attributes: map[string]schema.Attribute{
+ "items": schema.ListNestedAttribute{
+ Description: "Items is a list of DownwardAPIVolume file",
+ MarkdownDescription: "Items is a list of DownwardAPIVolume file",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "field_ref": schema.SingleNestedAttribute{
+ Description: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
+ MarkdownDescription: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
+ Attributes: map[string]schema.Attribute{
+ "api_version": schema.StringAttribute{
+ Description: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ MarkdownDescription: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "optional": schema.BoolAttribute{
- Description: "optional specify whether the ConfigMap or its keys must be defined",
- MarkdownDescription: "optional specify whether the ConfigMap or its keys must be defined",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "field_path": schema.StringAttribute{
+ Description: "Path of the field to select in the specified API version.",
+ MarkdownDescription: "Path of the field to select in the specified API version.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "name": schema.StringAttribute{
- Description: "The name of the config.",
- MarkdownDescription: "The name of the config.",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "mode": schema.Int64Attribute{
+ Description: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "disable_exporter": schema.BoolAttribute{
- Description: "Determines whether metrics exporter information is annotated on the Component's headless Service.If set to true, the following annotations will not be patched into the Service:- 'monitor.kubeblocks.io/path'- 'monitor.kubeblocks.io/port'- 'monitor.kubeblocks.io/scheme'These annotations allow the Prometheus installed by KubeBlocks to discover and scrape metrics from the exporter.",
- MarkdownDescription: "Determines whether metrics exporter information is annotated on the Component's headless Service.If set to true, the following annotations will not be patched into the Service:- 'monitor.kubeblocks.io/path'- 'monitor.kubeblocks.io/port'- 'monitor.kubeblocks.io/scheme'These annotations allow the Prometheus installed by KubeBlocks to discover and scrape metrics from the exporter.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "path": schema.StringAttribute{
+ Description: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
+ MarkdownDescription: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "enabled_logs": schema.ListAttribute{
- Description: "Specifies which types of logs should be collected for the Component.The log types are defined in the 'componentDefinition.spec.logConfigs' field with the LogConfig entries.The elements in the 'enabledLogs' array correspond to the names of the LogConfig entries.For example, if the 'componentDefinition.spec.logConfigs' defines LogConfig entries withnames 'slow_query_log' and 'error_log',you can enable the collection of these logs by including their names in the 'enabledLogs' array:'''yamlenabledLogs:- slow_query_log- error_log'''",
- MarkdownDescription: "Specifies which types of logs should be collected for the Component.The log types are defined in the 'componentDefinition.spec.logConfigs' field with the LogConfig entries.The elements in the 'enabledLogs' array correspond to the names of the LogConfig entries.For example, if the 'componentDefinition.spec.logConfigs' defines LogConfig entries withnames 'slow_query_log' and 'error_log',you can enable the collection of these logs by including their names in the 'enabledLogs' array:'''yamlenabledLogs:- slow_query_log- error_log'''",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "resource_field_ref": schema.SingleNestedAttribute{
+ Description: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
+ MarkdownDescription: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
+ Attributes: map[string]schema.Attribute{
+ "container_name": schema.StringAttribute{
+ Description: "Container name: required for volumes, optional for env vars",
+ MarkdownDescription: "Container name: required for volumes, optional for env vars",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "instances": schema.ListNestedAttribute{
- Description: "Allows for the customization of configuration values for each instance within a Component.An instance represent a single replica (Pod and associated K8s resources like PVCs, Services, and ConfigMaps).While instances typically share a common configuration as defined in the ClusterComponentSpec,they can require unique settings in various scenarios:For example:- A database Component might require different resource allocations for primary and secondary instances, with primaries needing more resources.- During a rolling upgrade, a Component may first update the image for one or a few instances, and then update the remaining instances after verifying that the updated instances are functioning correctly.InstanceTemplate allows for specifying these unique configurations per instance.Each instance's name is constructed using the pattern: $(component.name)-$(template.name)-$(ordinal),starting with an ordinal of 0.It is crucial to maintain unique names for each InstanceTemplate to avoid conflicts.The sum of replicas across all InstanceTemplates should not exceed the total number of replicas specified for the Component.Any remaining replicas will be generated using the default template and will follow the default naming rules.",
- MarkdownDescription: "Allows for the customization of configuration values for each instance within a Component.An instance represent a single replica (Pod and associated K8s resources like PVCs, Services, and ConfigMaps).While instances typically share a common configuration as defined in the ClusterComponentSpec,they can require unique settings in various scenarios:For example:- A database Component might require different resource allocations for primary and secondary instances, with primaries needing more resources.- During a rolling upgrade, a Component may first update the image for one or a few instances, and then update the remaining instances after verifying that the updated instances are functioning correctly.InstanceTemplate allows for specifying these unique configurations per instance.Each instance's name is constructed using the pattern: $(component.name)-$(template.name)-$(ordinal),starting with an ordinal of 0.It is crucial to maintain unique names for each InstanceTemplate to avoid conflicts.The sum of replicas across all InstanceTemplates should not exceed the total number of replicas specified for the Component.Any remaining replicas will be generated using the default template and will follow the default naming rules.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "annotations": schema.MapAttribute{
- Description: "Specifies a map of key-value pairs to be merged into the Pod's existing annotations.Existing keys will have their values overwritten, while new keys will be added to the annotations.",
- MarkdownDescription: "Specifies a map of key-value pairs to be merged into the Pod's existing annotations.Existing keys will have their values overwritten, while new keys will be added to the annotations.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "divisor": schema.StringAttribute{
+ Description: "Specifies the output format of the exposed resources, defaults to '1'",
+ MarkdownDescription: "Specifies the output format of the exposed resources, defaults to '1'",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "env": schema.ListNestedAttribute{
- Description: "Defines Env to override.Add new or override existing envs.",
- MarkdownDescription: "Defines Env to override.Add new or override existing envs.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name of the environment variable. Must be a C_IDENTIFIER.",
- MarkdownDescription: "Name of the environment variable. Must be a C_IDENTIFIER.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "resource": schema.StringAttribute{
+ Description: "Required: resource to select",
+ MarkdownDescription: "Required: resource to select",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "value": schema.StringAttribute{
- Description: "Variable references $(VAR_NAME) are expandedusing the previously defined environment variables in the container andany service environment variables. If a variable cannot be resolved,the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.'$$(VAR_NAME)' will produce the string literal '$(VAR_NAME)'.Escaped references will never be expanded, regardless of whether the variableexists or not.Defaults to ''.",
- MarkdownDescription: "Variable references $(VAR_NAME) are expandedusing the previously defined environment variables in the container andany service environment variables. If a variable cannot be resolved,the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.'$$(VAR_NAME)' will produce the string literal '$(VAR_NAME)'.Escaped references will never be expanded, regardless of whether the variableexists or not.Defaults to ''.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "secret": schema.SingleNestedAttribute{
+ Description: "secret information about the secret data to project",
+ MarkdownDescription: "secret information about the secret data to project",
+ Attributes: map[string]schema.Attribute{
+ "items": schema.ListNestedAttribute{
+ Description: "items if unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "value_from": schema.SingleNestedAttribute{
- Description: "Source for the environment variable's value. Cannot be used if value is not empty.",
- MarkdownDescription: "Source for the environment variable's value. Cannot be used if value is not empty.",
- Attributes: map[string]schema.Attribute{
- "config_map_key_ref": schema.SingleNestedAttribute{
- Description: "Selects a key of a ConfigMap.",
- MarkdownDescription: "Selects a key of a ConfigMap.",
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The key to select.",
- MarkdownDescription: "The key to select.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "optional": schema.BoolAttribute{
- Description: "Specify whether the ConfigMap or its key must be defined",
- MarkdownDescription: "Specify whether the ConfigMap or its key must be defined",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "optional": schema.BoolAttribute{
+ Description: "optional field specify whether the Secret or its key must be defined",
+ MarkdownDescription: "optional field specify whether the Secret or its key must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "field_ref": schema.SingleNestedAttribute{
- Description: "Selects a field of the pod: supports metadata.name, metadata.namespace, 'metadata.labels['']', 'metadata.annotations['']',spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.",
- MarkdownDescription: "Selects a field of the pod: supports metadata.name, metadata.namespace, 'metadata.labels['']', 'metadata.annotations['']',spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.",
- Attributes: map[string]schema.Attribute{
- "api_version": schema.StringAttribute{
- Description: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
- MarkdownDescription: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "service_account_token": schema.SingleNestedAttribute{
+ Description: "serviceAccountToken is information about the serviceAccountToken data to project",
+ MarkdownDescription: "serviceAccountToken is information about the serviceAccountToken data to project",
+ Attributes: map[string]schema.Attribute{
+ "audience": schema.StringAttribute{
+ Description: "audience is the intended audience of the token. A recipient of a tokenmust identify itself with an identifier specified in the audience of thetoken, and otherwise should reject the token. The audience defaults to theidentifier of the apiserver.",
+ MarkdownDescription: "audience is the intended audience of the token. A recipient of a tokenmust identify itself with an identifier specified in the audience of thetoken, and otherwise should reject the token. The audience defaults to theidentifier of the apiserver.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "field_path": schema.StringAttribute{
- Description: "Path of the field to select in the specified API version.",
- MarkdownDescription: "Path of the field to select in the specified API version.",
- Required: true,
- Optional: false,
- Computed: false,
+ "expiration_seconds": schema.Int64Attribute{
+ Description: "expirationSeconds is the requested duration of validity of the serviceaccount token. As the token approaches expiration, the kubelet volumeplugin will proactively rotate the service account token. The kubelet willstart trying to rotate the token if the token is older than 80 percent ofits time to live or if the token is older than 24 hours.Defaults to 1 hourand must be at least 10 minutes.",
+ MarkdownDescription: "expirationSeconds is the requested duration of validity of the serviceaccount token. As the token approaches expiration, the kubelet volumeplugin will proactively rotate the service account token. The kubelet willstart trying to rotate the token if the token is older than 80 percent ofits time to live or if the token is older than 24 hours.Defaults to 1 hourand must be at least 10 minutes.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is the path relative to the mount point of the file to project thetoken into.",
+ MarkdownDescription: "path is the path relative to the mount point of the file to project thetoken into.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
},
Required: false,
Optional: true,
Computed: false,
},
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "resource_field_ref": schema.SingleNestedAttribute{
- Description: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.",
- MarkdownDescription: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.",
- Attributes: map[string]schema.Attribute{
- "container_name": schema.StringAttribute{
- Description: "Container name: required for volumes, optional for env vars",
- MarkdownDescription: "Container name: required for volumes, optional for env vars",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "quobyte": schema.SingleNestedAttribute{
+ Description: "quobyte represents a Quobyte mount on the host that shares a pod's lifetime",
+ MarkdownDescription: "quobyte represents a Quobyte mount on the host that shares a pod's lifetime",
+ Attributes: map[string]schema.Attribute{
+ "group": schema.StringAttribute{
+ Description: "group to map volume access toDefault is no group",
+ MarkdownDescription: "group to map volume access toDefault is no group",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "divisor": schema.StringAttribute{
- Description: "Specifies the output format of the exposed resources, defaults to '1'",
- MarkdownDescription: "Specifies the output format of the exposed resources, defaults to '1'",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the Quobyte volume to be mounted with read-only permissions.Defaults to false.",
+ MarkdownDescription: "readOnly here will force the Quobyte volume to be mounted with read-only permissions.Defaults to false.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "resource": schema.StringAttribute{
- Description: "Required: resource to select",
- MarkdownDescription: "Required: resource to select",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ "registry": schema.StringAttribute{
+ Description: "registry represents a single or multiple Quobyte Registry servicesspecified as a string as host:port pair (multiple entries are separated with commas)which acts as the central registry for volumes",
+ MarkdownDescription: "registry represents a single or multiple Quobyte Registry servicesspecified as a string as host:port pair (multiple entries are separated with commas)which acts as the central registry for volumes",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- "secret_key_ref": schema.SingleNestedAttribute{
- Description: "Selects a key of a secret in the pod's namespace",
- MarkdownDescription: "Selects a key of a secret in the pod's namespace",
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The key of the secret to select from. Must be a valid secret key.",
- MarkdownDescription: "The key of the secret to select from. Must be a valid secret key.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "tenant": schema.StringAttribute{
+ Description: "tenant owning the given Quobyte volume in the BackendUsed with dynamically provisioned Quobyte volumes, value is set by the plugin",
+ MarkdownDescription: "tenant owning the given Quobyte volume in the BackendUsed with dynamically provisioned Quobyte volumes, value is set by the plugin",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "user": schema.StringAttribute{
+ Description: "user to map volume access toDefaults to serivceaccount user",
+ MarkdownDescription: "user to map volume access toDefaults to serivceaccount user",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "optional": schema.BoolAttribute{
- Description: "Specify whether the Secret or its key must be defined",
- MarkdownDescription: "Specify whether the Secret or its key must be defined",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ "volume": schema.StringAttribute{
+ Description: "volume is a string that references an already created Quobyte volume by name.",
+ MarkdownDescription: "volume is a string that references an already created Quobyte volume by name.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
},
Required: false,
Optional: true,
Computed: false,
},
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "image": schema.StringAttribute{
- Description: "Specifies an override for the first container's image in the Pod.",
- MarkdownDescription: "Specifies an override for the first container's image in the Pod.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "labels": schema.MapAttribute{
- Description: "Specifies a map of key-value pairs that will be merged into the Pod's existing labels.Values for existing keys will be overwritten, and new keys will be added.",
- MarkdownDescription: "Specifies a map of key-value pairs that will be merged into the Pod's existing labels.Values for existing keys will be overwritten, and new keys will be added.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- "name": schema.StringAttribute{
- Description: "Name specifies the unique name of the instance Pod created using this InstanceTemplate.This name is constructed by concatenating the Component's name, the template's name, and the instance's ordinalusing the pattern: $(cluster.name)-$(component.name)-$(template.name)-$(ordinal). Ordinals start from 0.The specified name overrides any default naming conventions or patterns.",
- MarkdownDescription: "Name specifies the unique name of the instance Pod created using this InstanceTemplate.This name is constructed by concatenating the Component's name, the template's name, and the instance's ordinalusing the pattern: $(cluster.name)-$(component.name)-$(template.name)-$(ordinal). Ordinals start from 0.The specified name overrides any default naming conventions or patterns.",
- Required: true,
- Optional: false,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.LengthAtMost(54),
- stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z0-9]([a-z0-9\.\-]*[a-z0-9])?$`), ""),
- },
- },
+ "rbd": schema.SingleNestedAttribute{
+ Description: "rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/rbd/README.md",
+ MarkdownDescription: "rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/rbd/README.md",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#rbdTODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#rbdTODO: how do we prevent errors in the filesystem from compromising the machine",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "replicas": schema.Int64Attribute{
- Description: "Specifies the number of instances (Pods) to create from this InstanceTemplate.This field allows setting how many replicated instances of the Component,with the specific overrides in the InstanceTemplate, are created.The default value is 1. A value of 0 disables instance creation.",
- MarkdownDescription: "Specifies the number of instances (Pods) to create from this InstanceTemplate.This field allows setting how many replicated instances of the Component,with the specific overrides in the InstanceTemplate, are created.The default value is 1. A value of 0 disables instance creation.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.Int64{
- int64validator.AtLeast(0),
- },
- },
+ "image": schema.StringAttribute{
+ Description: "image is the rados image name.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "image is the rados image name.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "resources": schema.SingleNestedAttribute{
- Description: "Specifies an override for the resource requirements of the first container in the Pod.This field allows for customizing resource allocation (CPU, memory, etc.) for the container.",
- MarkdownDescription: "Specifies an override for the resource requirements of the first container in the Pod.This field allows for customizing resource allocation (CPU, memory, etc.) for the container.",
- Attributes: map[string]schema.Attribute{
- "claims": schema.ListNestedAttribute{
- Description: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
- MarkdownDescription: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
- MarkdownDescription: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ "keyring": schema.StringAttribute{
+ Description: "keyring is the path to key ring for RBDUser.Default is /etc/ceph/keyring.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "keyring is the path to key ring for RBDUser.Default is /etc/ceph/keyring.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "monitors": schema.ListAttribute{
+ Description: "monitors is a collection of Ceph monitors.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "monitors is a collection of Ceph monitors.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ ElementType: types.StringType,
Required: true,
Optional: false,
Computed: false,
},
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- "limits": schema.MapAttribute{
- Description: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- MarkdownDescription: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "pool": schema.StringAttribute{
+ Description: "pool is the rados pool name.Default is rbd.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "pool is the rados pool name.Default is rbd.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "requests": schema.MapAttribute{
- Description: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- MarkdownDescription: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "scheduling_policy": schema.SingleNestedAttribute{
- Description: "Specifies the scheduling policy for the Component.",
- MarkdownDescription: "Specifies the scheduling policy for the Component.",
- Attributes: map[string]schema.Attribute{
- "affinity": schema.SingleNestedAttribute{
- Description: "Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity.",
- MarkdownDescription: "Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity.",
- Attributes: map[string]schema.Attribute{
- "node_affinity": schema.SingleNestedAttribute{
- Description: "Describes node affinity scheduling rules for the pod.",
- MarkdownDescription: "Describes node affinity scheduling rules for the pod.",
- Attributes: map[string]schema.Attribute{
- "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred.",
- MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "preference": schema.SingleNestedAttribute{
- Description: "A node selector term, associated with the corresponding weight.",
- MarkdownDescription: "A node selector term, associated with the corresponding weight.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "A list of node selector requirements by node's labels.",
- MarkdownDescription: "A list of node selector requirements by node's labels.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The label key that the selector applies to.",
- MarkdownDescription: "The label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is name of the authentication secret for RBDUser. If providedoverrides keyring.Default is nil.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "secretRef is name of the authentication secret for RBDUser. If providedoverrides keyring.Default is nil.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "user": schema.StringAttribute{
+ Description: "user is the rados user name.Default is admin.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "user is the rados user name.Default is admin.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "scale_io": schema.SingleNestedAttribute{
+ Description: "scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.",
+ MarkdownDescription: "scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'.Default is 'xfs'.",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'.Default is 'xfs'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_fields": schema.ListNestedAttribute{
- Description: "A list of node selector requirements by node's fields.",
- MarkdownDescription: "A list of node selector requirements by node's fields.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The label key that the selector applies to.",
- MarkdownDescription: "The label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "gateway": schema.StringAttribute{
+ Description: "gateway is the host address of the ScaleIO API Gateway.",
+ MarkdownDescription: "gateway is the host address of the ScaleIO API Gateway.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "protection_domain": schema.StringAttribute{
+ Description: "protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.",
+ MarkdownDescription: "protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "weight": schema.Int64Attribute{
- Description: "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.",
- MarkdownDescription: "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef references to the secret for ScaleIO user and othersensitive information. If this is not provided, Login operation will fail.",
+ MarkdownDescription: "secretRef references to the secret for ScaleIO user and othersensitive information. If this is not provided, Login operation will fail.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "required_during_scheduling_ignored_during_execution": schema.SingleNestedAttribute{
- Description: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node.",
- MarkdownDescription: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node.",
- Attributes: map[string]schema.Attribute{
- "node_selector_terms": schema.ListNestedAttribute{
- Description: "Required. A list of node selector terms. The terms are ORed.",
- MarkdownDescription: "Required. A list of node selector terms. The terms are ORed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "A list of node selector requirements by node's labels.",
- MarkdownDescription: "A list of node selector requirements by node's labels.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The label key that the selector applies to.",
- MarkdownDescription: "The label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "ssl_enabled": schema.BoolAttribute{
+ Description: "sslEnabled Flag enable/disable SSL communication with Gateway, default false",
+ MarkdownDescription: "sslEnabled Flag enable/disable SSL communication with Gateway, default false",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "storage_mode": schema.StringAttribute{
+ Description: "storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.Default is ThinProvisioned.",
+ MarkdownDescription: "storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.Default is ThinProvisioned.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "storage_pool": schema.StringAttribute{
+ Description: "storagePool is the ScaleIO Storage Pool associated with the protection domain.",
+ MarkdownDescription: "storagePool is the ScaleIO Storage Pool associated with the protection domain.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_fields": schema.ListNestedAttribute{
- Description: "A list of node selector requirements by node's fields.",
- MarkdownDescription: "A list of node selector requirements by node's fields.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The label key that the selector applies to.",
- MarkdownDescription: "The label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "system": schema.StringAttribute{
+ Description: "system is the name of the storage system as configured in ScaleIO.",
+ MarkdownDescription: "system is the name of the storage system as configured in ScaleIO.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "volume_name": schema.StringAttribute{
+ Description: "volumeName is the name of a volume already created in the ScaleIO systemthat is associated with this volume source.",
+ MarkdownDescription: "volumeName is the name of a volume already created in the ScaleIO systemthat is associated with this volume source.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: true,
- Optional: false,
- Computed: false,
+ "secret": schema.SingleNestedAttribute{
+ Description: "secret represents a secret that should populate this volume.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ MarkdownDescription: "secret represents a secret that should populate this volume.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "items": schema.ListNestedAttribute{
+ Description: "items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- "pod_affinity": schema.SingleNestedAttribute{
- Description: "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).",
- MarkdownDescription: "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).",
- Attributes: map[string]schema.Attribute{
- "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
- MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "pod_affinity_term": schema.SingleNestedAttribute{
- Description: "Required. A pod affinity term, associated with the corresponding weight.",
- MarkdownDescription: "Required. A pod affinity term, associated with the corresponding weight.",
- Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "A label query over a set of resources, in this case pods.",
- MarkdownDescription: "A label query over a set of resources, in this case pods.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "optional": schema.BoolAttribute{
+ Description: "optional field specify whether the Secret or its keys must be defined",
+ MarkdownDescription: "optional field specify whether the Secret or its keys must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "secret_name": schema.StringAttribute{
+ Description: "secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ MarkdownDescription: "secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "storageos": schema.SingleNestedAttribute{
+ Description: "storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.",
+ MarkdownDescription: "storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef specifies the secret to use for obtaining the StorageOS APIcredentials. If not specified, default values will be attempted.",
+ MarkdownDescription: "secretRef specifies the secret to use for obtaining the StorageOS APIcredentials. If not specified, default values will be attempted.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "namespace_selector": schema.SingleNestedAttribute{
- Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "volume_name": schema.StringAttribute{
+ Description: "volumeName is the human-readable name of the StorageOS volume. Volumenames are only unique within a namespace.",
+ MarkdownDescription: "volumeName is the human-readable name of the StorageOS volume. Volumenames are only unique within a namespace.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "volume_namespace": schema.StringAttribute{
+ Description: "volumeNamespace specifies the scope of the volume within StorageOS. If nonamespace is specified then the Pod's namespace will be used. This allows theKubernetes name scoping to be mirrored within StorageOS for tighter integration.Set VolumeName to any name to override the default behaviour.Set to 'default' if you are not using namespaces within StorageOS.Namespaces that do not pre-exist within StorageOS will be created.",
+ MarkdownDescription: "volumeNamespace specifies the scope of the volume within StorageOS. If nonamespace is specified then the Pod's namespace will be used. This allows theKubernetes name scoping to be mirrored within StorageOS for tighter integration.Set VolumeName to any name to override the default behaviour.Set to 'default' if you are not using namespaces within StorageOS.Namespaces that do not pre-exist within StorageOS will be created.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "vsphere_volume": schema.SingleNestedAttribute{
+ Description: "vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine",
+ MarkdownDescription: "vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fsType is filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "storage_policy_id": schema.StringAttribute{
+ Description: "storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.",
+ MarkdownDescription: "storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "namespaces": schema.ListAttribute{
- Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "storage_policy_name": schema.StringAttribute{
+ Description: "storagePolicyName is the storage Policy Based Management (SPBM) profile name.",
+ MarkdownDescription: "storagePolicyName is the storage Policy Based Management (SPBM) profile name.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "topology_key": schema.StringAttribute{
- Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "volume_path": schema.StringAttribute{
+ Description: "volumePath is the path that identifies vSphere volume vmdk",
+ MarkdownDescription: "volumePath is the path that identifies vSphere volume vmdk",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "weight": schema.Int64Attribute{
- Description: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
- MarkdownDescription: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "issuer": schema.SingleNestedAttribute{
+ Description: "Specifies the configuration for the TLS certificates issuer.It allows defining the issuer name and the reference to the secret containing the TLS certificates and key.The secret should contain the CA certificate, TLS certificate, and private key in the specified keys.Required when TLS is enabled.",
+ MarkdownDescription: "Specifies the configuration for the TLS certificates issuer.It allows defining the issuer name and the reference to the secret containing the TLS certificates and key.The secret should contain the CA certificate, TLS certificate, and private key in the specified keys.Required when TLS is enabled.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "The issuer for TLS certificates.It only allows two enum values: 'KubeBlocks' and 'UserProvided'.- 'KubeBlocks' indicates that the self-signed TLS certificates generated by the KubeBlocks Operator will be used.- 'UserProvided' means that the user is responsible for providing their own CA, Cert, and Key. In this case, the user-provided CA certificate, server certificate, and private key will be used for TLS communication.",
+ MarkdownDescription: "The issuer for TLS certificates.It only allows two enum values: 'KubeBlocks' and 'UserProvided'.- 'KubeBlocks' indicates that the self-signed TLS certificates generated by the KubeBlocks Operator will be used.- 'UserProvided' means that the user is responsible for providing their own CA, Cert, and Key. In this case, the user-provided CA certificate, server certificate, and private key will be used for TLS communication.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "required_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
- MarkdownDescription: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "A label query over a set of resources, in this case pods.",
- MarkdownDescription: "A label query over a set of resources, in this case pods.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "SecretRef is the reference to the secret that contains user-provided certificates.It is required when the issuer is set to 'UserProvided'.",
+ MarkdownDescription: "SecretRef is the reference to the secret that contains user-provided certificates.It is required when the issuer is set to 'UserProvided'.",
+ Attributes: map[string]schema.Attribute{
+ "ca": schema.StringAttribute{
+ Description: "Key of CA cert in Secret",
+ MarkdownDescription: "Key of CA cert in Secret",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "cert": schema.StringAttribute{
+ Description: "Key of Cert in Secret",
+ MarkdownDescription: "Key of Cert in Secret",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "key": schema.StringAttribute{
+ Description: "Key of TLS private key in Secret",
+ MarkdownDescription: "Key of TLS private key in Secret",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name of the Secret that contains user-provided certificates.",
+ MarkdownDescription: "Name of the Secret that contains user-provided certificates.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "labels": schema.MapAttribute{
+ Description: "Specifies Labels to override or add for underlying Pods.",
+ MarkdownDescription: "Specifies Labels to override or add for underlying Pods.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "monitor": schema.BoolAttribute{
+ Description: "Deprecated since v0.9Determines whether metrics exporter information is annotated on the Component's headless Service.If set to true, the following annotations will be patched into the Service:- 'monitor.kubeblocks.io/path'- 'monitor.kubeblocks.io/port'- 'monitor.kubeblocks.io/scheme'These annotations allow the Prometheus installed by KubeBlocks to discover and scrape metrics from the exporter.",
+ MarkdownDescription: "Deprecated since v0.9Determines whether metrics exporter information is annotated on the Component's headless Service.If set to true, the following annotations will be patched into the Service:- 'monitor.kubeblocks.io/path'- 'monitor.kubeblocks.io/port'- 'monitor.kubeblocks.io/scheme'These annotations allow the Prometheus installed by KubeBlocks to discover and scrape metrics from the exporter.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "namespace_selector": schema.SingleNestedAttribute{
- Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "Specifies the Component's name.It's part of the Service DNS name and must comply with the IANA service naming rule.The name is optional when ClusterComponentSpec is used as a template (e.g., in 'shardingSpec'),but required otherwise.TODO +kubebuilder:validation:XValidation:rule='self == oldSelf',message='name is immutable'",
+ MarkdownDescription: "Specifies the Component's name.It's part of the Service DNS name and must comply with the IANA service naming rule.The name is optional when ClusterComponentSpec is used as a template (e.g., in 'shardingSpec'),but required otherwise.TODO +kubebuilder:validation:XValidation:rule='self == oldSelf',message='name is immutable'",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.LengthAtMost(22),
+ stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z]([a-z0-9\-]*[a-z0-9])?$`), ""),
+ },
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "offline_instances": schema.ListAttribute{
+ Description: "Specifies the names of instances to be transitioned to offline status.Marking an instance as offline results in the following:1. The associated Pod is stopped, and its PersistentVolumeClaim (PVC) is retained for potential future reuse or data recovery, but it is no longer actively used.2. The ordinal number assigned to this instance is preserved, ensuring it remains unique and avoiding conflicts with new instances.Setting instances to offline allows for a controlled scale-in process, preserving their data and maintainingordinal consistency within the Cluster.Note that offline instances and their associated resources, such as PVCs, are not automatically deleted.The administrator must manually manage the cleanup and removal of these resources when they are no longer needed.",
+ MarkdownDescription: "Specifies the names of instances to be transitioned to offline status.Marking an instance as offline results in the following:1. The associated Pod is stopped, and its PersistentVolumeClaim (PVC) is retained for potential future reuse or data recovery, but it is no longer actively used.2. The ordinal number assigned to this instance is preserved, ensuring it remains unique and avoiding conflicts with new instances.Setting instances to offline allows for a controlled scale-in process, preserving their data and maintainingordinal consistency within the Cluster.Note that offline instances and their associated resources, such as PVCs, are not automatically deleted.The administrator must manually manage the cleanup and removal of these resources when they are no longer needed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "replicas": schema.Int64Attribute{
+ Description: "Specifies the desired number of replicas in the Component for enhancing availability and durability, or load balancing.",
+ MarkdownDescription: "Specifies the desired number of replicas in the Component for enhancing availability and durability, or load balancing.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ Validators: []validator.Int64{
+ int64validator.AtLeast(0),
+ },
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "resources": schema.SingleNestedAttribute{
+ Description: "Specifies the resources required by the Component.It allows defining the CPU, memory requirements and limits for the Component's containers.",
+ MarkdownDescription: "Specifies the resources required by the Component.It allows defining the CPU, memory requirements and limits for the Component's containers.",
+ Attributes: map[string]schema.Attribute{
+ "claims": schema.ListNestedAttribute{
+ Description: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ MarkdownDescription: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ MarkdownDescription: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "namespaces": schema.ListAttribute{
- Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "limits": schema.MapAttribute{
+ Description: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "topology_key": schema.StringAttribute{
- Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "requests": schema.MapAttribute{
+ Description: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "pod_anti_affinity": schema.SingleNestedAttribute{
- Description: "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).",
- MarkdownDescription: "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).",
+ "scheduling_policy": schema.SingleNestedAttribute{
+ Description: "Specifies the scheduling policy for the Component.",
+ MarkdownDescription: "Specifies the scheduling policy for the Component.",
+ Attributes: map[string]schema.Attribute{
+ "affinity": schema.SingleNestedAttribute{
+ Description: "Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity.",
+ MarkdownDescription: "Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity.",
+ Attributes: map[string]schema.Attribute{
+ "node_affinity": schema.SingleNestedAttribute{
+ Description: "Describes node affinity scheduling rules for the pod.",
+ MarkdownDescription: "Describes node affinity scheduling rules for the pod.",
+ Attributes: map[string]schema.Attribute{
+ "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred.",
+ MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred.",
+ NestedObject: schema.NestedAttributeObject{
Attributes: map[string]schema.Attribute{
- "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
- MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "pod_affinity_term": schema.SingleNestedAttribute{
- Description: "Required. A pod affinity term, associated with the corresponding weight.",
- MarkdownDescription: "Required. A pod affinity term, associated with the corresponding weight.",
+ "preference": schema.SingleNestedAttribute{
+ Description: "A node selector term, associated with the corresponding weight.",
+ MarkdownDescription: "A node selector term, associated with the corresponding weight.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "A list of node selector requirements by node's labels.",
+ MarkdownDescription: "A list of node selector requirements by node's labels.",
+ NestedObject: schema.NestedAttributeObject{
Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "A label query over a set of resources, in this case pods.",
- MarkdownDescription: "A label query over a set of resources, in this case pods.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ "key": schema.StringAttribute{
+ Description: "The label key that the selector applies to.",
+ MarkdownDescription: "The label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- "namespace_selector": schema.SingleNestedAttribute{
- Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ "operator": schema.StringAttribute{
+ Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- "namespaces": schema.ListAttribute{
- Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ "values": schema.ListAttribute{
+ Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
ElementType: types.StringType,
Required: false,
Optional: true,
Computed: false,
},
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "topology_key": schema.StringAttribute{
- Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ "match_fields": schema.ListNestedAttribute{
+ Description: "A list of node selector requirements by node's fields.",
+ MarkdownDescription: "A list of node selector requirements by node's fields.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The label key that the selector applies to.",
+ MarkdownDescription: "The label key that the selector applies to.",
Required: true,
Optional: false,
Computed: false,
},
- },
- Required: true,
- Optional: false,
- Computed: false,
- },
- "weight": schema.Int64Attribute{
- Description: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
- MarkdownDescription: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
- Required: true,
- Optional: false,
- Computed: false,
+ "operator": schema.StringAttribute{
+ Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
},
- Required: false,
- Optional: true,
+ Required: true,
+ Optional: false,
Computed: false,
},
- "required_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
- MarkdownDescription: "If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "A label query over a set of resources, in this case pods.",
- MarkdownDescription: "A label query over a set of resources, in this case pods.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "weight": schema.Int64Attribute{
+ Description: "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.",
+ MarkdownDescription: "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "required_during_scheduling_ignored_during_execution": schema.SingleNestedAttribute{
+ Description: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node.",
+ MarkdownDescription: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node.",
+ Attributes: map[string]schema.Attribute{
+ "node_selector_terms": schema.ListNestedAttribute{
+ Description: "Required. A list of node selector terms. The terms are ORed.",
+ MarkdownDescription: "Required. A list of node selector terms. The terms are ORed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "A list of node selector requirements by node's labels.",
+ MarkdownDescription: "A list of node selector requirements by node's labels.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The label key that the selector applies to.",
+ MarkdownDescription: "The label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ "operator": schema.StringAttribute{
+ Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ "values": schema.ListAttribute{
+ Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
ElementType: types.StringType,
Required: false,
Optional: true,
Computed: false,
},
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "namespace_selector": schema.SingleNestedAttribute{
- Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ "match_fields": schema.ListNestedAttribute{
+ Description: "A list of node selector requirements by node's fields.",
+ MarkdownDescription: "A list of node selector requirements by node's fields.",
+ NestedObject: schema.NestedAttributeObject{
Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ "key": schema.StringAttribute{
+ Description: "The label key that the selector applies to.",
+ MarkdownDescription: "The label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ "operator": schema.StringAttribute{
+ Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
ElementType: types.StringType,
Required: false,
Optional: true,
Computed: false,
},
},
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "namespaces": schema.ListAttribute{
- Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "topology_key": schema.StringAttribute{
- Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- Required: true,
- Optional: false,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "node_name": schema.StringAttribute{
- Description: "NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.",
- MarkdownDescription: "NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "node_selector": schema.MapAttribute{
- Description: "NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/",
- MarkdownDescription: "NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "scheduler_name": schema.StringAttribute{
- Description: "If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.",
- MarkdownDescription: "If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.",
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "tolerations": schema.ListNestedAttribute{
- Description: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.",
- MarkdownDescription: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "effect": schema.StringAttribute{
- Description: "Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.",
- MarkdownDescription: "Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "key": schema.StringAttribute{
- Description: "Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.",
- MarkdownDescription: "Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "operator": schema.StringAttribute{
- Description: "Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.",
- MarkdownDescription: "Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "pod_affinity": schema.SingleNestedAttribute{
+ Description: "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).",
+ MarkdownDescription: "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).",
+ Attributes: map[string]schema.Attribute{
+ "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
+ MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "pod_affinity_term": schema.SingleNestedAttribute{
+ Description: "Required. A pod affinity term, associated with the corresponding weight.",
+ MarkdownDescription: "Required. A pod affinity term, associated with the corresponding weight.",
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "A label query over a set of resources, in this case pods.",
+ MarkdownDescription: "A label query over a set of resources, in this case pods.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "toleration_seconds": schema.Int64Attribute{
- Description: "TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.",
- MarkdownDescription: "TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "value": schema.StringAttribute{
- Description: "Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.",
- MarkdownDescription: "Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "topology_spread_constraints": schema.ListNestedAttribute{
- Description: "TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed.",
- MarkdownDescription: "TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain.",
- MarkdownDescription: "LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
Computed: false,
},
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
+ "namespace_selector": schema.SingleNestedAttribute{
+ Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
ElementType: types.StringType,
Required: false,
Optional: true,
Computed: false,
},
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
+ "namespaces": schema.ListAttribute{
+ Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "topology_key": schema.StringAttribute{
+ Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
},
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "match_label_keys": schema.ListAttribute{
- Description: "MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).",
- MarkdownDescription: "MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "max_skew": schema.Int64Attribute{
- Description: "MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.",
- MarkdownDescription: "MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "min_domains": schema.Int64Attribute{
- Description: "MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).",
- MarkdownDescription: "MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "node_affinity_policy": schema.StringAttribute{
- Description: "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
- MarkdownDescription: "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "node_taints_policy": schema.StringAttribute{
- Description: "NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
- MarkdownDescription: "NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "topology_key": schema.StringAttribute{
- Description: "TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.",
- MarkdownDescription: "TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- "when_unsatisfiable": schema.StringAttribute{
- Description: "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.",
- MarkdownDescription: "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.",
- Required: true,
- Optional: false,
- Computed: false,
+ "weight": schema.Int64Attribute{
+ Description: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
+ MarkdownDescription: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
},
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- "volume_claim_templates": schema.ListNestedAttribute{
- Description: "Defines VolumeClaimTemplates to override.Add new or override existing volume claim templates.",
- MarkdownDescription: "Defines VolumeClaimTemplates to override.Add new or override existing volume claim templates.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Refers to the name of a volumeMount defined in either:- 'componentDefinition.spec.runtime.containers[*].volumeMounts'- 'clusterDefinition.spec.componentDefs[*].podSpec.containers[*].volumeMounts' (deprecated)The value of 'name' must match the 'name' field of a volumeMount specified in the corresponding 'volumeMounts' array.",
- MarkdownDescription: "Refers to the name of a volumeMount defined in either:- 'componentDefinition.spec.runtime.containers[*].volumeMounts'- 'clusterDefinition.spec.componentDefs[*].podSpec.containers[*].volumeMounts' (deprecated)The value of 'name' must match the 'name' field of a volumeMount specified in the corresponding 'volumeMounts' array.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "required_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
+ MarkdownDescription: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "A label query over a set of resources, in this case pods.",
+ MarkdownDescription: "A label query over a set of resources, in this case pods.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "spec": schema.SingleNestedAttribute{
- Description: "Defines the desired characteristics of a PersistentVolumeClaim that will be created for the volumewith the mount name specified in the 'name' field.When a Pod is created for this ClusterComponent, a new PVC will be created based on the specificationdefined in the 'spec' field. The PVC will be associated with the volume mount specified by the 'name' field.",
- MarkdownDescription: "Defines the desired characteristics of a PersistentVolumeClaim that will be created for the volumewith the mount name specified in the 'name' field.When a Pod is created for this ClusterComponent, a new PVC will be created based on the specificationdefined in the 'spec' field. The PVC will be associated with the volume mount specified by the 'name' field.",
- Attributes: map[string]schema.Attribute{
- "access_modes": schema.MapAttribute{
- Description: "Contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1.",
- MarkdownDescription: "Contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "resources": schema.SingleNestedAttribute{
- Description: "Represents the minimum resources the volume should have.If the RecoverVolumeExpansionFailure feature is enabled, users are allowed to specify resource requirements thatare lower than the previous value but must still be higher than the capacity recorded in the status field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources.",
- MarkdownDescription: "Represents the minimum resources the volume should have.If the RecoverVolumeExpansionFailure feature is enabled, users are allowed to specify resource requirements thatare lower than the previous value but must still be higher than the capacity recorded in the status field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources.",
- Attributes: map[string]schema.Attribute{
- "claims": schema.ListNestedAttribute{
- Description: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
- MarkdownDescription: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
- MarkdownDescription: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
- Required: true,
- Optional: false,
- Computed: false,
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- "limits": schema.MapAttribute{
- Description: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- MarkdownDescription: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "namespace_selector": schema.SingleNestedAttribute{
+ Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "requests": schema.MapAttribute{
- Description: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- MarkdownDescription: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- "storage_class_name": schema.StringAttribute{
- Description: "The name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1.",
- MarkdownDescription: "The name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "namespaces": schema.ListAttribute{
+ Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "volume_mode": schema.StringAttribute{
- Description: "Defines what type of volume is required by the claim, either Block or Filesystem.",
- MarkdownDescription: "Defines what type of volume is required by the claim, either Block or Filesystem.",
- Required: false,
- Optional: true,
- Computed: false,
+ "topology_key": schema.StringAttribute{
+ Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
},
},
Required: false,
@@ -3624,167 +7144,161 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- "volume_mounts": schema.ListNestedAttribute{
- Description: "Defines VolumeMounts to override.Add new or override existing volume mounts of the first container in the Pod.",
- MarkdownDescription: "Defines VolumeMounts to override.Add new or override existing volume mounts of the first container in the Pod.",
- NestedObject: schema.NestedAttributeObject{
+ "pod_anti_affinity": schema.SingleNestedAttribute{
+ Description: "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).",
+ MarkdownDescription: "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).",
Attributes: map[string]schema.Attribute{
- "mount_path": schema.StringAttribute{
- Description: "Path within the container at which the volume should be mounted. Mustnot contain ':'.",
- MarkdownDescription: "Path within the container at which the volume should be mounted. Mustnot contain ':'.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "mount_propagation": schema.StringAttribute{
- Description: "mountPropagation determines how mounts are propagated from the hostto container and the other way around.When not set, MountPropagationNone is used.This field is beta in 1.10.",
- MarkdownDescription: "mountPropagation determines how mounts are propagated from the hostto container and the other way around.When not set, MountPropagationNone is used.This field is beta in 1.10.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "name": schema.StringAttribute{
- Description: "This must match the Name of a Volume.",
- MarkdownDescription: "This must match the Name of a Volume.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "read_only": schema.BoolAttribute{
- Description: "Mounted read-only if true, read-write otherwise (false or unspecified).Defaults to false.",
- MarkdownDescription: "Mounted read-only if true, read-write otherwise (false or unspecified).Defaults to false.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "sub_path": schema.StringAttribute{
- Description: "Path within the volume from which the container's volume should be mounted.Defaults to '' (volume's root).",
- MarkdownDescription: "Path within the volume from which the container's volume should be mounted.Defaults to '' (volume's root).",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "sub_path_expr": schema.StringAttribute{
- Description: "Expanded path within the volume from which the container's volume should be mounted.Behaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.Defaults to '' (volume's root).SubPathExpr and SubPath are mutually exclusive.",
- MarkdownDescription: "Expanded path within the volume from which the container's volume should be mounted.Behaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.Defaults to '' (volume's root).SubPathExpr and SubPath are mutually exclusive.",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
+ MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "pod_affinity_term": schema.SingleNestedAttribute{
+ Description: "Required. A pod affinity term, associated with the corresponding weight.",
+ MarkdownDescription: "Required. A pod affinity term, associated with the corresponding weight.",
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "A label query over a set of resources, in this case pods.",
+ MarkdownDescription: "A label query over a set of resources, in this case pods.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "volumes": schema.ListNestedAttribute{
- Description: "Defines Volumes to override.Add new or override existing volumes.",
- MarkdownDescription: "Defines Volumes to override.Add new or override existing volumes.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "aws_elastic_block_store": schema.SingleNestedAttribute{
- Description: "awsElasticBlockStore represents an AWS Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
- MarkdownDescription: "awsElasticBlockStore represents an AWS Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
- Attributes: map[string]schema.Attribute{
- "fs_type": schema.StringAttribute{
- Description: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstoreTODO: how do we prevent errors in the filesystem from compromising the machine",
- MarkdownDescription: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstoreTODO: how do we prevent errors in the filesystem from compromising the machine",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "partition": schema.Int64Attribute{
- Description: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).",
- MarkdownDescription: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly value true will force the readOnly setting in VolumeMounts.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
- MarkdownDescription: "readOnly value true will force the readOnly setting in VolumeMounts.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "volume_id": schema.StringAttribute{
- Description: "volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
- MarkdownDescription: "volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "namespace_selector": schema.SingleNestedAttribute{
+ Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "azure_disk": schema.SingleNestedAttribute{
- Description: "azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.",
- MarkdownDescription: "azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.",
- Attributes: map[string]schema.Attribute{
- "caching_mode": schema.StringAttribute{
- Description: "cachingMode is the Host Caching mode: None, Read Only, Read Write.",
- MarkdownDescription: "cachingMode is the Host Caching mode: None, Read Only, Read Write.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "disk_name": schema.StringAttribute{
- Description: "diskName is the Name of the data disk in the blob storage",
- MarkdownDescription: "diskName is the Name of the data disk in the blob storage",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "disk_uri": schema.StringAttribute{
- Description: "diskURI is the URI of data disk in the blob storage",
- MarkdownDescription: "diskURI is the URI of data disk in the blob storage",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "fs_type": schema.StringAttribute{
- Description: "fsType is Filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
- MarkdownDescription: "fsType is Filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "namespaces": schema.ListAttribute{
+ Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "kind": schema.StringAttribute{
- Description: "kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared",
- MarkdownDescription: "kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "topology_key": schema.StringAttribute{
+ Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- MarkdownDescription: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- Required: false,
- Optional: true,
- Computed: false,
+ "weight": schema.Int64Attribute{
+ Description: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
+ MarkdownDescription: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
},
},
Required: false,
@@ -3792,1358 +7306,1716 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "azure_file": schema.SingleNestedAttribute{
- Description: "azureFile represents an Azure File Service mount on the host and bind mount to the pod.",
- MarkdownDescription: "azureFile represents an Azure File Service mount on the host and bind mount to the pod.",
- Attributes: map[string]schema.Attribute{
- "read_only": schema.BoolAttribute{
- Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "required_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
+ MarkdownDescription: "If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "A label query over a set of resources, in this case pods.",
+ MarkdownDescription: "A label query over a set of resources, in this case pods.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "secret_name": schema.StringAttribute{
- Description: "secretName is the name of secret that contains Azure Storage Account Name and Key",
- MarkdownDescription: "secretName is the name of secret that contains Azure Storage Account Name and Key",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "share_name": schema.StringAttribute{
- Description: "shareName is the azure share Name",
- MarkdownDescription: "shareName is the azure share Name",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "cephfs": schema.SingleNestedAttribute{
- Description: "cephFS represents a Ceph FS mount on the host that shares a pod's lifetime",
- MarkdownDescription: "cephFS represents a Ceph FS mount on the host that shares a pod's lifetime",
- Attributes: map[string]schema.Attribute{
- "monitors": schema.ListAttribute{
- Description: "monitors is Required: Monitors is a collection of Ceph monitorsMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
- MarkdownDescription: "monitors is Required: Monitors is a collection of Ceph monitorsMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
- ElementType: types.StringType,
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "path": schema.StringAttribute{
- Description: "path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /",
- MarkdownDescription: "path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "namespace_selector": schema.SingleNestedAttribute{
+ Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
- MarkdownDescription: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "secret_file": schema.StringAttribute{
- Description: "secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secretMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
- MarkdownDescription: "secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secretMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "secret_ref": schema.SingleNestedAttribute{
- Description: "secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
- MarkdownDescription: "secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- "user": schema.StringAttribute{
- Description: "user is optional: User is the rados user name, default is adminMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
- MarkdownDescription: "user is optional: User is the rados user name, default is adminMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
- Required: false,
- Optional: true,
- Computed: false,
+ "namespaces": schema.ListAttribute{
+ Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "topology_key": schema.StringAttribute{
+ Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
},
},
Required: false,
Optional: true,
Computed: false,
},
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "cinder": schema.SingleNestedAttribute{
- Description: "cinder represents a cinder volume attached and mounted on kubelets host machine.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
- MarkdownDescription: "cinder represents a cinder volume attached and mounted on kubelets host machine.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
- Attributes: map[string]schema.Attribute{
- "fs_type": schema.StringAttribute{
- Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
- MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "node_name": schema.StringAttribute{
+ Description: "NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.",
+ MarkdownDescription: "NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
- MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "node_selector": schema.MapAttribute{
+ Description: "NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/",
+ MarkdownDescription: "NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "secret_ref": schema.SingleNestedAttribute{
- Description: "secretRef is optional: points to a secret object containing parameters used to connectto OpenStack.",
- MarkdownDescription: "secretRef is optional: points to a secret object containing parameters used to connectto OpenStack.",
+ "scheduler_name": schema.StringAttribute{
+ Description: "If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.",
+ MarkdownDescription: "If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "tolerations": schema.ListNestedAttribute{
+ Description: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.",
+ MarkdownDescription: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "effect": schema.StringAttribute{
+ Description: "Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.",
+ MarkdownDescription: "Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "key": schema.StringAttribute{
+ Description: "Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.",
+ MarkdownDescription: "Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.",
+ MarkdownDescription: "Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "toleration_seconds": schema.Int64Attribute{
+ Description: "TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.",
+ MarkdownDescription: "TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "value": schema.StringAttribute{
+ Description: "Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.",
+ MarkdownDescription: "Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "topology_spread_constraints": schema.ListNestedAttribute{
+ Description: "TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed.",
+ MarkdownDescription: "TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain.",
+ MarkdownDescription: "LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
Required: false,
Optional: true,
Computed: false,
},
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "volume_id": schema.StringAttribute{
- Description: "volumeID used to identify the volume in cinder.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
- MarkdownDescription: "volumeID used to identify the volume in cinder.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "config_map": schema.SingleNestedAttribute{
- Description: "configMap represents a configMap that should populate this volume",
- MarkdownDescription: "configMap represents a configMap that should populate this volume",
- Attributes: map[string]schema.Attribute{
- "default_mode": schema.Int64Attribute{
- Description: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "match_label_keys": schema.ListAttribute{
+ Description: "MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).",
+ MarkdownDescription: "MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "max_skew": schema.Int64Attribute{
+ Description: "MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.",
+ MarkdownDescription: "MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "min_domains": schema.Int64Attribute{
+ Description: "MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).",
+ MarkdownDescription: "MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "node_affinity_policy": schema.StringAttribute{
+ Description: "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
+ MarkdownDescription: "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "node_taints_policy": schema.StringAttribute{
+ Description: "NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
+ MarkdownDescription: "NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "topology_key": schema.StringAttribute{
+ Description: "TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.",
+ MarkdownDescription: "TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "items": schema.ListNestedAttribute{
- Description: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the key to project.",
- MarkdownDescription: "key is the key to project.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "when_unsatisfiable": schema.StringAttribute{
+ Description: "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.",
+ MarkdownDescription: "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "mode": schema.Int64Attribute{
- Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "service_account_name": schema.StringAttribute{
+ Description: "Specifies the name of the ServiceAccount required by the running Component.This ServiceAccount is used to grant necessary permissions for the Component's Pods to interactwith other Kubernetes resources, such as modifying Pod labels or sending events.Defaults:If not specified, KubeBlocks automatically assigns a default ServiceAccount named 'kb-{cluster.name}',bound to a default role installed together with KubeBlocks.Future Changes:Future versions might change the default ServiceAccount creation strategy to one per Component,potentially revising the naming to 'kb-{cluster.name}-{component.name}'.Users can override the automatic ServiceAccount assignment by explicitly setting the name ofan existed ServiceAccount in this field.",
+ MarkdownDescription: "Specifies the name of the ServiceAccount required by the running Component.This ServiceAccount is used to grant necessary permissions for the Component's Pods to interactwith other Kubernetes resources, such as modifying Pod labels or sending events.Defaults:If not specified, KubeBlocks automatically assigns a default ServiceAccount named 'kb-{cluster.name}',bound to a default role installed together with KubeBlocks.Future Changes:Future versions might change the default ServiceAccount creation strategy to one per Component,potentially revising the naming to 'kb-{cluster.name}-{component.name}'.Users can override the automatic ServiceAccount assignment by explicitly setting the name ofan existed ServiceAccount in this field.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "path": schema.StringAttribute{
- Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "service_refs": schema.ListNestedAttribute{
+ Description: "Defines a list of ServiceRef for a Component, enabling access to both external services andServices provided by other Clusters.Types of services:- External services: Not managed by KubeBlocks or managed by a different KubeBlocks operator; Require a ServiceDescriptor for connection details.- Services provided by a Cluster: Managed by the same KubeBlocks operator; identified using Cluster, Component and Service names.ServiceRefs with identical 'serviceRef.name' in the same Cluster are considered the same.Example:'''yamlserviceRefs: - name: 'redis-sentinel' serviceDescriptor: name: 'external-redis-sentinel' - name: 'postgres-cluster' clusterServiceSelector: cluster: 'my-postgres-cluster' service: component: 'postgresql''''The example above includes ServiceRefs to an external Redis Sentinel service and a PostgreSQL Cluster.",
+ MarkdownDescription: "Defines a list of ServiceRef for a Component, enabling access to both external services andServices provided by other Clusters.Types of services:- External services: Not managed by KubeBlocks or managed by a different KubeBlocks operator; Require a ServiceDescriptor for connection details.- Services provided by a Cluster: Managed by the same KubeBlocks operator; identified using Cluster, Component and Service names.ServiceRefs with identical 'serviceRef.name' in the same Cluster are considered the same.Example:'''yamlserviceRefs: - name: 'redis-sentinel' serviceDescriptor: name: 'external-redis-sentinel' - name: 'postgres-cluster' clusterServiceSelector: cluster: 'my-postgres-cluster' service: component: 'postgresql''''The example above includes ServiceRefs to an external Redis Sentinel service and a PostgreSQL Cluster.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "cluster": schema.StringAttribute{
+ Description: "Specifies the name of the KubeBlocks Cluster being referenced.This is used when services from another KubeBlocks Cluster are consumed.By default, the referenced KubeBlocks Cluster's 'clusterDefinition.spec.connectionCredential'will be utilized to bind to the current Component. This credential should include:'endpoint', 'port', 'username', and 'password'.Note:- The 'ServiceKind' and 'ServiceVersion' specified in the service reference within the ClusterDefinition are not validated when using this approach.- If both 'cluster' and 'serviceDescriptor' are present, 'cluster' will take precedence.Deprecated since v0.9 since 'clusterDefinition.spec.connectionCredential' is deprecated,use 'clusterServiceSelector' instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
+ MarkdownDescription: "Specifies the name of the KubeBlocks Cluster being referenced.This is used when services from another KubeBlocks Cluster are consumed.By default, the referenced KubeBlocks Cluster's 'clusterDefinition.spec.connectionCredential'will be utilized to bind to the current Component. This credential should include:'endpoint', 'port', 'username', and 'password'.Note:- The 'ServiceKind' and 'ServiceVersion' specified in the service reference within the ClusterDefinition are not validated when using this approach.- If both 'cluster' and 'serviceDescriptor' are present, 'cluster' will take precedence.Deprecated since v0.9 since 'clusterDefinition.spec.connectionCredential' is deprecated,use 'clusterServiceSelector' instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "cluster_service_selector": schema.SingleNestedAttribute{
+ Description: "References a service provided by another KubeBlocks Cluster.It specifies the ClusterService and the account credentials needed for access.",
+ MarkdownDescription: "References a service provided by another KubeBlocks Cluster.It specifies the ClusterService and the account credentials needed for access.",
+ Attributes: map[string]schema.Attribute{
+ "cluster": schema.StringAttribute{
+ Description: "The name of the Cluster being referenced.",
+ MarkdownDescription: "The name of the Cluster being referenced.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "optional": schema.BoolAttribute{
- Description: "optional specify whether the ConfigMap or its keys must be defined",
- MarkdownDescription: "optional specify whether the ConfigMap or its keys must be defined",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "credential": schema.SingleNestedAttribute{
+ Description: "Specifies the SystemAccount to authenticate and establish a connection with the referenced Cluster.The SystemAccount should be defined in 'componentDefinition.spec.systemAccounts'of the Component providing the service in the referenced Cluster.",
+ MarkdownDescription: "Specifies the SystemAccount to authenticate and establish a connection with the referenced Cluster.The SystemAccount should be defined in 'componentDefinition.spec.systemAccounts'of the Component providing the service in the referenced Cluster.",
+ Attributes: map[string]schema.Attribute{
+ "component": schema.StringAttribute{
+ Description: "The name of the Component where the credential resides in.",
+ MarkdownDescription: "The name of the Component where the credential resides in.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "csi": schema.SingleNestedAttribute{
- Description: "csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).",
- MarkdownDescription: "csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).",
- Attributes: map[string]schema.Attribute{
- "driver": schema.StringAttribute{
- Description: "driver is the name of the CSI driver that handles this volume.Consult with your admin for the correct name as registered in the cluster.",
- MarkdownDescription: "driver is the name of the CSI driver that handles this volume.Consult with your admin for the correct name as registered in the cluster.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- "fs_type": schema.StringAttribute{
- Description: "fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'.If not provided, the empty value is passed to the associated CSI driverwhich will determine the default filesystem to apply.",
- MarkdownDescription: "fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'.If not provided, the empty value is passed to the associated CSI driverwhich will determine the default filesystem to apply.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "The name of the credential (SystemAccount) to reference.",
+ MarkdownDescription: "The name of the credential (SystemAccount) to reference.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "node_publish_secret_ref": schema.SingleNestedAttribute{
- Description: "nodePublishSecretRef is a reference to the secret object containingsensitive information to pass to the CSI driver to complete the CSINodePublishVolume and NodeUnpublishVolume calls.This field is optional, and may be empty if no secret is required. If thesecret object contains more than one secret, all secret references are passed.",
- MarkdownDescription: "nodePublishSecretRef is a reference to the secret object containingsensitive information to pass to the CSI driver to complete the CSINodePublishVolume and NodeUnpublishVolume calls.This field is optional, and may be empty if no secret is required. If thesecret object contains more than one secret, all secret references are passed.",
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "service": schema.SingleNestedAttribute{
+ Description: "Identifies a ClusterService from the list of Services defined in 'cluster.spec.services' of the referenced Cluster.",
+ MarkdownDescription: "Identifies a ClusterService from the list of Services defined in 'cluster.spec.services' of the referenced Cluster.",
+ Attributes: map[string]schema.Attribute{
+ "component": schema.StringAttribute{
+ Description: "The name of the Component where the Service resides in.It is required when referencing a Component's Service.",
+ MarkdownDescription: "The name of the Component where the Service resides in.It is required when referencing a Component's Service.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly specifies a read-only configuration for the volume.Defaults to false (read/write).",
- MarkdownDescription: "readOnly specifies a read-only configuration for the volume.Defaults to false (read/write).",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "port": schema.StringAttribute{
+ Description: "The port name of the Service to be referenced.If there is a non-zero node-port exist for the matched Service port, the node-port will be selected first.If the referenced Service is of pod-service type (a Service per Pod), there will be multiple Service objects matched,and the resolved value will be presented in the following format: service1.name:port1,service2.name:port2...",
+ MarkdownDescription: "The port name of the Service to be referenced.If there is a non-zero node-port exist for the matched Service port, the node-port will be selected first.If the referenced Service is of pod-service type (a Service per Pod), there will be multiple Service objects matched,and the resolved value will be presented in the following format: service1.name:port1,service2.name:port2...",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "volume_attributes": schema.MapAttribute{
- Description: "volumeAttributes stores driver-specific properties that are passed to the CSIdriver. Consult your driver's documentation for supported values.",
- MarkdownDescription: "volumeAttributes stores driver-specific properties that are passed to the CSIdriver. Consult your driver's documentation for supported values.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "service": schema.StringAttribute{
+ Description: "The name of the Service to be referenced.Leave it empty to reference the default Service. Set it to 'headless' to reference the default headless Service.If the referenced Service is of pod-service type (a Service per Pod), there will be multiple Service objects matched,and the resolved value will be presented in the following format: service1.name,service2.name...",
+ MarkdownDescription: "The name of the Service to be referenced.Leave it empty to reference the default Service. Set it to 'headless' to reference the default headless Service.If the referenced Service is of pod-service type (a Service per Pod), there will be multiple Service objects matched,and the resolved value will be presented in the following format: service1.name,service2.name...",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "downward_api": schema.SingleNestedAttribute{
- Description: "downwardAPI represents downward API about the pod that should populate this volume",
- MarkdownDescription: "downwardAPI represents downward API about the pod that should populate this volume",
- Attributes: map[string]schema.Attribute{
- "default_mode": schema.Int64Attribute{
- Description: "Optional: mode bits to use on created files by default. Must be aOptional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "Optional: mode bits to use on created files by default. Must be aOptional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "Specifies the identifier of the service reference declaration.It corresponds to the serviceRefDeclaration name defined in either:- 'componentDefinition.spec.serviceRefDeclarations[*].name'- 'clusterDefinition.spec.componentDefs[*].serviceRefDeclarations[*].name' (deprecated)",
+ MarkdownDescription: "Specifies the identifier of the service reference declaration.It corresponds to the serviceRefDeclaration name defined in either:- 'componentDefinition.spec.serviceRefDeclarations[*].name'- 'clusterDefinition.spec.componentDefs[*].serviceRefDeclarations[*].name' (deprecated)",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "items": schema.ListNestedAttribute{
- Description: "Items is a list of downward API volume file",
- MarkdownDescription: "Items is a list of downward API volume file",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "field_ref": schema.SingleNestedAttribute{
- Description: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
- MarkdownDescription: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
- Attributes: map[string]schema.Attribute{
- "api_version": schema.StringAttribute{
- Description: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
- MarkdownDescription: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "namespace": schema.StringAttribute{
+ Description: "Specifies the namespace of the referenced Cluster or the namespace of the referenced ServiceDescriptor object.If not provided, the referenced Cluster and ServiceDescriptor will be searched in the namespace of the currentCluster by default.",
+ MarkdownDescription: "Specifies the namespace of the referenced Cluster or the namespace of the referenced ServiceDescriptor object.If not provided, the referenced Cluster and ServiceDescriptor will be searched in the namespace of the currentCluster by default.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "service_descriptor": schema.StringAttribute{
+ Description: "Specifies the name of the ServiceDescriptor object that describes a service provided by external sources.When referencing a service provided by external sources, a ServiceDescriptor object is required to establishthe service binding.The 'serviceDescriptor.spec.serviceKind' and 'serviceDescriptor.spec.serviceVersion' should match the serviceKindand serviceVersion declared in the definition.If both 'cluster' and 'serviceDescriptor' are specified, the 'cluster' takes precedence.",
+ MarkdownDescription: "Specifies the name of the ServiceDescriptor object that describes a service provided by external sources.When referencing a service provided by external sources, a ServiceDescriptor object is required to establishthe service binding.The 'serviceDescriptor.spec.serviceKind' and 'serviceDescriptor.spec.serviceVersion' should match the serviceKindand serviceVersion declared in the definition.If both 'cluster' and 'serviceDescriptor' are specified, the 'cluster' takes precedence.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "field_path": schema.StringAttribute{
- Description: "Path of the field to select in the specified API version.",
- MarkdownDescription: "Path of the field to select in the specified API version.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "service_version": schema.StringAttribute{
+ Description: "ServiceVersion specifies the version of the Service expected to be provisioned by this Component.The version should follow the syntax and semantics of the 'Semantic Versioning' specification (http://semver.org/).If no version is specified, the latest available version will be used.",
+ MarkdownDescription: "ServiceVersion specifies the version of the Service expected to be provisioned by this Component.The version should follow the syntax and semantics of the 'Semantic Versioning' specification (http://semver.org/).If no version is specified, the latest available version will be used.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.LengthAtMost(32),
+ },
+ },
- "mode": schema.Int64Attribute{
- Description: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "services": schema.ListNestedAttribute{
+ Description: "Overrides services defined in referenced ComponentDefinition and expose endpoints that can be accessed by clients.",
+ MarkdownDescription: "Overrides services defined in referenced ComponentDefinition and expose endpoints that can be accessed by clients.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "annotations": schema.MapAttribute{
+ Description: "If ServiceType is LoadBalancer, cloud provider related parameters can be put here.More info: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer.",
+ MarkdownDescription: "If ServiceType is LoadBalancer, cloud provider related parameters can be put here.More info: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "path": schema.StringAttribute{
- Description: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
- MarkdownDescription: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "References the ComponentService name defined in the 'componentDefinition.spec.services[*].name'.",
+ MarkdownDescription: "References the ComponentService name defined in the 'componentDefinition.spec.services[*].name'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.LengthAtMost(25),
+ },
+ },
- "resource_field_ref": schema.SingleNestedAttribute{
- Description: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
- MarkdownDescription: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
- Attributes: map[string]schema.Attribute{
- "container_name": schema.StringAttribute{
- Description: "Container name: required for volumes, optional for env vars",
- MarkdownDescription: "Container name: required for volumes, optional for env vars",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "pod_service": schema.BoolAttribute{
+ Description: "Indicates whether to generate individual Services for each Pod.If set to true, a separate Service will be created for each Pod in the Cluster.",
+ MarkdownDescription: "Indicates whether to generate individual Services for each Pod.If set to true, a separate Service will be created for each Pod in the Cluster.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "divisor": schema.StringAttribute{
- Description: "Specifies the output format of the exposed resources, defaults to '1'",
- MarkdownDescription: "Specifies the output format of the exposed resources, defaults to '1'",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "service_type": schema.StringAttribute{
+ Description: "Determines how the Service is exposed. Valid options are 'ClusterIP', 'NodePort', and 'LoadBalancer'.- 'ClusterIP' allocates a Cluster-internal IP address for load-balancing to endpoints. Endpoints are determined by the selector or if that is not specified, they are determined by manual construction of an Endpoints object or EndpointSlice objects.- 'NodePort' builds on ClusterIP and allocates a port on every node which routes to the same endpoints as the ClusterIP.- 'LoadBalancer' builds on NodePort and creates an external load-balancer (if supported in the current cloud) which routes to the same endpoints as the ClusterIP.Note: although K8s Service type allows the 'ExternalName' type, it is not a valid option for ClusterComponentService.For more info, see:https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types.",
+ MarkdownDescription: "Determines how the Service is exposed. Valid options are 'ClusterIP', 'NodePort', and 'LoadBalancer'.- 'ClusterIP' allocates a Cluster-internal IP address for load-balancing to endpoints. Endpoints are determined by the selector or if that is not specified, they are determined by manual construction of an Endpoints object or EndpointSlice objects.- 'NodePort' builds on ClusterIP and allocates a port on every node which routes to the same endpoints as the ClusterIP.- 'LoadBalancer' builds on NodePort and creates an external load-balancer (if supported in the current cloud) which routes to the same endpoints as the ClusterIP.Note: although K8s Service type allows the 'ExternalName' type, it is not a valid option for ClusterComponentService.For more info, see:https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.OneOf("ClusterIP", "NodePort", "LoadBalancer"),
+ },
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "resource": schema.StringAttribute{
- Description: "Required: resource to select",
- MarkdownDescription: "Required: resource to select",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "switch_policy": schema.SingleNestedAttribute{
+ Description: "Defines the strategy for switchover and failover when workloadType is Replication.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
+ MarkdownDescription: "Defines the strategy for switchover and failover when workloadType is Replication.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
+ Attributes: map[string]schema.Attribute{
+ "type": schema.StringAttribute{
+ Description: "Type specifies the type of switch policy to be applied.",
+ MarkdownDescription: "Type specifies the type of switch policy to be applied.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.OneOf("Noop"),
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "empty_dir": schema.SingleNestedAttribute{
- Description: "emptyDir represents a temporary directory that shares a pod's lifetime.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
- MarkdownDescription: "emptyDir represents a temporary directory that shares a pod's lifetime.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
- Attributes: map[string]schema.Attribute{
- "medium": schema.StringAttribute{
- Description: "medium represents what type of storage medium should back this directory.The default is '' which means to use the node's default medium.Must be an empty string (default) or Memory.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
- MarkdownDescription: "medium represents what type of storage medium should back this directory.The default is '' which means to use the node's default medium.Must be an empty string (default) or Memory.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "system_accounts": schema.ListNestedAttribute{
+ Description: "Overrides system accounts defined in referenced ComponentDefinition.",
+ MarkdownDescription: "Overrides system accounts defined in referenced ComponentDefinition.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "The name of the system account.",
+ MarkdownDescription: "The name of the system account.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "size_limit": schema.StringAttribute{
- Description: "sizeLimit is the total amount of local storage required for this EmptyDir volume.The size limit is also applicable for memory medium.The maximum usage on memory medium EmptyDir would be the minimum value betweenthe SizeLimit specified here and the sum of memory limits of all containers in a pod.The default is nil which means that the limit is undefined.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
- MarkdownDescription: "sizeLimit is the total amount of local storage required for this EmptyDir volume.The size limit is also applicable for memory medium.The maximum usage on memory medium EmptyDir would be the minimum value betweenthe SizeLimit specified here and the sum of memory limits of all containers in a pod.The default is nil which means that the limit is undefined.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ "password_config": schema.SingleNestedAttribute{
+ Description: "Specifies the policy for generating the account's password.This field is immutable once set.",
+ MarkdownDescription: "Specifies the policy for generating the account's password.This field is immutable once set.",
+ Attributes: map[string]schema.Attribute{
+ "length": schema.Int64Attribute{
+ Description: "The length of the password.",
+ MarkdownDescription: "The length of the password.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.Int64{
+ int64validator.AtLeast(8),
+ int64validator.AtMost(32),
},
+ },
- "ephemeral": schema.SingleNestedAttribute{
- Description: "ephemeral represents a volume that is handled by a cluster storage driver.The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,and deleted when the pod is removed.Use this if:a) the volume is only needed while the pod runs,b) features of normal volumes like restoring from snapshot or capacity tracking are needed,c) the storage driver is specified through a storage class, andd) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim).Use PersistentVolumeClaim or one of the vendor-specificAPIs for volumes that persist for longer than the lifecycleof an individual pod.Use CSI for light-weight local ephemeral volumes if the CSI driver is meant tobe used that way - see the documentation of the driver formore information.A pod can use both types of ephemeral volumes andpersistent volumes at the same time.",
- MarkdownDescription: "ephemeral represents a volume that is handled by a cluster storage driver.The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,and deleted when the pod is removed.Use this if:a) the volume is only needed while the pod runs,b) features of normal volumes like restoring from snapshot or capacity tracking are needed,c) the storage driver is specified through a storage class, andd) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim).Use PersistentVolumeClaim or one of the vendor-specificAPIs for volumes that persist for longer than the lifecycleof an individual pod.Use CSI for light-weight local ephemeral volumes if the CSI driver is meant tobe used that way - see the documentation of the driver formore information.A pod can use both types of ephemeral volumes andpersistent volumes at the same time.",
- Attributes: map[string]schema.Attribute{
- "volume_claim_template": schema.SingleNestedAttribute{
- Description: "Will be used to create a stand-alone PVC to provision the volume.The pod in which this EphemeralVolumeSource is embedded will be theowner of the PVC, i.e. the PVC will be deleted together with thepod. The name of the PVC will be '-' where'' is the name from the 'PodSpec.Volumes' arrayentry. Pod validation will reject the pod if the concatenated nameis not valid for a PVC (for example, too long).An existing PVC with that name that is not owned by the podwill *not* be used for the pod to avoid using an unrelatedvolume by mistake. Starting the pod is then blocked untilthe unrelated PVC is removed. If such a pre-created PVC ismeant to be used by the pod, the PVC has to updated with anowner reference to the pod once the pod exists. Normallythis should not be necessary, but it may be useful whenmanually reconstructing a broken cluster.This field is read-only and no changes will be made by Kubernetesto the PVC after it has been created.Required, must not be nil.",
- MarkdownDescription: "Will be used to create a stand-alone PVC to provision the volume.The pod in which this EphemeralVolumeSource is embedded will be theowner of the PVC, i.e. the PVC will be deleted together with thepod. The name of the PVC will be '-' where'' is the name from the 'PodSpec.Volumes' arrayentry. Pod validation will reject the pod if the concatenated nameis not valid for a PVC (for example, too long).An existing PVC with that name that is not owned by the podwill *not* be used for the pod to avoid using an unrelatedvolume by mistake. Starting the pod is then blocked untilthe unrelated PVC is removed. If such a pre-created PVC ismeant to be used by the pod, the PVC has to updated with anowner reference to the pod once the pod exists. Normallythis should not be necessary, but it may be useful whenmanually reconstructing a broken cluster.This field is read-only and no changes will be made by Kubernetesto the PVC after it has been created.Required, must not be nil.",
- Attributes: map[string]schema.Attribute{
- "metadata": schema.SingleNestedAttribute{
- Description: "May contain labels and annotations that will be copied into the PVCwhen creating it. No other fields are allowed and will be rejected duringvalidation.",
- MarkdownDescription: "May contain labels and annotations that will be copied into the PVCwhen creating it. No other fields are allowed and will be rejected duringvalidation.",
- Attributes: map[string]schema.Attribute{
- "annotations": schema.MapAttribute{
- Description: "",
- MarkdownDescription: "",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "finalizers": schema.ListAttribute{
- Description: "",
- MarkdownDescription: "",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "letter_case": schema.StringAttribute{
+ Description: "The case of the letters in the password.",
+ MarkdownDescription: "The case of the letters in the password.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.OneOf("LowerCases", "UpperCases", "MixedCases"),
+ },
+ },
- "labels": schema.MapAttribute{
- Description: "",
- MarkdownDescription: "",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "num_digits": schema.Int64Attribute{
+ Description: "The number of digits in the password.",
+ MarkdownDescription: "The number of digits in the password.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.Int64{
+ int64validator.AtLeast(0),
+ int64validator.AtMost(8),
+ },
+ },
- "name": schema.StringAttribute{
- Description: "",
- MarkdownDescription: "",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "num_symbols": schema.Int64Attribute{
+ Description: "The number of symbols in the password.",
+ MarkdownDescription: "The number of symbols in the password.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.Int64{
+ int64validator.AtLeast(0),
+ int64validator.AtMost(8),
+ },
+ },
- "namespace": schema.StringAttribute{
- Description: "",
- MarkdownDescription: "",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "seed": schema.StringAttribute{
+ Description: "Seed to generate the account's password.Cannot be updated.",
+ MarkdownDescription: "Seed to generate the account's password.Cannot be updated.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "spec": schema.SingleNestedAttribute{
- Description: "The specification for the PersistentVolumeClaim. The entire content iscopied unchanged into the PVC that gets created from thistemplate. The same fields as in a PersistentVolumeClaimare also valid here.",
- MarkdownDescription: "The specification for the PersistentVolumeClaim. The entire content iscopied unchanged into the PVC that gets created from thistemplate. The same fields as in a PersistentVolumeClaimare also valid here.",
- Attributes: map[string]schema.Attribute{
- "access_modes": schema.ListAttribute{
- Description: "accessModes contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1",
- MarkdownDescription: "accessModes contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "Refers to the secret from which data will be copied to create the new account.This field is immutable once set.",
+ MarkdownDescription: "Refers to the secret from which data will be copied to create the new account.This field is immutable once set.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "The unique identifier of the secret.",
+ MarkdownDescription: "The unique identifier of the secret.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "data_source": schema.SingleNestedAttribute{
- Description: "dataSource field can be used to specify either:* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)* An existing PVC (PersistentVolumeClaim)If the provisioner or an external controller can support the specified data source,it will create a new volume based on the contents of the specified data source.When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.If the namespace is specified, then dataSourceRef will not be copied to dataSource.",
- MarkdownDescription: "dataSource field can be used to specify either:* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)* An existing PVC (PersistentVolumeClaim)If the provisioner or an external controller can support the specified data source,it will create a new volume based on the contents of the specified data source.When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.If the namespace is specified, then dataSourceRef will not be copied to dataSource.",
- Attributes: map[string]schema.Attribute{
- "api_group": schema.StringAttribute{
- Description: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
- MarkdownDescription: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "namespace": schema.StringAttribute{
+ Description: "The namespace where the secret is located.",
+ MarkdownDescription: "The namespace where the secret is located.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "kind": schema.StringAttribute{
- Description: "Kind is the type of resource being referenced",
- MarkdownDescription: "Kind is the type of resource being referenced",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "tls": schema.BoolAttribute{
+ Description: "A boolean flag that indicates whether the Component should use Transport Layer Security (TLS)for secure communication.When set to true, the Component will be configured to use TLS encryption for its network connections.This ensures that the data transmitted between the Component and its clients or other Components is encryptedand protected from unauthorized access.If TLS is enabled, the Component may require additional configuration, such as specifying TLS certificates and keys,to properly set up the secure communication channel.",
+ MarkdownDescription: "A boolean flag that indicates whether the Component should use Transport Layer Security (TLS)for secure communication.When set to true, the Component will be configured to use TLS encryption for its network connections.This ensures that the data transmitted between the Component and its clients or other Components is encryptedand protected from unauthorized access.If TLS is enabled, the Component may require additional configuration, such as specifying TLS certificates and keys,to properly set up the secure communication channel.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "name": schema.StringAttribute{
- Description: "Name is the name of resource being referenced",
- MarkdownDescription: "Name is the name of resource being referenced",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "tolerations": schema.MapAttribute{
+ Description: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.Deprecated since v0.10, replaced by the 'schedulingPolicy' field.",
+ MarkdownDescription: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.Deprecated since v0.10, replaced by the 'schedulingPolicy' field.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "data_source_ref": schema.SingleNestedAttribute{
- Description: "dataSourceRef specifies the object from which to populate the volume with data, if a non-emptyvolume is desired. This may be any object from a non-empty API group (noncore object) or a PersistentVolumeClaim object.When this field is specified, volume binding will only succeed if the type ofthe specified object matches some installed volume populator or dynamicprovisioner.This field will replace the functionality of the dataSource field and as suchif both fields are non-empty, they must have the same value. For backwardscompatibility, when namespace isn't specified in dataSourceRef,both fields (dataSource and dataSourceRef) will be set to the samevalue automatically if one of them is empty and the other is non-empty.When namespace is specified in dataSourceRef,dataSource isn't set to the same value and must be empty.There are three important differences between dataSource and dataSourceRef:* While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects.* While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified.* While dataSource only allows local objects, dataSourceRef allows objects in any namespaces.(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
- MarkdownDescription: "dataSourceRef specifies the object from which to populate the volume with data, if a non-emptyvolume is desired. This may be any object from a non-empty API group (noncore object) or a PersistentVolumeClaim object.When this field is specified, volume binding will only succeed if the type ofthe specified object matches some installed volume populator or dynamicprovisioner.This field will replace the functionality of the dataSource field and as suchif both fields are non-empty, they must have the same value. For backwardscompatibility, when namespace isn't specified in dataSourceRef,both fields (dataSource and dataSourceRef) will be set to the samevalue automatically if one of them is empty and the other is non-empty.When namespace is specified in dataSourceRef,dataSource isn't set to the same value and must be empty.There are three important differences between dataSource and dataSourceRef:* While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects.* While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified.* While dataSource only allows local objects, dataSourceRef allows objects in any namespaces.(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
- Attributes: map[string]schema.Attribute{
- "api_group": schema.StringAttribute{
- Description: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
- MarkdownDescription: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "update_strategy": schema.StringAttribute{
+ Description: "Defines the update strategy for the Component.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
+ MarkdownDescription: "Defines the update strategy for the Component.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.OneOf("Serial", "BestEffortParallel", "Parallel"),
+ },
+ },
- "kind": schema.StringAttribute{
- Description: "Kind is the type of resource being referenced",
- MarkdownDescription: "Kind is the type of resource being referenced",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "user_resource_refs": schema.SingleNestedAttribute{
+ Description: "Allows users to specify custom ConfigMaps and Secrets to be mounted as volumesin the Cluster's Pods.This is useful in scenarios where users need to provide additional resources to the Cluster, such as:- Mounting custom scripts or configuration files during Cluster startup.- Mounting Secrets as volumes to provide sensitive information, like S3 AK/SK, to the Cluster.",
+ MarkdownDescription: "Allows users to specify custom ConfigMaps and Secrets to be mounted as volumesin the Cluster's Pods.This is useful in scenarios where users need to provide additional resources to the Cluster, such as:- Mounting custom scripts or configuration files during Cluster startup.- Mounting Secrets as volumes to provide sensitive information, like S3 AK/SK, to the Cluster.",
+ Attributes: map[string]schema.Attribute{
+ "config_map_refs": schema.ListNestedAttribute{
+ Description: "ConfigMapRefs defines the user-defined ConfigMaps.",
+ MarkdownDescription: "ConfigMapRefs defines the user-defined ConfigMaps.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "as_volume_from": schema.ListAttribute{
+ Description: "AsVolumeFrom lists the names of containers in which the volume should be mounted.",
+ MarkdownDescription: "AsVolumeFrom lists the names of containers in which the volume should be mounted.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "name": schema.StringAttribute{
- Description: "Name is the name of resource being referenced",
- MarkdownDescription: "Name is the name of resource being referenced",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "config_map": schema.SingleNestedAttribute{
+ Description: "ConfigMap specifies the ConfigMap to be mounted as a volume.",
+ MarkdownDescription: "ConfigMap specifies the ConfigMap to be mounted as a volume.",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "namespace": schema.StringAttribute{
- Description: "Namespace is the namespace of resource being referencedNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
- MarkdownDescription: "Namespace is the namespace of resource being referencedNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "items": schema.ListNestedAttribute{
+ Description: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "resources": schema.SingleNestedAttribute{
- Description: "resources represents the minimum resources the volume should have.If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirementsthat are lower than previous value but must still be higher than capacity recorded in thestatus field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources",
- MarkdownDescription: "resources represents the minimum resources the volume should have.If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirementsthat are lower than previous value but must still be higher than capacity recorded in thestatus field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources",
- Attributes: map[string]schema.Attribute{
- "claims": schema.ListNestedAttribute{
- Description: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
- MarkdownDescription: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
- MarkdownDescription: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "limits": schema.MapAttribute{
- Description: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- MarkdownDescription: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "requests": schema.MapAttribute{
- Description: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- MarkdownDescription: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "optional": schema.BoolAttribute{
+ Description: "optional specify whether the ConfigMap or its keys must be defined",
+ MarkdownDescription: "optional specify whether the ConfigMap or its keys must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "selector": schema.SingleNestedAttribute{
- Description: "selector is a label query over volumes to consider for binding.",
- MarkdownDescription: "selector is a label query over volumes to consider for binding.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "mount_point": schema.StringAttribute{
+ Description: "MountPoint is the filesystem path where the volume will be mounted.",
+ MarkdownDescription: "MountPoint is the filesystem path where the volume will be mounted.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.LengthAtMost(256),
+ stringvalidator.RegexMatches(regexp.MustCompile(`^/[a-z]([a-z0-9\-]*[a-z0-9])?$`), ""),
+ },
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "Name is the name of the referenced ConfigMap or Secret object. It must conform to DNS label standards.",
+ MarkdownDescription: "Name is the name of the referenced ConfigMap or Secret object. It must conform to DNS label standards.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.LengthAtMost(63),
+ stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z0-9]([a-z0-9\.\-]*[a-z0-9])?$`), ""),
+ },
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "sub_path": schema.StringAttribute{
+ Description: "SubPath specifies a path within the volume from which to mount.",
+ MarkdownDescription: "SubPath specifies a path within the volume from which to mount.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "secret_refs": schema.ListNestedAttribute{
+ Description: "SecretRefs defines the user-defined Secrets.",
+ MarkdownDescription: "SecretRefs defines the user-defined Secrets.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "as_volume_from": schema.ListAttribute{
+ Description: "AsVolumeFrom lists the names of containers in which the volume should be mounted.",
+ MarkdownDescription: "AsVolumeFrom lists the names of containers in which the volume should be mounted.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "storage_class_name": schema.StringAttribute{
- Description: "storageClassName is the name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1",
- MarkdownDescription: "storageClassName is the name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "mount_point": schema.StringAttribute{
+ Description: "MountPoint is the filesystem path where the volume will be mounted.",
+ MarkdownDescription: "MountPoint is the filesystem path where the volume will be mounted.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.LengthAtMost(256),
+ stringvalidator.RegexMatches(regexp.MustCompile(`^/[a-z]([a-z0-9\-]*[a-z0-9])?$`), ""),
+ },
+ },
- "volume_mode": schema.StringAttribute{
- Description: "volumeMode defines what type of volume is required by the claim.Value of Filesystem is implied when not included in claim spec.",
- MarkdownDescription: "volumeMode defines what type of volume is required by the claim.Value of Filesystem is implied when not included in claim spec.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "Name is the name of the referenced ConfigMap or Secret object. It must conform to DNS label standards.",
+ MarkdownDescription: "Name is the name of the referenced ConfigMap or Secret object. It must conform to DNS label standards.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.LengthAtMost(63),
+ stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z0-9]([a-z0-9\.\-]*[a-z0-9])?$`), ""),
+ },
+ },
- "volume_name": schema.StringAttribute{
- Description: "volumeName is the binding reference to the PersistentVolume backing this claim.",
- MarkdownDescription: "volumeName is the binding reference to the PersistentVolume backing this claim.",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "secret": schema.SingleNestedAttribute{
+ Description: "Secret specifies the Secret to be mounted as a volume.",
+ MarkdownDescription: "Secret specifies the Secret to be mounted as a volume.",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- "fc": schema.SingleNestedAttribute{
- Description: "fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.",
- MarkdownDescription: "fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.",
- Attributes: map[string]schema.Attribute{
- "fs_type": schema.StringAttribute{
- Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.TODO: how do we prevent errors in the filesystem from compromising the machine",
- MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.TODO: how do we prevent errors in the filesystem from compromising the machine",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "items": schema.ListNestedAttribute{
+ Description: "items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "lun": schema.Int64Attribute{
- Description: "lun is Optional: FC target lun number",
- MarkdownDescription: "lun is Optional: FC target lun number",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- MarkdownDescription: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- Required: false,
- Optional: true,
- Computed: false,
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "target_ww_ns": schema.ListAttribute{
- Description: "targetWWNs is Optional: FC target worldwide names (WWNs)",
- MarkdownDescription: "targetWWNs is Optional: FC target worldwide names (WWNs)",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "optional": schema.BoolAttribute{
+ Description: "optional field specify whether the Secret or its keys must be defined",
+ MarkdownDescription: "optional field specify whether the Secret or its keys must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "wwids": schema.ListAttribute{
- Description: "wwids Optional: FC volume world wide identifiers (wwids)Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.",
- MarkdownDescription: "wwids Optional: FC volume world wide identifiers (wwids)Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "secret_name": schema.StringAttribute{
+ Description: "secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ MarkdownDescription: "secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "flex_volume": schema.SingleNestedAttribute{
- Description: "flexVolume represents a generic volume resource that isprovisioned/attached using an exec based plugin.",
- MarkdownDescription: "flexVolume represents a generic volume resource that isprovisioned/attached using an exec based plugin.",
- Attributes: map[string]schema.Attribute{
- "driver": schema.StringAttribute{
- Description: "driver is the name of the driver to use for this volume.",
- MarkdownDescription: "driver is the name of the driver to use for this volume.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "fs_type": schema.StringAttribute{
- Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.",
- MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "sub_path": schema.StringAttribute{
+ Description: "SubPath specifies a path within the volume from which to mount.",
+ MarkdownDescription: "SubPath specifies a path within the volume from which to mount.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "options": schema.MapAttribute{
- Description: "options is Optional: this field holds extra command options if any.",
- MarkdownDescription: "options is Optional: this field holds extra command options if any.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "volume_claim_templates": schema.ListNestedAttribute{
+ Description: "Specifies a list of PersistentVolumeClaim templates that represent the storage requirements for the Component.Each template specifies the desired characteristics of a persistent volume, such as storage class,size, and access modes.These templates are used to dynamically provision persistent volumes for the Component.",
+ MarkdownDescription: "Specifies a list of PersistentVolumeClaim templates that represent the storage requirements for the Component.Each template specifies the desired characteristics of a persistent volume, such as storage class,size, and access modes.These templates are used to dynamically provision persistent volumes for the Component.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Refers to the name of a volumeMount defined in either:- 'componentDefinition.spec.runtime.containers[*].volumeMounts'- 'clusterDefinition.spec.componentDefs[*].podSpec.containers[*].volumeMounts' (deprecated)The value of 'name' must match the 'name' field of a volumeMount specified in the corresponding 'volumeMounts' array.",
+ MarkdownDescription: "Refers to the name of a volumeMount defined in either:- 'componentDefinition.spec.runtime.containers[*].volumeMounts'- 'clusterDefinition.spec.componentDefs[*].podSpec.containers[*].volumeMounts' (deprecated)The value of 'name' must match the 'name' field of a volumeMount specified in the corresponding 'volumeMounts' array.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly is Optional: defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- MarkdownDescription: "readOnly is Optional: defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "spec": schema.SingleNestedAttribute{
+ Description: "Defines the desired characteristics of a PersistentVolumeClaim that will be created for the volumewith the mount name specified in the 'name' field.When a Pod is created for this ClusterComponent, a new PVC will be created based on the specificationdefined in the 'spec' field. The PVC will be associated with the volume mount specified by the 'name' field.",
+ MarkdownDescription: "Defines the desired characteristics of a PersistentVolumeClaim that will be created for the volumewith the mount name specified in the 'name' field.When a Pod is created for this ClusterComponent, a new PVC will be created based on the specificationdefined in the 'spec' field. The PVC will be associated with the volume mount specified by the 'name' field.",
+ Attributes: map[string]schema.Attribute{
+ "access_modes": schema.MapAttribute{
+ Description: "Contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1.",
+ MarkdownDescription: "Contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "secret_ref": schema.SingleNestedAttribute{
- Description: "secretRef is Optional: secretRef is reference to the secret object containingsensitive information to pass to the plugin scripts. This may beempty if no secret object is specified. If the secret objectcontains more than one secret, all secrets are passed to the pluginscripts.",
- MarkdownDescription: "secretRef is Optional: secretRef is reference to the secret object containingsensitive information to pass to the plugin scripts. This may beempty if no secret object is specified. If the secret objectcontains more than one secret, all secrets are passed to the pluginscripts.",
+ "resources": schema.SingleNestedAttribute{
+ Description: "Represents the minimum resources the volume should have.If the RecoverVolumeExpansionFailure feature is enabled, users are allowed to specify resource requirements thatare lower than the previous value but must still be higher than the capacity recorded in the status field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources.",
+ MarkdownDescription: "Represents the minimum resources the volume should have.If the RecoverVolumeExpansionFailure feature is enabled, users are allowed to specify resource requirements thatare lower than the previous value but must still be higher than the capacity recorded in the status field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources.",
+ Attributes: map[string]schema.Attribute{
+ "claims": schema.ListNestedAttribute{
+ Description: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ MarkdownDescription: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ NestedObject: schema.NestedAttributeObject{
Attributes: map[string]schema.Attribute{
"name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
+ Description: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ MarkdownDescription: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ Required: true,
+ Optional: false,
Computed: false,
},
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- "flocker": schema.SingleNestedAttribute{
- Description: "flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running",
- MarkdownDescription: "flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running",
- Attributes: map[string]schema.Attribute{
- "dataset_name": schema.StringAttribute{
- Description: "datasetName is Name of the dataset stored as metadata -> name on the dataset for Flockershould be considered as deprecated",
- MarkdownDescription: "datasetName is Name of the dataset stored as metadata -> name on the dataset for Flockershould be considered as deprecated",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "limits": schema.MapAttribute{
+ Description: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "dataset_uuid": schema.StringAttribute{
- Description: "datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset",
- MarkdownDescription: "datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "requests": schema.MapAttribute{
+ Description: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "gce_persistent_disk": schema.SingleNestedAttribute{
- Description: "gcePersistentDisk represents a GCE Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
- MarkdownDescription: "gcePersistentDisk represents a GCE Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
- Attributes: map[string]schema.Attribute{
- "fs_type": schema.StringAttribute{
- Description: "fsType is filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskTODO: how do we prevent errors in the filesystem from compromising the machine",
- MarkdownDescription: "fsType is filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskTODO: how do we prevent errors in the filesystem from compromising the machine",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "partition": schema.Int64Attribute{
- Description: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
- MarkdownDescription: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "storage_class_name": schema.StringAttribute{
+ Description: "The name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1.",
+ MarkdownDescription: "The name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "pd_name": schema.StringAttribute{
- Description: "pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
- MarkdownDescription: "pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "volume_mode": schema.StringAttribute{
+ Description: "Defines what type of volume is required by the claim, either Block or Filesystem.",
+ MarkdownDescription: "Defines what type of volume is required by the claim, either Block or Filesystem.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
- MarkdownDescription: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "volumes": schema.ListNestedAttribute{
+ Description: "List of volumes to override.",
+ MarkdownDescription: "List of volumes to override.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "aws_elastic_block_store": schema.SingleNestedAttribute{
+ Description: "awsElasticBlockStore represents an AWS Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ MarkdownDescription: "awsElasticBlockStore represents an AWS Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstoreTODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstoreTODO: how do we prevent errors in the filesystem from compromising the machine",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "git_repo": schema.SingleNestedAttribute{
- Description: "gitRepo represents a git repository at a particular revision.DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount anEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDirinto the Pod's container.",
- MarkdownDescription: "gitRepo represents a git repository at a particular revision.DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount anEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDirinto the Pod's container.",
- Attributes: map[string]schema.Attribute{
- "directory": schema.StringAttribute{
- Description: "directory is the target directory name.Must not contain or start with '..'. If '.' is supplied, the volume directory will be thegit repository. Otherwise, if specified, the volume will contain the git repository inthe subdirectory with the given name.",
- MarkdownDescription: "directory is the target directory name.Must not contain or start with '..'. If '.' is supplied, the volume directory will be thegit repository. Otherwise, if specified, the volume will contain the git repository inthe subdirectory with the given name.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "partition": schema.Int64Attribute{
+ Description: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).",
+ MarkdownDescription: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "repository": schema.StringAttribute{
- Description: "repository is the URL",
- MarkdownDescription: "repository is the URL",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly value true will force the readOnly setting in VolumeMounts.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ MarkdownDescription: "readOnly value true will force the readOnly setting in VolumeMounts.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "revision": schema.StringAttribute{
- Description: "revision is the commit hash for the specified revision.",
- MarkdownDescription: "revision is the commit hash for the specified revision.",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "volume_id": schema.StringAttribute{
+ Description: "volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ MarkdownDescription: "volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "glusterfs": schema.SingleNestedAttribute{
- Description: "glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/glusterfs/README.md",
- MarkdownDescription: "glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/glusterfs/README.md",
- Attributes: map[string]schema.Attribute{
- "endpoints": schema.StringAttribute{
- Description: "endpoints is the endpoint name that details Glusterfs topology.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
- MarkdownDescription: "endpoints is the endpoint name that details Glusterfs topology.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "azure_disk": schema.SingleNestedAttribute{
+ Description: "azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.",
+ MarkdownDescription: "azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.",
+ Attributes: map[string]schema.Attribute{
+ "caching_mode": schema.StringAttribute{
+ Description: "cachingMode is the Host Caching mode: None, Read Only, Read Write.",
+ MarkdownDescription: "cachingMode is the Host Caching mode: None, Read Only, Read Write.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "path": schema.StringAttribute{
- Description: "path is the Glusterfs volume path.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
- MarkdownDescription: "path is the Glusterfs volume path.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "disk_name": schema.StringAttribute{
+ Description: "diskName is the Name of the data disk in the blob storage",
+ MarkdownDescription: "diskName is the Name of the data disk in the blob storage",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly here will force the Glusterfs volume to be mounted with read-only permissions.Defaults to false.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
- MarkdownDescription: "readOnly here will force the Glusterfs volume to be mounted with read-only permissions.Defaults to false.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "disk_uri": schema.StringAttribute{
+ Description: "diskURI is the URI of data disk in the blob storage",
+ MarkdownDescription: "diskURI is the URI of data disk in the blob storage",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "host_path": schema.SingleNestedAttribute{
- Description: "hostPath represents a pre-existing file or directory on the hostmachine that is directly exposed to the container. This is generallyused for system agents or other privileged things that are allowedto see the host machine. Most containers will NOT need this.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath---TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can notmount host directories as read/write.",
- MarkdownDescription: "hostPath represents a pre-existing file or directory on the hostmachine that is directly exposed to the container. This is generallyused for system agents or other privileged things that are allowedto see the host machine. Most containers will NOT need this.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath---TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can notmount host directories as read/write.",
- Attributes: map[string]schema.Attribute{
- "path": schema.StringAttribute{
- Description: "path of the directory on the host.If the path is a symlink, it will follow the link to the real path.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
- MarkdownDescription: "path of the directory on the host.If the path is a symlink, it will follow the link to the real path.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is Filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fsType is Filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "type": schema.StringAttribute{
- Description: "type for HostPath VolumeDefaults to ''More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
- MarkdownDescription: "type for HostPath VolumeDefaults to ''More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "kind": schema.StringAttribute{
+ Description: "kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared",
+ MarkdownDescription: "kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "iscsi": schema.SingleNestedAttribute{
- Description: "iscsi represents an ISCSI Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://examples.k8s.io/volumes/iscsi/README.md",
- MarkdownDescription: "iscsi represents an ISCSI Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://examples.k8s.io/volumes/iscsi/README.md",
- Attributes: map[string]schema.Attribute{
- "chap_auth_discovery": schema.BoolAttribute{
- Description: "chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication",
- MarkdownDescription: "chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "chap_auth_session": schema.BoolAttribute{
- Description: "chapAuthSession defines whether support iSCSI Session CHAP authentication",
- MarkdownDescription: "chapAuthSession defines whether support iSCSI Session CHAP authentication",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "azure_file": schema.SingleNestedAttribute{
+ Description: "azureFile represents an Azure File Service mount on the host and bind mount to the pod.",
+ MarkdownDescription: "azureFile represents an Azure File Service mount on the host and bind mount to the pod.",
+ Attributes: map[string]schema.Attribute{
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "fs_type": schema.StringAttribute{
- Description: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsiTODO: how do we prevent errors in the filesystem from compromising the machine",
- MarkdownDescription: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsiTODO: how do we prevent errors in the filesystem from compromising the machine",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "secret_name": schema.StringAttribute{
+ Description: "secretName is the name of secret that contains Azure Storage Account Name and Key",
+ MarkdownDescription: "secretName is the name of secret that contains Azure Storage Account Name and Key",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "initiator_name": schema.StringAttribute{
- Description: "initiatorName is the custom iSCSI Initiator Name.If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface: will be created for the connection.",
- MarkdownDescription: "initiatorName is the custom iSCSI Initiator Name.If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface: will be created for the connection.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "share_name": schema.StringAttribute{
+ Description: "shareName is the azure share Name",
+ MarkdownDescription: "shareName is the azure share Name",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "iqn": schema.StringAttribute{
- Description: "iqn is the target iSCSI Qualified Name.",
- MarkdownDescription: "iqn is the target iSCSI Qualified Name.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "cephfs": schema.SingleNestedAttribute{
+ Description: "cephFS represents a Ceph FS mount on the host that shares a pod's lifetime",
+ MarkdownDescription: "cephFS represents a Ceph FS mount on the host that shares a pod's lifetime",
+ Attributes: map[string]schema.Attribute{
+ "monitors": schema.ListAttribute{
+ Description: "monitors is Required: Monitors is a collection of Ceph monitorsMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "monitors is Required: Monitors is a collection of Ceph monitorsMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ ElementType: types.StringType,
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "iscsi_interface": schema.StringAttribute{
- Description: "iscsiInterface is the interface Name that uses an iSCSI transport.Defaults to 'default' (tcp).",
- MarkdownDescription: "iscsiInterface is the interface Name that uses an iSCSI transport.Defaults to 'default' (tcp).",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "path": schema.StringAttribute{
+ Description: "path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /",
+ MarkdownDescription: "path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "lun": schema.Int64Attribute{
- Description: "lun represents iSCSI Target Lun number.",
- MarkdownDescription: "lun represents iSCSI Target Lun number.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "portals": schema.ListAttribute{
- Description: "portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
- MarkdownDescription: "portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "secret_file": schema.StringAttribute{
+ Description: "secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secretMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secretMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "user": schema.StringAttribute{
+ Description: "user is optional: User is the rados user name, default is adminMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "user is optional: User is the rados user name, default is adminMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.",
- MarkdownDescription: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "cinder": schema.SingleNestedAttribute{
+ Description: "cinder represents a cinder volume attached and mounted on kubelets host machine.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ MarkdownDescription: "cinder represents a cinder volume attached and mounted on kubelets host machine.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "secret_ref": schema.SingleNestedAttribute{
- Description: "secretRef is the CHAP Secret for iSCSI target and initiator authentication",
- MarkdownDescription: "secretRef is the CHAP Secret for iSCSI target and initiator authentication",
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "target_portal": schema.StringAttribute{
- Description: "targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
- MarkdownDescription: "targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is optional: points to a secret object containing parameters used to connectto OpenStack.",
+ MarkdownDescription: "secretRef is optional: points to a secret object containing parameters used to connectto OpenStack.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "name": schema.StringAttribute{
- Description: "name of the volume.Must be a DNS_LABEL and unique within the pod.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names",
- MarkdownDescription: "name of the volume.Must be a DNS_LABEL and unique within the pod.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "volume_id": schema.StringAttribute{
+ Description: "volumeID used to identify the volume in cinder.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ MarkdownDescription: "volumeID used to identify the volume in cinder.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "nfs": schema.SingleNestedAttribute{
- Description: "nfs represents an NFS mount on the host that shares a pod's lifetimeMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
- MarkdownDescription: "nfs represents an NFS mount on the host that shares a pod's lifetimeMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ "config_map": schema.SingleNestedAttribute{
+ Description: "configMap represents a configMap that should populate this volume",
+ MarkdownDescription: "configMap represents a configMap that should populate this volume",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "items": schema.ListNestedAttribute{
+ Description: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
Attributes: map[string]schema.Attribute{
- "path": schema.StringAttribute{
- Description: "path that is exported by the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
- MarkdownDescription: "path that is exported by the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
Required: true,
Optional: false,
Computed: false,
},
- "read_only": schema.BoolAttribute{
- Description: "readOnly here will force the NFS export to be mounted with read-only permissions.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
- MarkdownDescription: "readOnly here will force the NFS export to be mounted with read-only permissions.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
Required: false,
Optional: true,
Computed: false,
},
- "server": schema.StringAttribute{
- Description: "server is the hostname or IP address of the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
- MarkdownDescription: "server is the hostname or IP address of the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
Required: true,
Optional: false,
Computed: false,
},
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "persistent_volume_claim": schema.SingleNestedAttribute{
- Description: "persistentVolumeClaimVolumeSource represents a reference to aPersistentVolumeClaim in the same namespace.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
- MarkdownDescription: "persistentVolumeClaimVolumeSource represents a reference to aPersistentVolumeClaim in the same namespace.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
- Attributes: map[string]schema.Attribute{
- "claim_name": schema.StringAttribute{
- Description: "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
- MarkdownDescription: "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly Will force the ReadOnly setting in VolumeMounts.Default false.",
- MarkdownDescription: "readOnly Will force the ReadOnly setting in VolumeMounts.Default false.",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "optional": schema.BoolAttribute{
+ Description: "optional specify whether the ConfigMap or its keys must be defined",
+ MarkdownDescription: "optional specify whether the ConfigMap or its keys must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "photon_persistent_disk": schema.SingleNestedAttribute{
- Description: "photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine",
- MarkdownDescription: "photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine",
- Attributes: map[string]schema.Attribute{
- "fs_type": schema.StringAttribute{
- Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
- MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "csi": schema.SingleNestedAttribute{
+ Description: "csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).",
+ MarkdownDescription: "csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).",
+ Attributes: map[string]schema.Attribute{
+ "driver": schema.StringAttribute{
+ Description: "driver is the name of the CSI driver that handles this volume.Consult with your admin for the correct name as registered in the cluster.",
+ MarkdownDescription: "driver is the name of the CSI driver that handles this volume.Consult with your admin for the correct name as registered in the cluster.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "pd_id": schema.StringAttribute{
- Description: "pdID is the ID that identifies Photon Controller persistent disk",
- MarkdownDescription: "pdID is the ID that identifies Photon Controller persistent disk",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "fs_type": schema.StringAttribute{
+ Description: "fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'.If not provided, the empty value is passed to the associated CSI driverwhich will determine the default filesystem to apply.",
+ MarkdownDescription: "fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'.If not provided, the empty value is passed to the associated CSI driverwhich will determine the default filesystem to apply.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "node_publish_secret_ref": schema.SingleNestedAttribute{
+ Description: "nodePublishSecretRef is a reference to the secret object containingsensitive information to pass to the CSI driver to complete the CSINodePublishVolume and NodeUnpublishVolume calls.This field is optional, and may be empty if no secret is required. If thesecret object contains more than one secret, all secret references are passed.",
+ MarkdownDescription: "nodePublishSecretRef is a reference to the secret object containingsensitive information to pass to the CSI driver to complete the CSINodePublishVolume and NodeUnpublishVolume calls.This field is optional, and may be empty if no secret is required. If thesecret object contains more than one secret, all secret references are passed.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "portworx_volume": schema.SingleNestedAttribute{
- Description: "portworxVolume represents a portworx volume attached and mounted on kubelets host machine",
- MarkdownDescription: "portworxVolume represents a portworx volume attached and mounted on kubelets host machine",
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly specifies a read-only configuration for the volume.Defaults to false (read/write).",
+ MarkdownDescription: "readOnly specifies a read-only configuration for the volume.Defaults to false (read/write).",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_attributes": schema.MapAttribute{
+ Description: "volumeAttributes stores driver-specific properties that are passed to the CSIdriver. Consult your driver's documentation for supported values.",
+ MarkdownDescription: "volumeAttributes stores driver-specific properties that are passed to the CSIdriver. Consult your driver's documentation for supported values.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "downward_api": schema.SingleNestedAttribute{
+ Description: "downwardAPI represents downward API about the pod that should populate this volume",
+ MarkdownDescription: "downwardAPI represents downward API about the pod that should populate this volume",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "Optional: mode bits to use on created files by default. Must be aOptional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "Optional: mode bits to use on created files by default. Must be aOptional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "items": schema.ListNestedAttribute{
+ Description: "Items is a list of downward API volume file",
+ MarkdownDescription: "Items is a list of downward API volume file",
+ NestedObject: schema.NestedAttributeObject{
Attributes: map[string]schema.Attribute{
- "fs_type": schema.StringAttribute{
- Description: "fSType represents the filesystem type to mountMust be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.",
- MarkdownDescription: "fSType represents the filesystem type to mountMust be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.",
- Required: false,
- Optional: true,
- Computed: false,
+ "field_ref": schema.SingleNestedAttribute{
+ Description: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
+ MarkdownDescription: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
+ Attributes: map[string]schema.Attribute{
+ "api_version": schema.StringAttribute{
+ Description: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ MarkdownDescription: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "field_path": schema.StringAttribute{
+ Description: "Path of the field to select in the specified API version.",
+ MarkdownDescription: "Path of the field to select in the specified API version.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- "read_only": schema.BoolAttribute{
- Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ "mode": schema.Int64Attribute{
+ Description: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
Required: false,
Optional: true,
Computed: false,
},
- "volume_id": schema.StringAttribute{
- Description: "volumeID uniquely identifies a Portworx volume",
- MarkdownDescription: "volumeID uniquely identifies a Portworx volume",
+ "path": schema.StringAttribute{
+ Description: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
+ MarkdownDescription: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
Required: true,
Optional: false,
Computed: false,
},
+
+ "resource_field_ref": schema.SingleNestedAttribute{
+ Description: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
+ MarkdownDescription: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
+ Attributes: map[string]schema.Attribute{
+ "container_name": schema.StringAttribute{
+ Description: "Container name: required for volumes, optional for env vars",
+ MarkdownDescription: "Container name: required for volumes, optional for env vars",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "divisor": schema.StringAttribute{
+ Description: "Specifies the output format of the exposed resources, defaults to '1'",
+ MarkdownDescription: "Specifies the output format of the exposed resources, defaults to '1'",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "resource": schema.StringAttribute{
+ Description: "Required: resource to select",
+ MarkdownDescription: "Required: resource to select",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "projected": schema.SingleNestedAttribute{
- Description: "projected items for all in one resources secrets, configmaps, and downward API",
- MarkdownDescription: "projected items for all in one resources secrets, configmaps, and downward API",
- Attributes: map[string]schema.Attribute{
- "default_mode": schema.Int64Attribute{
- Description: "defaultMode are the mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "defaultMode are the mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "empty_dir": schema.SingleNestedAttribute{
+ Description: "emptyDir represents a temporary directory that shares a pod's lifetime.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ MarkdownDescription: "emptyDir represents a temporary directory that shares a pod's lifetime.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ Attributes: map[string]schema.Attribute{
+ "medium": schema.StringAttribute{
+ Description: "medium represents what type of storage medium should back this directory.The default is '' which means to use the node's default medium.Must be an empty string (default) or Memory.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ MarkdownDescription: "medium represents what type of storage medium should back this directory.The default is '' which means to use the node's default medium.Must be an empty string (default) or Memory.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "sources": schema.ListNestedAttribute{
- Description: "sources is the list of volume projections",
- MarkdownDescription: "sources is the list of volume projections",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "config_map": schema.SingleNestedAttribute{
- Description: "configMap information about the configMap data to project",
- MarkdownDescription: "configMap information about the configMap data to project",
- Attributes: map[string]schema.Attribute{
- "items": schema.ListNestedAttribute{
- Description: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the key to project.",
- MarkdownDescription: "key is the key to project.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "size_limit": schema.StringAttribute{
+ Description: "sizeLimit is the total amount of local storage required for this EmptyDir volume.The size limit is also applicable for memory medium.The maximum usage on memory medium EmptyDir would be the minimum value betweenthe SizeLimit specified here and the sum of memory limits of all containers in a pod.The default is nil which means that the limit is undefined.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ MarkdownDescription: "sizeLimit is the total amount of local storage required for this EmptyDir volume.The size limit is also applicable for memory medium.The maximum usage on memory medium EmptyDir would be the minimum value betweenthe SizeLimit specified here and the sum of memory limits of all containers in a pod.The default is nil which means that the limit is undefined.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "mode": schema.Int64Attribute{
- Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "ephemeral": schema.SingleNestedAttribute{
+ Description: "ephemeral represents a volume that is handled by a cluster storage driver.The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,and deleted when the pod is removed.Use this if:a) the volume is only needed while the pod runs,b) features of normal volumes like restoring from snapshot or capacity tracking are needed,c) the storage driver is specified through a storage class, andd) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim).Use PersistentVolumeClaim or one of the vendor-specificAPIs for volumes that persist for longer than the lifecycleof an individual pod.Use CSI for light-weight local ephemeral volumes if the CSI driver is meant tobe used that way - see the documentation of the driver formore information.A pod can use both types of ephemeral volumes andpersistent volumes at the same time.",
+ MarkdownDescription: "ephemeral represents a volume that is handled by a cluster storage driver.The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,and deleted when the pod is removed.Use this if:a) the volume is only needed while the pod runs,b) features of normal volumes like restoring from snapshot or capacity tracking are needed,c) the storage driver is specified through a storage class, andd) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim).Use PersistentVolumeClaim or one of the vendor-specificAPIs for volumes that persist for longer than the lifecycleof an individual pod.Use CSI for light-weight local ephemeral volumes if the CSI driver is meant tobe used that way - see the documentation of the driver formore information.A pod can use both types of ephemeral volumes andpersistent volumes at the same time.",
+ Attributes: map[string]schema.Attribute{
+ "volume_claim_template": schema.SingleNestedAttribute{
+ Description: "Will be used to create a stand-alone PVC to provision the volume.The pod in which this EphemeralVolumeSource is embedded will be theowner of the PVC, i.e. the PVC will be deleted together with thepod. The name of the PVC will be '-' where'' is the name from the 'PodSpec.Volumes' arrayentry. Pod validation will reject the pod if the concatenated nameis not valid for a PVC (for example, too long).An existing PVC with that name that is not owned by the podwill *not* be used for the pod to avoid using an unrelatedvolume by mistake. Starting the pod is then blocked untilthe unrelated PVC is removed. If such a pre-created PVC ismeant to be used by the pod, the PVC has to updated with anowner reference to the pod once the pod exists. Normallythis should not be necessary, but it may be useful whenmanually reconstructing a broken cluster.This field is read-only and no changes will be made by Kubernetesto the PVC after it has been created.Required, must not be nil.",
+ MarkdownDescription: "Will be used to create a stand-alone PVC to provision the volume.The pod in which this EphemeralVolumeSource is embedded will be theowner of the PVC, i.e. the PVC will be deleted together with thepod. The name of the PVC will be '-' where'' is the name from the 'PodSpec.Volumes' arrayentry. Pod validation will reject the pod if the concatenated nameis not valid for a PVC (for example, too long).An existing PVC with that name that is not owned by the podwill *not* be used for the pod to avoid using an unrelatedvolume by mistake. Starting the pod is then blocked untilthe unrelated PVC is removed. If such a pre-created PVC ismeant to be used by the pod, the PVC has to updated with anowner reference to the pod once the pod exists. Normallythis should not be necessary, but it may be useful whenmanually reconstructing a broken cluster.This field is read-only and no changes will be made by Kubernetesto the PVC after it has been created.Required, must not be nil.",
+ Attributes: map[string]schema.Attribute{
+ "metadata": schema.SingleNestedAttribute{
+ Description: "May contain labels and annotations that will be copied into the PVCwhen creating it. No other fields are allowed and will be rejected duringvalidation.",
+ MarkdownDescription: "May contain labels and annotations that will be copied into the PVCwhen creating it. No other fields are allowed and will be rejected duringvalidation.",
+ Attributes: map[string]schema.Attribute{
+ "annotations": schema.MapAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "path": schema.StringAttribute{
- Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "finalizers": schema.ListAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "labels": schema.MapAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "optional": schema.BoolAttribute{
- Description: "optional specify whether the ConfigMap or its keys must be defined",
- MarkdownDescription: "optional specify whether the ConfigMap or its keys must be defined",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ "name": schema.StringAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "namespace": schema.StringAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "spec": schema.SingleNestedAttribute{
+ Description: "The specification for the PersistentVolumeClaim. The entire content iscopied unchanged into the PVC that gets created from thistemplate. The same fields as in a PersistentVolumeClaimare also valid here.",
+ MarkdownDescription: "The specification for the PersistentVolumeClaim. The entire content iscopied unchanged into the PVC that gets created from thistemplate. The same fields as in a PersistentVolumeClaimare also valid here.",
+ Attributes: map[string]schema.Attribute{
+ "access_modes": schema.ListAttribute{
+ Description: "accessModes contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1",
+ MarkdownDescription: "accessModes contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "data_source": schema.SingleNestedAttribute{
+ Description: "dataSource field can be used to specify either:* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)* An existing PVC (PersistentVolumeClaim)If the provisioner or an external controller can support the specified data source,it will create a new volume based on the contents of the specified data source.When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.If the namespace is specified, then dataSourceRef will not be copied to dataSource.",
+ MarkdownDescription: "dataSource field can be used to specify either:* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)* An existing PVC (PersistentVolumeClaim)If the provisioner or an external controller can support the specified data source,it will create a new volume based on the contents of the specified data source.When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.If the namespace is specified, then dataSourceRef will not be copied to dataSource.",
+ Attributes: map[string]schema.Attribute{
+ "api_group": schema.StringAttribute{
+ Description: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
+ MarkdownDescription: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- "downward_api": schema.SingleNestedAttribute{
- Description: "downwardAPI information about the downwardAPI data to project",
- MarkdownDescription: "downwardAPI information about the downwardAPI data to project",
- Attributes: map[string]schema.Attribute{
- "items": schema.ListNestedAttribute{
- Description: "Items is a list of DownwardAPIVolume file",
- MarkdownDescription: "Items is a list of DownwardAPIVolume file",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "field_ref": schema.SingleNestedAttribute{
- Description: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
- MarkdownDescription: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
- Attributes: map[string]schema.Attribute{
- "api_version": schema.StringAttribute{
- Description: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
- MarkdownDescription: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "kind": schema.StringAttribute{
+ Description: "Kind is the type of resource being referenced",
+ MarkdownDescription: "Kind is the type of resource being referenced",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "field_path": schema.StringAttribute{
- Description: "Path of the field to select in the specified API version.",
- MarkdownDescription: "Path of the field to select in the specified API version.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "Name is the name of resource being referenced",
+ MarkdownDescription: "Name is the name of resource being referenced",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "mode": schema.Int64Attribute{
- Description: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "data_source_ref": schema.SingleNestedAttribute{
+ Description: "dataSourceRef specifies the object from which to populate the volume with data, if a non-emptyvolume is desired. This may be any object from a non-empty API group (noncore object) or a PersistentVolumeClaim object.When this field is specified, volume binding will only succeed if the type ofthe specified object matches some installed volume populator or dynamicprovisioner.This field will replace the functionality of the dataSource field and as suchif both fields are non-empty, they must have the same value. For backwardscompatibility, when namespace isn't specified in dataSourceRef,both fields (dataSource and dataSourceRef) will be set to the samevalue automatically if one of them is empty and the other is non-empty.When namespace is specified in dataSourceRef,dataSource isn't set to the same value and must be empty.There are three important differences between dataSource and dataSourceRef:* While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects.* While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified.* While dataSource only allows local objects, dataSourceRef allows objects in any namespaces.(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
+ MarkdownDescription: "dataSourceRef specifies the object from which to populate the volume with data, if a non-emptyvolume is desired. This may be any object from a non-empty API group (noncore object) or a PersistentVolumeClaim object.When this field is specified, volume binding will only succeed if the type ofthe specified object matches some installed volume populator or dynamicprovisioner.This field will replace the functionality of the dataSource field and as suchif both fields are non-empty, they must have the same value. For backwardscompatibility, when namespace isn't specified in dataSourceRef,both fields (dataSource and dataSourceRef) will be set to the samevalue automatically if one of them is empty and the other is non-empty.When namespace is specified in dataSourceRef,dataSource isn't set to the same value and must be empty.There are three important differences between dataSource and dataSourceRef:* While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects.* While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified.* While dataSource only allows local objects, dataSourceRef allows objects in any namespaces.(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
+ Attributes: map[string]schema.Attribute{
+ "api_group": schema.StringAttribute{
+ Description: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
+ MarkdownDescription: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "path": schema.StringAttribute{
- Description: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
- MarkdownDescription: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "kind": schema.StringAttribute{
+ Description: "Kind is the type of resource being referenced",
+ MarkdownDescription: "Kind is the type of resource being referenced",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "resource_field_ref": schema.SingleNestedAttribute{
- Description: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
- MarkdownDescription: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
- Attributes: map[string]schema.Attribute{
- "container_name": schema.StringAttribute{
- Description: "Container name: required for volumes, optional for env vars",
- MarkdownDescription: "Container name: required for volumes, optional for env vars",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "Name is the name of resource being referenced",
+ MarkdownDescription: "Name is the name of resource being referenced",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "divisor": schema.StringAttribute{
- Description: "Specifies the output format of the exposed resources, defaults to '1'",
- MarkdownDescription: "Specifies the output format of the exposed resources, defaults to '1'",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "namespace": schema.StringAttribute{
+ Description: "Namespace is the namespace of resource being referencedNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
+ MarkdownDescription: "Namespace is the namespace of resource being referencedNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "resource": schema.StringAttribute{
- Description: "Required: resource to select",
- MarkdownDescription: "Required: resource to select",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
+ "resources": schema.SingleNestedAttribute{
+ Description: "resources represents the minimum resources the volume should have.If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirementsthat are lower than previous value but must still be higher than capacity recorded in thestatus field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources",
+ MarkdownDescription: "resources represents the minimum resources the volume should have.If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirementsthat are lower than previous value but must still be higher than capacity recorded in thestatus field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources",
+ Attributes: map[string]schema.Attribute{
+ "claims": schema.ListNestedAttribute{
+ Description: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ MarkdownDescription: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ MarkdownDescription: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
},
Required: false,
@@ -5151,59 +9023,62 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "secret": schema.SingleNestedAttribute{
- Description: "secret information about the secret data to project",
- MarkdownDescription: "secret information about the secret data to project",
- Attributes: map[string]schema.Attribute{
- "items": schema.ListNestedAttribute{
- Description: "items if unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the key to project.",
- MarkdownDescription: "key is the key to project.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "limits": schema.MapAttribute{
+ Description: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "mode": schema.Int64Attribute{
- Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "requests": schema.MapAttribute{
+ Description: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "path": schema.StringAttribute{
- Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
+ "selector": schema.SingleNestedAttribute{
+ Description: "selector is a label query over volumes to consider for binding.",
+ MarkdownDescription: "selector is a label query over volumes to consider for binding.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "optional": schema.BoolAttribute{
- Description: "optional field specify whether the Secret or its key must be defined",
- MarkdownDescription: "optional field specify whether the Secret or its key must be defined",
- Required: false,
- Optional: true,
- Computed: false,
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
},
Required: false,
@@ -5211,2339 +9086,2321 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "service_account_token": schema.SingleNestedAttribute{
- Description: "serviceAccountToken is information about the serviceAccountToken data to project",
- MarkdownDescription: "serviceAccountToken is information about the serviceAccountToken data to project",
- Attributes: map[string]schema.Attribute{
- "audience": schema.StringAttribute{
- Description: "audience is the intended audience of the token. A recipient of a tokenmust identify itself with an identifier specified in the audience of thetoken, and otherwise should reject the token. The audience defaults to theidentifier of the apiserver.",
- MarkdownDescription: "audience is the intended audience of the token. A recipient of a tokenmust identify itself with an identifier specified in the audience of thetoken, and otherwise should reject the token. The audience defaults to theidentifier of the apiserver.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "expiration_seconds": schema.Int64Attribute{
- Description: "expirationSeconds is the requested duration of validity of the serviceaccount token. As the token approaches expiration, the kubelet volumeplugin will proactively rotate the service account token. The kubelet willstart trying to rotate the token if the token is older than 80 percent ofits time to live or if the token is older than 24 hours.Defaults to 1 hourand must be at least 10 minutes.",
- MarkdownDescription: "expirationSeconds is the requested duration of validity of the serviceaccount token. As the token approaches expiration, the kubelet volumeplugin will proactively rotate the service account token. The kubelet willstart trying to rotate the token if the token is older than 80 percent ofits time to live or if the token is older than 24 hours.Defaults to 1 hourand must be at least 10 minutes.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "path": schema.StringAttribute{
- Description: "path is the path relative to the mount point of the file to project thetoken into.",
- MarkdownDescription: "path is the path relative to the mount point of the file to project thetoken into.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
},
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "quobyte": schema.SingleNestedAttribute{
- Description: "quobyte represents a Quobyte mount on the host that shares a pod's lifetime",
- MarkdownDescription: "quobyte represents a Quobyte mount on the host that shares a pod's lifetime",
- Attributes: map[string]schema.Attribute{
- "group": schema.StringAttribute{
- Description: "group to map volume access toDefault is no group",
- MarkdownDescription: "group to map volume access toDefault is no group",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "read_only": schema.BoolAttribute{
- Description: "readOnly here will force the Quobyte volume to be mounted with read-only permissions.Defaults to false.",
- MarkdownDescription: "readOnly here will force the Quobyte volume to be mounted with read-only permissions.Defaults to false.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "registry": schema.StringAttribute{
- Description: "registry represents a single or multiple Quobyte Registry servicesspecified as a string as host:port pair (multiple entries are separated with commas)which acts as the central registry for volumes",
- MarkdownDescription: "registry represents a single or multiple Quobyte Registry servicesspecified as a string as host:port pair (multiple entries are separated with commas)which acts as the central registry for volumes",
- Required: true,
- Optional: false,
- Computed: false,
- },
- "tenant": schema.StringAttribute{
- Description: "tenant owning the given Quobyte volume in the BackendUsed with dynamically provisioned Quobyte volumes, value is set by the plugin",
- MarkdownDescription: "tenant owning the given Quobyte volume in the BackendUsed with dynamically provisioned Quobyte volumes, value is set by the plugin",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "storage_class_name": schema.StringAttribute{
+ Description: "storageClassName is the name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1",
+ MarkdownDescription: "storageClassName is the name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "user": schema.StringAttribute{
- Description: "user to map volume access toDefaults to serivceaccount user",
- MarkdownDescription: "user to map volume access toDefaults to serivceaccount user",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "volume_mode": schema.StringAttribute{
+ Description: "volumeMode defines what type of volume is required by the claim.Value of Filesystem is implied when not included in claim spec.",
+ MarkdownDescription: "volumeMode defines what type of volume is required by the claim.Value of Filesystem is implied when not included in claim spec.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "volume": schema.StringAttribute{
- Description: "volume is a string that references an already created Quobyte volume by name.",
- MarkdownDescription: "volume is a string that references an already created Quobyte volume by name.",
- Required: true,
- Optional: false,
- Computed: false,
+ "volume_name": schema.StringAttribute{
+ Description: "volumeName is the binding reference to the PersistentVolume backing this claim.",
+ MarkdownDescription: "volumeName is the binding reference to the PersistentVolume backing this claim.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "rbd": schema.SingleNestedAttribute{
- Description: "rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/rbd/README.md",
- MarkdownDescription: "rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/rbd/README.md",
- Attributes: map[string]schema.Attribute{
- "fs_type": schema.StringAttribute{
- Description: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#rbdTODO: how do we prevent errors in the filesystem from compromising the machine",
- MarkdownDescription: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#rbdTODO: how do we prevent errors in the filesystem from compromising the machine",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "fc": schema.SingleNestedAttribute{
+ Description: "fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.",
+ MarkdownDescription: "fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.TODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.TODO: how do we prevent errors in the filesystem from compromising the machine",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "image": schema.StringAttribute{
- Description: "image is the rados image name.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- MarkdownDescription: "image is the rados image name.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "lun": schema.Int64Attribute{
+ Description: "lun is Optional: FC target lun number",
+ MarkdownDescription: "lun is Optional: FC target lun number",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "keyring": schema.StringAttribute{
- Description: "keyring is the path to key ring for RBDUser.Default is /etc/ceph/keyring.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- MarkdownDescription: "keyring is the path to key ring for RBDUser.Default is /etc/ceph/keyring.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "monitors": schema.ListAttribute{
- Description: "monitors is a collection of Ceph monitors.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- MarkdownDescription: "monitors is a collection of Ceph monitors.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- ElementType: types.StringType,
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "target_ww_ns": schema.ListAttribute{
+ Description: "targetWWNs is Optional: FC target worldwide names (WWNs)",
+ MarkdownDescription: "targetWWNs is Optional: FC target worldwide names (WWNs)",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "pool": schema.StringAttribute{
- Description: "pool is the rados pool name.Default is rbd.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- MarkdownDescription: "pool is the rados pool name.Default is rbd.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "wwids": schema.ListAttribute{
+ Description: "wwids Optional: FC volume world wide identifiers (wwids)Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.",
+ MarkdownDescription: "wwids Optional: FC volume world wide identifiers (wwids)Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- MarkdownDescription: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "flex_volume": schema.SingleNestedAttribute{
+ Description: "flexVolume represents a generic volume resource that isprovisioned/attached using an exec based plugin.",
+ MarkdownDescription: "flexVolume represents a generic volume resource that isprovisioned/attached using an exec based plugin.",
+ Attributes: map[string]schema.Attribute{
+ "driver": schema.StringAttribute{
+ Description: "driver is the name of the driver to use for this volume.",
+ MarkdownDescription: "driver is the name of the driver to use for this volume.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "secret_ref": schema.SingleNestedAttribute{
- Description: "secretRef is name of the authentication secret for RBDUser. If providedoverrides keyring.Default is nil.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- MarkdownDescription: "secretRef is name of the authentication secret for RBDUser. If providedoverrides keyring.Default is nil.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "user": schema.StringAttribute{
- Description: "user is the rados user name.Default is admin.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- MarkdownDescription: "user is the rados user name.Default is admin.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "options": schema.MapAttribute{
+ Description: "options is Optional: this field holds extra command options if any.",
+ MarkdownDescription: "options is Optional: this field holds extra command options if any.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "scale_io": schema.SingleNestedAttribute{
- Description: "scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.",
- MarkdownDescription: "scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.",
- Attributes: map[string]schema.Attribute{
- "fs_type": schema.StringAttribute{
- Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'.Default is 'xfs'.",
- MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'.Default is 'xfs'.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly is Optional: defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly is Optional: defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "gateway": schema.StringAttribute{
- Description: "gateway is the host address of the ScaleIO API Gateway.",
- MarkdownDescription: "gateway is the host address of the ScaleIO API Gateway.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is Optional: secretRef is reference to the secret object containingsensitive information to pass to the plugin scripts. This may beempty if no secret object is specified. If the secret objectcontains more than one secret, all secrets are passed to the pluginscripts.",
+ MarkdownDescription: "secretRef is Optional: secretRef is reference to the secret object containingsensitive information to pass to the plugin scripts. This may beempty if no secret object is specified. If the secret objectcontains more than one secret, all secrets are passed to the pluginscripts.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "protection_domain": schema.StringAttribute{
- Description: "protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.",
- MarkdownDescription: "protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "flocker": schema.SingleNestedAttribute{
+ Description: "flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running",
+ MarkdownDescription: "flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running",
+ Attributes: map[string]schema.Attribute{
+ "dataset_name": schema.StringAttribute{
+ Description: "datasetName is Name of the dataset stored as metadata -> name on the dataset for Flockershould be considered as deprecated",
+ MarkdownDescription: "datasetName is Name of the dataset stored as metadata -> name on the dataset for Flockershould be considered as deprecated",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- MarkdownDescription: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "dataset_uuid": schema.StringAttribute{
+ Description: "datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset",
+ MarkdownDescription: "datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "secret_ref": schema.SingleNestedAttribute{
- Description: "secretRef references to the secret for ScaleIO user and othersensitive information. If this is not provided, Login operation will fail.",
- MarkdownDescription: "secretRef references to the secret for ScaleIO user and othersensitive information. If this is not provided, Login operation will fail.",
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "gce_persistent_disk": schema.SingleNestedAttribute{
+ Description: "gcePersistentDisk represents a GCE Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ MarkdownDescription: "gcePersistentDisk represents a GCE Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskTODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskTODO: how do we prevent errors in the filesystem from compromising the machine",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "ssl_enabled": schema.BoolAttribute{
- Description: "sslEnabled Flag enable/disable SSL communication with Gateway, default false",
- MarkdownDescription: "sslEnabled Flag enable/disable SSL communication with Gateway, default false",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "partition": schema.Int64Attribute{
+ Description: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ MarkdownDescription: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "storage_mode": schema.StringAttribute{
- Description: "storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.Default is ThinProvisioned.",
- MarkdownDescription: "storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.Default is ThinProvisioned.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "pd_name": schema.StringAttribute{
+ Description: "pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ MarkdownDescription: "pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "storage_pool": schema.StringAttribute{
- Description: "storagePool is the ScaleIO Storage Pool associated with the protection domain.",
- MarkdownDescription: "storagePool is the ScaleIO Storage Pool associated with the protection domain.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ MarkdownDescription: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "system": schema.StringAttribute{
- Description: "system is the name of the storage system as configured in ScaleIO.",
- MarkdownDescription: "system is the name of the storage system as configured in ScaleIO.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "git_repo": schema.SingleNestedAttribute{
+ Description: "gitRepo represents a git repository at a particular revision.DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount anEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDirinto the Pod's container.",
+ MarkdownDescription: "gitRepo represents a git repository at a particular revision.DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount anEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDirinto the Pod's container.",
+ Attributes: map[string]schema.Attribute{
+ "directory": schema.StringAttribute{
+ Description: "directory is the target directory name.Must not contain or start with '..'. If '.' is supplied, the volume directory will be thegit repository. Otherwise, if specified, the volume will contain the git repository inthe subdirectory with the given name.",
+ MarkdownDescription: "directory is the target directory name.Must not contain or start with '..'. If '.' is supplied, the volume directory will be thegit repository. Otherwise, if specified, the volume will contain the git repository inthe subdirectory with the given name.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "volume_name": schema.StringAttribute{
- Description: "volumeName is the name of a volume already created in the ScaleIO systemthat is associated with this volume source.",
- MarkdownDescription: "volumeName is the name of a volume already created in the ScaleIO systemthat is associated with this volume source.",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "repository": schema.StringAttribute{
+ Description: "repository is the URL",
+ MarkdownDescription: "repository is the URL",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "secret": schema.SingleNestedAttribute{
- Description: "secret represents a secret that should populate this volume.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
- MarkdownDescription: "secret represents a secret that should populate this volume.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
- Attributes: map[string]schema.Attribute{
- "default_mode": schema.Int64Attribute{
- Description: "defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "revision": schema.StringAttribute{
+ Description: "revision is the commit hash for the specified revision.",
+ MarkdownDescription: "revision is the commit hash for the specified revision.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "items": schema.ListNestedAttribute{
- Description: "items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- MarkdownDescription: "items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the key to project.",
- MarkdownDescription: "key is the key to project.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "glusterfs": schema.SingleNestedAttribute{
+ Description: "glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/glusterfs/README.md",
+ MarkdownDescription: "glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/glusterfs/README.md",
+ Attributes: map[string]schema.Attribute{
+ "endpoints": schema.StringAttribute{
+ Description: "endpoints is the endpoint name that details Glusterfs topology.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ MarkdownDescription: "endpoints is the endpoint name that details Glusterfs topology.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "mode": schema.Int64Attribute{
- Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "path": schema.StringAttribute{
+ Description: "path is the Glusterfs volume path.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ MarkdownDescription: "path is the Glusterfs volume path.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "path": schema.StringAttribute{
- Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the Glusterfs volume to be mounted with read-only permissions.Defaults to false.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ MarkdownDescription: "readOnly here will force the Glusterfs volume to be mounted with read-only permissions.Defaults to false.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "optional": schema.BoolAttribute{
- Description: "optional field specify whether the Secret or its keys must be defined",
- MarkdownDescription: "optional field specify whether the Secret or its keys must be defined",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "host_path": schema.SingleNestedAttribute{
+ Description: "hostPath represents a pre-existing file or directory on the hostmachine that is directly exposed to the container. This is generallyused for system agents or other privileged things that are allowedto see the host machine. Most containers will NOT need this.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath---TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can notmount host directories as read/write.",
+ MarkdownDescription: "hostPath represents a pre-existing file or directory on the hostmachine that is directly exposed to the container. This is generallyused for system agents or other privileged things that are allowedto see the host machine. Most containers will NOT need this.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath---TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can notmount host directories as read/write.",
+ Attributes: map[string]schema.Attribute{
+ "path": schema.StringAttribute{
+ Description: "path of the directory on the host.If the path is a symlink, it will follow the link to the real path.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
+ MarkdownDescription: "path of the directory on the host.If the path is a symlink, it will follow the link to the real path.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "secret_name": schema.StringAttribute{
- Description: "secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
- MarkdownDescription: "secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "type": schema.StringAttribute{
+ Description: "type for HostPath VolumeDefaults to ''More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
+ MarkdownDescription: "type for HostPath VolumeDefaults to ''More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "storageos": schema.SingleNestedAttribute{
- Description: "storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.",
- MarkdownDescription: "storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.",
- Attributes: map[string]schema.Attribute{
- "fs_type": schema.StringAttribute{
- Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
- MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "iscsi": schema.SingleNestedAttribute{
+ Description: "iscsi represents an ISCSI Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://examples.k8s.io/volumes/iscsi/README.md",
+ MarkdownDescription: "iscsi represents an ISCSI Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://examples.k8s.io/volumes/iscsi/README.md",
+ Attributes: map[string]schema.Attribute{
+ "chap_auth_discovery": schema.BoolAttribute{
+ Description: "chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication",
+ MarkdownDescription: "chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "chap_auth_session": schema.BoolAttribute{
+ Description: "chapAuthSession defines whether support iSCSI Session CHAP authentication",
+ MarkdownDescription: "chapAuthSession defines whether support iSCSI Session CHAP authentication",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "secret_ref": schema.SingleNestedAttribute{
- Description: "secretRef specifies the secret to use for obtaining the StorageOS APIcredentials. If not specified, default values will be attempted.",
- MarkdownDescription: "secretRef specifies the secret to use for obtaining the StorageOS APIcredentials. If not specified, default values will be attempted.",
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsiTODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsiTODO: how do we prevent errors in the filesystem from compromising the machine",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "volume_name": schema.StringAttribute{
- Description: "volumeName is the human-readable name of the StorageOS volume. Volumenames are only unique within a namespace.",
- MarkdownDescription: "volumeName is the human-readable name of the StorageOS volume. Volumenames are only unique within a namespace.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "initiator_name": schema.StringAttribute{
+ Description: "initiatorName is the custom iSCSI Initiator Name.If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface: will be created for the connection.",
+ MarkdownDescription: "initiatorName is the custom iSCSI Initiator Name.If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface: will be created for the connection.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "volume_namespace": schema.StringAttribute{
- Description: "volumeNamespace specifies the scope of the volume within StorageOS. If nonamespace is specified then the Pod's namespace will be used. This allows theKubernetes name scoping to be mirrored within StorageOS for tighter integration.Set VolumeName to any name to override the default behaviour.Set to 'default' if you are not using namespaces within StorageOS.Namespaces that do not pre-exist within StorageOS will be created.",
- MarkdownDescription: "volumeNamespace specifies the scope of the volume within StorageOS. If nonamespace is specified then the Pod's namespace will be used. This allows theKubernetes name scoping to be mirrored within StorageOS for tighter integration.Set VolumeName to any name to override the default behaviour.Set to 'default' if you are not using namespaces within StorageOS.Namespaces that do not pre-exist within StorageOS will be created.",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "iqn": schema.StringAttribute{
+ Description: "iqn is the target iSCSI Qualified Name.",
+ MarkdownDescription: "iqn is the target iSCSI Qualified Name.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "vsphere_volume": schema.SingleNestedAttribute{
- Description: "vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine",
- MarkdownDescription: "vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine",
- Attributes: map[string]schema.Attribute{
- "fs_type": schema.StringAttribute{
- Description: "fsType is filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
- MarkdownDescription: "fsType is filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "iscsi_interface": schema.StringAttribute{
+ Description: "iscsiInterface is the interface Name that uses an iSCSI transport.Defaults to 'default' (tcp).",
+ MarkdownDescription: "iscsiInterface is the interface Name that uses an iSCSI transport.Defaults to 'default' (tcp).",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "storage_policy_id": schema.StringAttribute{
- Description: "storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.",
- MarkdownDescription: "storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "lun": schema.Int64Attribute{
+ Description: "lun represents iSCSI Target Lun number.",
+ MarkdownDescription: "lun represents iSCSI Target Lun number.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "storage_policy_name": schema.StringAttribute{
- Description: "storagePolicyName is the storage Policy Based Management (SPBM) profile name.",
- MarkdownDescription: "storagePolicyName is the storage Policy Based Management (SPBM) profile name.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "portals": schema.ListAttribute{
+ Description: "portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
+ MarkdownDescription: "portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "volume_path": schema.StringAttribute{
- Description: "volumePath is the path that identifies vSphere volume vmdk",
- MarkdownDescription: "volumePath is the path that identifies vSphere volume vmdk",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.",
+ MarkdownDescription: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is the CHAP Secret for iSCSI target and initiator authentication",
+ MarkdownDescription: "secretRef is the CHAP Secret for iSCSI target and initiator authentication",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "target_portal": schema.StringAttribute{
+ Description: "targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
+ MarkdownDescription: "targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
},
Required: false,
Optional: true,
Computed: false,
},
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "issuer": schema.SingleNestedAttribute{
- Description: "Specifies the configuration for the TLS certificates issuer.It allows defining the issuer name and the reference to the secret containing the TLS certificates and key.The secret should contain the CA certificate, TLS certificate, and private key in the specified keys.Required when TLS is enabled.",
- MarkdownDescription: "Specifies the configuration for the TLS certificates issuer.It allows defining the issuer name and the reference to the secret containing the TLS certificates and key.The secret should contain the CA certificate, TLS certificate, and private key in the specified keys.Required when TLS is enabled.",
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "The issuer for TLS certificates.It only allows two enum values: 'KubeBlocks' and 'UserProvided'.- 'KubeBlocks' indicates that the self-signed TLS certificates generated by the KubeBlocks Operator will be used.- 'UserProvided' means that the user is responsible for providing their own CA, Cert, and Key. In this case, the user-provided CA certificate, server certificate, and private key will be used for TLS communication.",
- MarkdownDescription: "The issuer for TLS certificates.It only allows two enum values: 'KubeBlocks' and 'UserProvided'.- 'KubeBlocks' indicates that the self-signed TLS certificates generated by the KubeBlocks Operator will be used.- 'UserProvided' means that the user is responsible for providing their own CA, Cert, and Key. In this case, the user-provided CA certificate, server certificate, and private key will be used for TLS communication.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- "secret_ref": schema.SingleNestedAttribute{
- Description: "SecretRef is the reference to the secret that contains user-provided certificates.It is required when the issuer is set to 'UserProvided'.",
- MarkdownDescription: "SecretRef is the reference to the secret that contains user-provided certificates.It is required when the issuer is set to 'UserProvided'.",
- Attributes: map[string]schema.Attribute{
- "ca": schema.StringAttribute{
- Description: "Key of CA cert in Secret",
- MarkdownDescription: "Key of CA cert in Secret",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "name of the volume.Must be a DNS_LABEL and unique within the pod.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names",
+ MarkdownDescription: "name of the volume.Must be a DNS_LABEL and unique within the pod.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "cert": schema.StringAttribute{
- Description: "Key of Cert in Secret",
- MarkdownDescription: "Key of Cert in Secret",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "nfs": schema.SingleNestedAttribute{
+ Description: "nfs represents an NFS mount on the host that shares a pod's lifetimeMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ MarkdownDescription: "nfs represents an NFS mount on the host that shares a pod's lifetimeMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ Attributes: map[string]schema.Attribute{
+ "path": schema.StringAttribute{
+ Description: "path that is exported by the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ MarkdownDescription: "path that is exported by the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "key": schema.StringAttribute{
- Description: "Key of TLS private key in Secret",
- MarkdownDescription: "Key of TLS private key in Secret",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the NFS export to be mounted with read-only permissions.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ MarkdownDescription: "readOnly here will force the NFS export to be mounted with read-only permissions.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "name": schema.StringAttribute{
- Description: "Name of the Secret that contains user-provided certificates.",
- MarkdownDescription: "Name of the Secret that contains user-provided certificates.",
- Required: true,
- Optional: false,
- Computed: false,
+ "server": schema.StringAttribute{
+ Description: "server is the hostname or IP address of the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ MarkdownDescription: "server is the hostname or IP address of the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "monitor": schema.BoolAttribute{
- Description: "Deprecated since v0.9Determines whether metrics exporter information is annotated on the Component's headless Service.If set to true, the following annotations will be patched into the Service:- 'monitor.kubeblocks.io/path'- 'monitor.kubeblocks.io/port'- 'monitor.kubeblocks.io/scheme'These annotations allow the Prometheus installed by KubeBlocks to discover and scrape metrics from the exporter.",
- MarkdownDescription: "Deprecated since v0.9Determines whether metrics exporter information is annotated on the Component's headless Service.If set to true, the following annotations will be patched into the Service:- 'monitor.kubeblocks.io/path'- 'monitor.kubeblocks.io/port'- 'monitor.kubeblocks.io/scheme'These annotations allow the Prometheus installed by KubeBlocks to discover and scrape metrics from the exporter.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "name": schema.StringAttribute{
- Description: "Specifies the Component's name.It's part of the Service DNS name and must comply with the IANA service naming rule.The name is optional when ClusterComponentSpec is used as a template (e.g., in 'shardingSpec'),but required otherwise.TODO +kubebuilder:validation:XValidation:rule='self == oldSelf',message='name is immutable'",
- MarkdownDescription: "Specifies the Component's name.It's part of the Service DNS name and must comply with the IANA service naming rule.The name is optional when ClusterComponentSpec is used as a template (e.g., in 'shardingSpec'),but required otherwise.TODO +kubebuilder:validation:XValidation:rule='self == oldSelf',message='name is immutable'",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.LengthAtMost(22),
- stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z]([a-z0-9\-]*[a-z0-9])?$`), ""),
- },
- },
- "offline_instances": schema.ListAttribute{
- Description: "Specifies the names of instances to be transitioned to offline status.Marking an instance as offline results in the following:1. The associated Pod is stopped, and its PersistentVolumeClaim (PVC) is retained for potential future reuse or data recovery, but it is no longer actively used.2. The ordinal number assigned to this instance is preserved, ensuring it remains unique and avoiding conflicts with new instances.Setting instances to offline allows for a controlled scale-in process, preserving their data and maintainingordinal consistency within the Cluster.Note that offline instances and their associated resources, such as PVCs, are not automatically deleted.The administrator must manually manage the cleanup and removal of these resources when they are no longer needed.",
- MarkdownDescription: "Specifies the names of instances to be transitioned to offline status.Marking an instance as offline results in the following:1. The associated Pod is stopped, and its PersistentVolumeClaim (PVC) is retained for potential future reuse or data recovery, but it is no longer actively used.2. The ordinal number assigned to this instance is preserved, ensuring it remains unique and avoiding conflicts with new instances.Setting instances to offline allows for a controlled scale-in process, preserving their data and maintainingordinal consistency within the Cluster.Note that offline instances and their associated resources, such as PVCs, are not automatically deleted.The administrator must manually manage the cleanup and removal of these resources when they are no longer needed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "persistent_volume_claim": schema.SingleNestedAttribute{
+ Description: "persistentVolumeClaimVolumeSource represents a reference to aPersistentVolumeClaim in the same namespace.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
+ MarkdownDescription: "persistentVolumeClaimVolumeSource represents a reference to aPersistentVolumeClaim in the same namespace.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
+ Attributes: map[string]schema.Attribute{
+ "claim_name": schema.StringAttribute{
+ Description: "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
+ MarkdownDescription: "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "replicas": schema.Int64Attribute{
- Description: "Specifies the desired number of replicas in the Component for enhancing availability and durability, or load balancing.",
- MarkdownDescription: "Specifies the desired number of replicas in the Component for enhancing availability and durability, or load balancing.",
- Required: true,
- Optional: false,
- Computed: false,
- Validators: []validator.Int64{
- int64validator.AtLeast(0),
- },
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly Will force the ReadOnly setting in VolumeMounts.Default false.",
+ MarkdownDescription: "readOnly Will force the ReadOnly setting in VolumeMounts.Default false.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "resources": schema.SingleNestedAttribute{
- Description: "Specifies the resources required by the Component.It allows defining the CPU, memory requirements and limits for the Component's containers.",
- MarkdownDescription: "Specifies the resources required by the Component.It allows defining the CPU, memory requirements and limits for the Component's containers.",
- Attributes: map[string]schema.Attribute{
- "claims": schema.ListNestedAttribute{
- Description: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
- MarkdownDescription: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
- NestedObject: schema.NestedAttributeObject{
+ "photon_persistent_disk": schema.SingleNestedAttribute{
+ Description: "photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine",
+ MarkdownDescription: "photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine",
Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
- MarkdownDescription: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "pd_id": schema.StringAttribute{
+ Description: "pdID is the ID that identifies Photon Controller persistent disk",
+ MarkdownDescription: "pdID is the ID that identifies Photon Controller persistent disk",
Required: true,
Optional: false,
Computed: false,
},
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "limits": schema.MapAttribute{
- Description: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- MarkdownDescription: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- "requests": schema.MapAttribute{
- Description: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- MarkdownDescription: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "portworx_volume": schema.SingleNestedAttribute{
+ Description: "portworxVolume represents a portworx volume attached and mounted on kubelets host machine",
+ MarkdownDescription: "portworxVolume represents a portworx volume attached and mounted on kubelets host machine",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fSType represents the filesystem type to mountMust be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fSType represents the filesystem type to mountMust be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "scheduling_policy": schema.SingleNestedAttribute{
- Description: "Specifies the scheduling policy for the Component.",
- MarkdownDescription: "Specifies the scheduling policy for the Component.",
- Attributes: map[string]schema.Attribute{
- "affinity": schema.SingleNestedAttribute{
- Description: "Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity.",
- MarkdownDescription: "Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity.",
- Attributes: map[string]schema.Attribute{
- "node_affinity": schema.SingleNestedAttribute{
- Description: "Describes node affinity scheduling rules for the pod.",
- MarkdownDescription: "Describes node affinity scheduling rules for the pod.",
- Attributes: map[string]schema.Attribute{
- "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred.",
- MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "preference": schema.SingleNestedAttribute{
- Description: "A node selector term, associated with the corresponding weight.",
- MarkdownDescription: "A node selector term, associated with the corresponding weight.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "A list of node selector requirements by node's labels.",
- MarkdownDescription: "A list of node selector requirements by node's labels.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The label key that the selector applies to.",
- MarkdownDescription: "The label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "volume_id": schema.StringAttribute{
+ Description: "volumeID uniquely identifies a Portworx volume",
+ MarkdownDescription: "volumeID uniquely identifies a Portworx volume",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "projected": schema.SingleNestedAttribute{
+ Description: "projected items for all in one resources secrets, configmaps, and downward API",
+ MarkdownDescription: "projected items for all in one resources secrets, configmaps, and downward API",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "defaultMode are the mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "defaultMode are the mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_fields": schema.ListNestedAttribute{
- Description: "A list of node selector requirements by node's fields.",
- MarkdownDescription: "A list of node selector requirements by node's fields.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The label key that the selector applies to.",
- MarkdownDescription: "The label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "sources": schema.ListNestedAttribute{
+ Description: "sources is the list of volume projections",
+ MarkdownDescription: "sources is the list of volume projections",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "config_map": schema.SingleNestedAttribute{
+ Description: "configMap information about the configMap data to project",
+ MarkdownDescription: "configMap information about the configMap data to project",
+ Attributes: map[string]schema.Attribute{
+ "items": schema.ListNestedAttribute{
+ Description: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: true,
- Optional: false,
- Computed: false,
- },
- "weight": schema.Int64Attribute{
- Description: "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.",
- MarkdownDescription: "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.",
- Required: true,
- Optional: false,
- Computed: false,
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "optional": schema.BoolAttribute{
+ Description: "optional specify whether the ConfigMap or its keys must be defined",
+ MarkdownDescription: "optional specify whether the ConfigMap or its keys must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- "required_during_scheduling_ignored_during_execution": schema.SingleNestedAttribute{
- Description: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node.",
- MarkdownDescription: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node.",
- Attributes: map[string]schema.Attribute{
- "node_selector_terms": schema.ListNestedAttribute{
- Description: "Required. A list of node selector terms. The terms are ORed.",
- MarkdownDescription: "Required. A list of node selector terms. The terms are ORed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "A list of node selector requirements by node's labels.",
- MarkdownDescription: "A list of node selector requirements by node's labels.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The label key that the selector applies to.",
- MarkdownDescription: "The label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "downward_api": schema.SingleNestedAttribute{
+ Description: "downwardAPI information about the downwardAPI data to project",
+ MarkdownDescription: "downwardAPI information about the downwardAPI data to project",
+ Attributes: map[string]schema.Attribute{
+ "items": schema.ListNestedAttribute{
+ Description: "Items is a list of DownwardAPIVolume file",
+ MarkdownDescription: "Items is a list of DownwardAPIVolume file",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "field_ref": schema.SingleNestedAttribute{
+ Description: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
+ MarkdownDescription: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
+ Attributes: map[string]schema.Attribute{
+ "api_version": schema.StringAttribute{
+ Description: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ MarkdownDescription: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- Required: true,
- Optional: false,
- Computed: false,
+ "field_path": schema.StringAttribute{
+ Description: "Path of the field to select in the specified API version.",
+ MarkdownDescription: "Path of the field to select in the specified API version.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
+ "mode": schema.Int64Attribute{
+ Description: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
+ MarkdownDescription: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "resource_field_ref": schema.SingleNestedAttribute{
+ Description: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
+ MarkdownDescription: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
+ Attributes: map[string]schema.Attribute{
+ "container_name": schema.StringAttribute{
+ Description: "Container name: required for volumes, optional for env vars",
+ MarkdownDescription: "Container name: required for volumes, optional for env vars",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "divisor": schema.StringAttribute{
+ Description: "Specifies the output format of the exposed resources, defaults to '1'",
+ MarkdownDescription: "Specifies the output format of the exposed resources, defaults to '1'",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "resource": schema.StringAttribute{
+ Description: "Required: resource to select",
+ MarkdownDescription: "Required: resource to select",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_fields": schema.ListNestedAttribute{
- Description: "A list of node selector requirements by node's fields.",
- MarkdownDescription: "A list of node selector requirements by node's fields.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The label key that the selector applies to.",
- MarkdownDescription: "The label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "secret": schema.SingleNestedAttribute{
+ Description: "secret information about the secret data to project",
+ MarkdownDescription: "secret information about the secret data to project",
+ Attributes: map[string]schema.Attribute{
+ "items": schema.ListNestedAttribute{
+ Description: "items if unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "optional": schema.BoolAttribute{
+ Description: "optional field specify whether the Secret or its key must be defined",
+ MarkdownDescription: "optional field specify whether the Secret or its key must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
},
- Required: true,
- Optional: false,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "service_account_token": schema.SingleNestedAttribute{
+ Description: "serviceAccountToken is information about the serviceAccountToken data to project",
+ MarkdownDescription: "serviceAccountToken is information about the serviceAccountToken data to project",
+ Attributes: map[string]schema.Attribute{
+ "audience": schema.StringAttribute{
+ Description: "audience is the intended audience of the token. A recipient of a tokenmust identify itself with an identifier specified in the audience of thetoken, and otherwise should reject the token. The audience defaults to theidentifier of the apiserver.",
+ MarkdownDescription: "audience is the intended audience of the token. A recipient of a tokenmust identify itself with an identifier specified in the audience of thetoken, and otherwise should reject the token. The audience defaults to theidentifier of the apiserver.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "expiration_seconds": schema.Int64Attribute{
+ Description: "expirationSeconds is the requested duration of validity of the serviceaccount token. As the token approaches expiration, the kubelet volumeplugin will proactively rotate the service account token. The kubelet willstart trying to rotate the token if the token is older than 80 percent ofits time to live or if the token is older than 24 hours.Defaults to 1 hourand must be at least 10 minutes.",
+ MarkdownDescription: "expirationSeconds is the requested duration of validity of the serviceaccount token. As the token approaches expiration, the kubelet volumeplugin will proactively rotate the service account token. The kubelet willstart trying to rotate the token if the token is older than 80 percent ofits time to live or if the token is older than 24 hours.Defaults to 1 hourand must be at least 10 minutes.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is the path relative to the mount point of the file to project thetoken into.",
+ MarkdownDescription: "path is the path relative to the mount point of the file to project thetoken into.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
Computed: false,
},
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "pod_affinity": schema.SingleNestedAttribute{
- Description: "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).",
- MarkdownDescription: "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).",
- Attributes: map[string]schema.Attribute{
- "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
- MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "pod_affinity_term": schema.SingleNestedAttribute{
- Description: "Required. A pod affinity term, associated with the corresponding weight.",
- MarkdownDescription: "Required. A pod affinity term, associated with the corresponding weight.",
- Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "A label query over a set of resources, in this case pods.",
- MarkdownDescription: "A label query over a set of resources, in this case pods.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "quobyte": schema.SingleNestedAttribute{
+ Description: "quobyte represents a Quobyte mount on the host that shares a pod's lifetime",
+ MarkdownDescription: "quobyte represents a Quobyte mount on the host that shares a pod's lifetime",
+ Attributes: map[string]schema.Attribute{
+ "group": schema.StringAttribute{
+ Description: "group to map volume access toDefault is no group",
+ MarkdownDescription: "group to map volume access toDefault is no group",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the Quobyte volume to be mounted with read-only permissions.Defaults to false.",
+ MarkdownDescription: "readOnly here will force the Quobyte volume to be mounted with read-only permissions.Defaults to false.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "registry": schema.StringAttribute{
+ Description: "registry represents a single or multiple Quobyte Registry servicesspecified as a string as host:port pair (multiple entries are separated with commas)which acts as the central registry for volumes",
+ MarkdownDescription: "registry represents a single or multiple Quobyte Registry servicesspecified as a string as host:port pair (multiple entries are separated with commas)which acts as the central registry for volumes",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "tenant": schema.StringAttribute{
+ Description: "tenant owning the given Quobyte volume in the BackendUsed with dynamically provisioned Quobyte volumes, value is set by the plugin",
+ MarkdownDescription: "tenant owning the given Quobyte volume in the BackendUsed with dynamically provisioned Quobyte volumes, value is set by the plugin",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "namespace_selector": schema.SingleNestedAttribute{
- Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "user": schema.StringAttribute{
+ Description: "user to map volume access toDefaults to serivceaccount user",
+ MarkdownDescription: "user to map volume access toDefaults to serivceaccount user",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "volume": schema.StringAttribute{
+ Description: "volume is a string that references an already created Quobyte volume by name.",
+ MarkdownDescription: "volume is a string that references an already created Quobyte volume by name.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "rbd": schema.SingleNestedAttribute{
+ Description: "rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/rbd/README.md",
+ MarkdownDescription: "rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/rbd/README.md",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#rbdTODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#rbdTODO: how do we prevent errors in the filesystem from compromising the machine",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "image": schema.StringAttribute{
+ Description: "image is the rados image name.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "image is the rados image name.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "keyring": schema.StringAttribute{
+ Description: "keyring is the path to key ring for RBDUser.Default is /etc/ceph/keyring.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "keyring is the path to key ring for RBDUser.Default is /etc/ceph/keyring.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "monitors": schema.ListAttribute{
+ Description: "monitors is a collection of Ceph monitors.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "monitors is a collection of Ceph monitors.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ ElementType: types.StringType,
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "pool": schema.StringAttribute{
+ Description: "pool is the rados pool name.Default is rbd.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "pool is the rados pool name.Default is rbd.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is name of the authentication secret for RBDUser. If providedoverrides keyring.Default is nil.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "secretRef is name of the authentication secret for RBDUser. If providedoverrides keyring.Default is nil.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "user": schema.StringAttribute{
+ Description: "user is the rados user name.Default is admin.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "user is the rados user name.Default is admin.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "scale_io": schema.SingleNestedAttribute{
+ Description: "scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.",
+ MarkdownDescription: "scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'.Default is 'xfs'.",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'.Default is 'xfs'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "namespaces": schema.ListAttribute{
- Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "gateway": schema.StringAttribute{
+ Description: "gateway is the host address of the ScaleIO API Gateway.",
+ MarkdownDescription: "gateway is the host address of the ScaleIO API Gateway.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "topology_key": schema.StringAttribute{
- Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "protection_domain": schema.StringAttribute{
+ Description: "protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.",
+ MarkdownDescription: "protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "weight": schema.Int64Attribute{
- Description: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
- MarkdownDescription: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef references to the secret for ScaleIO user and othersensitive information. If this is not provided, Login operation will fail.",
+ MarkdownDescription: "secretRef references to the secret for ScaleIO user and othersensitive information. If this is not provided, Login operation will fail.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "required_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
- MarkdownDescription: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "A label query over a set of resources, in this case pods.",
- MarkdownDescription: "A label query over a set of resources, in this case pods.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "ssl_enabled": schema.BoolAttribute{
+ Description: "sslEnabled Flag enable/disable SSL communication with Gateway, default false",
+ MarkdownDescription: "sslEnabled Flag enable/disable SSL communication with Gateway, default false",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "storage_mode": schema.StringAttribute{
+ Description: "storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.Default is ThinProvisioned.",
+ MarkdownDescription: "storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.Default is ThinProvisioned.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "storage_pool": schema.StringAttribute{
+ Description: "storagePool is the ScaleIO Storage Pool associated with the protection domain.",
+ MarkdownDescription: "storagePool is the ScaleIO Storage Pool associated with the protection domain.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "system": schema.StringAttribute{
+ Description: "system is the name of the storage system as configured in ScaleIO.",
+ MarkdownDescription: "system is the name of the storage system as configured in ScaleIO.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "namespace_selector": schema.SingleNestedAttribute{
- Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "volume_name": schema.StringAttribute{
+ Description: "volumeName is the name of a volume already created in the ScaleIO systemthat is associated with this volume source.",
+ MarkdownDescription: "volumeName is the name of a volume already created in the ScaleIO systemthat is associated with this volume source.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "secret": schema.SingleNestedAttribute{
+ Description: "secret represents a secret that should populate this volume.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ MarkdownDescription: "secret represents a secret that should populate this volume.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "items": schema.ListNestedAttribute{
+ Description: "items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "optional": schema.BoolAttribute{
+ Description: "optional field specify whether the Secret or its keys must be defined",
+ MarkdownDescription: "optional field specify whether the Secret or its keys must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_name": schema.StringAttribute{
+ Description: "secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ MarkdownDescription: "secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "namespaces": schema.ListAttribute{
- Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "storageos": schema.SingleNestedAttribute{
+ Description: "storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.",
+ MarkdownDescription: "storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "topology_key": schema.StringAttribute{
- Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef specifies the secret to use for obtaining the StorageOS APIcredentials. If not specified, default values will be attempted.",
+ MarkdownDescription: "secretRef specifies the secret to use for obtaining the StorageOS APIcredentials. If not specified, default values will be attempted.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_name": schema.StringAttribute{
+ Description: "volumeName is the human-readable name of the StorageOS volume. Volumenames are only unique within a namespace.",
+ MarkdownDescription: "volumeName is the human-readable name of the StorageOS volume. Volumenames are only unique within a namespace.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_namespace": schema.StringAttribute{
+ Description: "volumeNamespace specifies the scope of the volume within StorageOS. If nonamespace is specified then the Pod's namespace will be used. This allows theKubernetes name scoping to be mirrored within StorageOS for tighter integration.Set VolumeName to any name to override the default behaviour.Set to 'default' if you are not using namespaces within StorageOS.Namespaces that do not pre-exist within StorageOS will be created.",
+ MarkdownDescription: "volumeNamespace specifies the scope of the volume within StorageOS. If nonamespace is specified then the Pod's namespace will be used. This allows theKubernetes name scoping to be mirrored within StorageOS for tighter integration.Set VolumeName to any name to override the default behaviour.Set to 'default' if you are not using namespaces within StorageOS.Namespaces that do not pre-exist within StorageOS will be created.",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "pod_anti_affinity": schema.SingleNestedAttribute{
- Description: "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).",
- MarkdownDescription: "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).",
- Attributes: map[string]schema.Attribute{
- "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
- MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "pod_affinity_term": schema.SingleNestedAttribute{
- Description: "Required. A pod affinity term, associated with the corresponding weight.",
- MarkdownDescription: "Required. A pod affinity term, associated with the corresponding weight.",
- Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "A label query over a set of resources, in this case pods.",
- MarkdownDescription: "A label query over a set of resources, in this case pods.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "vsphere_volume": schema.SingleNestedAttribute{
+ Description: "vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine",
+ MarkdownDescription: "vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fsType is filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "storage_policy_id": schema.StringAttribute{
+ Description: "storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.",
+ MarkdownDescription: "storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "storage_policy_name": schema.StringAttribute{
+ Description: "storagePolicyName is the storage Policy Based Management (SPBM) profile name.",
+ MarkdownDescription: "storagePolicyName is the storage Policy Based Management (SPBM) profile name.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "volume_path": schema.StringAttribute{
+ Description: "volumePath is the path that identifies vSphere volume vmdk",
+ MarkdownDescription: "volumePath is the path that identifies vSphere volume vmdk",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "namespace_selector": schema.SingleNestedAttribute{
- Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "network": schema.SingleNestedAttribute{
+ Description: "The configuration of network.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
+ MarkdownDescription: "The configuration of network.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
+ Attributes: map[string]schema.Attribute{
+ "host_network_accessible": schema.BoolAttribute{
+ Description: "Indicates whether the host network can be accessed. By default, this is set to false.",
+ MarkdownDescription: "Indicates whether the host network can be accessed. By default, this is set to false.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "publicly_accessible": schema.BoolAttribute{
+ Description: "Indicates whether the network is accessible to the public. By default, this is set to false.",
+ MarkdownDescription: "Indicates whether the network is accessible to the public. By default, this is set to false.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "replicas": schema.Int64Attribute{
+ Description: "Specifies the replicas of the first componentSpec, if the replicas of the first componentSpec is specified,this value will be ignored.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
+ MarkdownDescription: "Specifies the replicas of the first componentSpec, if the replicas of the first componentSpec is specified,this value will be ignored.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "resources": schema.SingleNestedAttribute{
+ Description: "Specifies the resources of the first componentSpec, if the resources of the first componentSpec is specified,this value will be ignored.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
+ MarkdownDescription: "Specifies the resources of the first componentSpec, if the resources of the first componentSpec is specified,this value will be ignored.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
+ Attributes: map[string]schema.Attribute{
+ "cpu": schema.StringAttribute{
+ Description: "Specifies the amount of CPU resource the Cluster needs.For more information, refer to: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Specifies the amount of CPU resource the Cluster needs.For more information, refer to: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "memory": schema.StringAttribute{
+ Description: "Specifies the amount of memory resource the Cluster needs.For more information, refer to: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Specifies the amount of memory resource the Cluster needs.For more information, refer to: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "runtime_class_name": schema.StringAttribute{
+ Description: "Specifies runtimeClassName for all Pods managed by this Cluster.",
+ MarkdownDescription: "Specifies runtimeClassName for all Pods managed by this Cluster.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ "scheduling_policy": schema.SingleNestedAttribute{
+ Description: "Specifies the scheduling policy for the Cluster.",
+ MarkdownDescription: "Specifies the scheduling policy for the Cluster.",
+ Attributes: map[string]schema.Attribute{
+ "affinity": schema.SingleNestedAttribute{
+ Description: "Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity.",
+ MarkdownDescription: "Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity.",
+ Attributes: map[string]schema.Attribute{
+ "node_affinity": schema.SingleNestedAttribute{
+ Description: "Describes node affinity scheduling rules for the pod.",
+ MarkdownDescription: "Describes node affinity scheduling rules for the pod.",
+ Attributes: map[string]schema.Attribute{
+ "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred.",
+ MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "preference": schema.SingleNestedAttribute{
+ Description: "A node selector term, associated with the corresponding weight.",
+ MarkdownDescription: "A node selector term, associated with the corresponding weight.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "A list of node selector requirements by node's labels.",
+ MarkdownDescription: "A list of node selector requirements by node's labels.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The label key that the selector applies to.",
+ MarkdownDescription: "The label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- "namespaces": schema.ListAttribute{
- Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ "operator": schema.StringAttribute{
+ Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
ElementType: types.StringType,
Required: false,
Optional: true,
Computed: false,
},
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "match_fields": schema.ListNestedAttribute{
+ Description: "A list of node selector requirements by node's fields.",
+ MarkdownDescription: "A list of node selector requirements by node's fields.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The label key that the selector applies to.",
+ MarkdownDescription: "The label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "topology_key": schema.StringAttribute{
- Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ "operator": schema.StringAttribute{
+ Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
Required: true,
Optional: false,
Computed: false,
},
- },
- Required: true,
- Optional: false,
- Computed: false,
- },
- "weight": schema.Int64Attribute{
- Description: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
- MarkdownDescription: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
- Required: true,
- Optional: false,
- Computed: false,
+ "values": schema.ListAttribute{
+ Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
},
- Required: false,
- Optional: true,
+ Required: true,
+ Optional: false,
Computed: false,
},
- "required_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
- MarkdownDescription: "If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "A label query over a set of resources, in this case pods.",
- MarkdownDescription: "A label query over a set of resources, in this case pods.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "weight": schema.Int64Attribute{
+ Description: "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.",
+ MarkdownDescription: "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "required_during_scheduling_ignored_during_execution": schema.SingleNestedAttribute{
+ Description: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node.",
+ MarkdownDescription: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node.",
+ Attributes: map[string]schema.Attribute{
+ "node_selector_terms": schema.ListNestedAttribute{
+ Description: "Required. A list of node selector terms. The terms are ORed.",
+ MarkdownDescription: "Required. A list of node selector terms. The terms are ORed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "A list of node selector requirements by node's labels.",
+ MarkdownDescription: "A list of node selector requirements by node's labels.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The label key that the selector applies to.",
+ MarkdownDescription: "The label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ "operator": schema.StringAttribute{
+ Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ "values": schema.ListAttribute{
+ Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
ElementType: types.StringType,
Required: false,
Optional: true,
Computed: false,
},
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "namespace_selector": schema.SingleNestedAttribute{
- Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ "match_fields": schema.ListNestedAttribute{
+ Description: "A list of node selector requirements by node's fields.",
+ MarkdownDescription: "A list of node selector requirements by node's fields.",
+ NestedObject: schema.NestedAttributeObject{
Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "key": schema.StringAttribute{
+ Description: "The label key that the selector applies to.",
+ MarkdownDescription: "The label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ "operator": schema.StringAttribute{
+ Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ "values": schema.ListAttribute{
+ Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
ElementType: types.StringType,
Required: false,
Optional: true,
Computed: false,
},
},
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "namespaces": schema.ListAttribute{
- Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "topology_key": schema.StringAttribute{
- Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- Required: true,
- Optional: false,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "node_name": schema.StringAttribute{
- Description: "NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.",
- MarkdownDescription: "NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "node_selector": schema.MapAttribute{
- Description: "NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/",
- MarkdownDescription: "NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "scheduler_name": schema.StringAttribute{
- Description: "If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.",
- MarkdownDescription: "If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.",
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "tolerations": schema.ListNestedAttribute{
- Description: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.",
- MarkdownDescription: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "effect": schema.StringAttribute{
- Description: "Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.",
- MarkdownDescription: "Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "key": schema.StringAttribute{
- Description: "Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.",
- MarkdownDescription: "Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "operator": schema.StringAttribute{
- Description: "Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.",
- MarkdownDescription: "Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "pod_affinity": schema.SingleNestedAttribute{
+ Description: "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).",
+ MarkdownDescription: "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).",
+ Attributes: map[string]schema.Attribute{
+ "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
+ MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "pod_affinity_term": schema.SingleNestedAttribute{
+ Description: "Required. A pod affinity term, associated with the corresponding weight.",
+ MarkdownDescription: "Required. A pod affinity term, associated with the corresponding weight.",
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "A label query over a set of resources, in this case pods.",
+ MarkdownDescription: "A label query over a set of resources, in this case pods.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "toleration_seconds": schema.Int64Attribute{
- Description: "TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.",
- MarkdownDescription: "TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "value": schema.StringAttribute{
- Description: "Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.",
- MarkdownDescription: "Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "topology_spread_constraints": schema.ListNestedAttribute{
- Description: "TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed.",
- MarkdownDescription: "TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain.",
- MarkdownDescription: "LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
Computed: false,
},
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
+ "namespace_selector": schema.SingleNestedAttribute{
+ Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
ElementType: types.StringType,
Required: false,
Optional: true,
Computed: false,
},
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
+ "namespaces": schema.ListAttribute{
+ Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "topology_key": schema.StringAttribute{
+ Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
},
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "match_label_keys": schema.ListAttribute{
- Description: "MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).",
- MarkdownDescription: "MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "max_skew": schema.Int64Attribute{
- Description: "MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.",
- MarkdownDescription: "MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "min_domains": schema.Int64Attribute{
- Description: "MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).",
- MarkdownDescription: "MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "node_affinity_policy": schema.StringAttribute{
- Description: "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
- MarkdownDescription: "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "node_taints_policy": schema.StringAttribute{
- Description: "NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
- MarkdownDescription: "NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "topology_key": schema.StringAttribute{
- Description: "TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.",
- MarkdownDescription: "TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- "when_unsatisfiable": schema.StringAttribute{
- Description: "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.",
- MarkdownDescription: "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.",
- Required: true,
- Optional: false,
- Computed: false,
+ "weight": schema.Int64Attribute{
+ Description: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
+ MarkdownDescription: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
},
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- "service_account_name": schema.StringAttribute{
- Description: "Specifies the name of the ServiceAccount required by the running Component.This ServiceAccount is used to grant necessary permissions for the Component's Pods to interactwith other Kubernetes resources, such as modifying Pod labels or sending events.Defaults:If not specified, KubeBlocks automatically assigns a default ServiceAccount named 'kb-{cluster.name}',bound to a default role installed together with KubeBlocks.Future Changes:Future versions might change the default ServiceAccount creation strategy to one per Component,potentially revising the naming to 'kb-{cluster.name}-{component.name}'.Users can override the automatic ServiceAccount assignment by explicitly setting the name ofan existed ServiceAccount in this field.",
- MarkdownDescription: "Specifies the name of the ServiceAccount required by the running Component.This ServiceAccount is used to grant necessary permissions for the Component's Pods to interactwith other Kubernetes resources, such as modifying Pod labels or sending events.Defaults:If not specified, KubeBlocks automatically assigns a default ServiceAccount named 'kb-{cluster.name}',bound to a default role installed together with KubeBlocks.Future Changes:Future versions might change the default ServiceAccount creation strategy to one per Component,potentially revising the naming to 'kb-{cluster.name}-{component.name}'.Users can override the automatic ServiceAccount assignment by explicitly setting the name ofan existed ServiceAccount in this field.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "service_refs": schema.ListNestedAttribute{
- Description: "Defines a list of ServiceRef for a Component, enabling access to both external services andServices provided by other Clusters.Types of services:- External services: Not managed by KubeBlocks or managed by a different KubeBlocks operator; Require a ServiceDescriptor for connection details.- Services provided by a Cluster: Managed by the same KubeBlocks operator; identified using Cluster, Component and Service names.ServiceRefs with identical 'serviceRef.name' in the same Cluster are considered the same.Example:'''yamlserviceRefs: - name: 'redis-sentinel' serviceDescriptor: name: 'external-redis-sentinel' - name: 'postgres-cluster' clusterServiceSelector: cluster: 'my-postgres-cluster' service: component: 'postgresql''''The example above includes ServiceRefs to an external Redis Sentinel service and a PostgreSQL Cluster.",
- MarkdownDescription: "Defines a list of ServiceRef for a Component, enabling access to both external services andServices provided by other Clusters.Types of services:- External services: Not managed by KubeBlocks or managed by a different KubeBlocks operator; Require a ServiceDescriptor for connection details.- Services provided by a Cluster: Managed by the same KubeBlocks operator; identified using Cluster, Component and Service names.ServiceRefs with identical 'serviceRef.name' in the same Cluster are considered the same.Example:'''yamlserviceRefs: - name: 'redis-sentinel' serviceDescriptor: name: 'external-redis-sentinel' - name: 'postgres-cluster' clusterServiceSelector: cluster: 'my-postgres-cluster' service: component: 'postgresql''''The example above includes ServiceRefs to an external Redis Sentinel service and a PostgreSQL Cluster.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "cluster": schema.StringAttribute{
- Description: "Specifies the name of the KubeBlocks Cluster being referenced.This is used when services from another KubeBlocks Cluster are consumed.By default, the referenced KubeBlocks Cluster's 'clusterDefinition.spec.connectionCredential'will be utilized to bind to the current Component. This credential should include:'endpoint', 'port', 'username', and 'password'.Note:- The 'ServiceKind' and 'ServiceVersion' specified in the service reference within the ClusterDefinition are not validated when using this approach.- If both 'cluster' and 'serviceDescriptor' are present, 'cluster' will take precedence.Deprecated since v0.9 since 'clusterDefinition.spec.connectionCredential' is deprecated,use 'clusterServiceSelector' instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
- MarkdownDescription: "Specifies the name of the KubeBlocks Cluster being referenced.This is used when services from another KubeBlocks Cluster are consumed.By default, the referenced KubeBlocks Cluster's 'clusterDefinition.spec.connectionCredential'will be utilized to bind to the current Component. This credential should include:'endpoint', 'port', 'username', and 'password'.Note:- The 'ServiceKind' and 'ServiceVersion' specified in the service reference within the ClusterDefinition are not validated when using this approach.- If both 'cluster' and 'serviceDescriptor' are present, 'cluster' will take precedence.Deprecated since v0.9 since 'clusterDefinition.spec.connectionCredential' is deprecated,use 'clusterServiceSelector' instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "required_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
+ MarkdownDescription: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "A label query over a set of resources, in this case pods.",
+ MarkdownDescription: "A label query over a set of resources, in this case pods.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "cluster_service_selector": schema.SingleNestedAttribute{
- Description: "References a service provided by another KubeBlocks Cluster.It specifies the ClusterService and the account credentials needed for access.",
- MarkdownDescription: "References a service provided by another KubeBlocks Cluster.It specifies the ClusterService and the account credentials needed for access.",
- Attributes: map[string]schema.Attribute{
- "cluster": schema.StringAttribute{
- Description: "The name of the Cluster being referenced.",
- MarkdownDescription: "The name of the Cluster being referenced.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "credential": schema.SingleNestedAttribute{
- Description: "Specifies the SystemAccount to authenticate and establish a connection with the referenced Cluster.The SystemAccount should be defined in 'componentDefinition.spec.systemAccounts'of the Component providing the service in the referenced Cluster.",
- MarkdownDescription: "Specifies the SystemAccount to authenticate and establish a connection with the referenced Cluster.The SystemAccount should be defined in 'componentDefinition.spec.systemAccounts'of the Component providing the service in the referenced Cluster.",
- Attributes: map[string]schema.Attribute{
- "component": schema.StringAttribute{
- Description: "The name of the Component where the credential resides in.",
- MarkdownDescription: "The name of the Component where the credential resides in.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "name": schema.StringAttribute{
- Description: "The name of the credential (SystemAccount) to reference.",
- MarkdownDescription: "The name of the credential (SystemAccount) to reference.",
- Required: true,
- Optional: false,
- Computed: false,
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- "service": schema.SingleNestedAttribute{
- Description: "Identifies a ClusterService from the list of Services defined in 'cluster.spec.services' of the referenced Cluster.",
- MarkdownDescription: "Identifies a ClusterService from the list of Services defined in 'cluster.spec.services' of the referenced Cluster.",
- Attributes: map[string]schema.Attribute{
- "component": schema.StringAttribute{
- Description: "The name of the Component where the Service resides in.It is required when referencing a Component's Service.",
- MarkdownDescription: "The name of the Component where the Service resides in.It is required when referencing a Component's Service.",
- Required: false,
- Optional: true,
- Computed: false,
+ "namespace_selector": schema.SingleNestedAttribute{
+ Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "port": schema.StringAttribute{
- Description: "The port name of the Service to be referenced.If there is a non-zero node-port exist for the matched Service port, the node-port will be selected first.If the referenced Service is of pod-service type (a Service per Pod), there will be multiple Service objects matched,and the resolved value will be presented in the following format: service1.name:port1,service2.name:port2...",
- MarkdownDescription: "The port name of the Service to be referenced.If there is a non-zero node-port exist for the matched Service port, the node-port will be selected first.If the referenced Service is of pod-service type (a Service per Pod), there will be multiple Service objects matched,and the resolved value will be presented in the following format: service1.name:port1,service2.name:port2...",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "namespaces": schema.ListAttribute{
+ Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "service": schema.StringAttribute{
- Description: "The name of the Service to be referenced.Leave it empty to reference the default Service. Set it to 'headless' to reference the default headless Service.If the referenced Service is of pod-service type (a Service per Pod), there will be multiple Service objects matched,and the resolved value will be presented in the following format: service1.name,service2.name...",
- MarkdownDescription: "The name of the Service to be referenced.Leave it empty to reference the default Service. Set it to 'headless' to reference the default headless Service.If the referenced Service is of pod-service type (a Service per Pod), there will be multiple Service objects matched,and the resolved value will be presented in the following format: service1.name,service2.name...",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "topology_key": schema.StringAttribute{
+ Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
},
Required: false,
Optional: true,
Computed: false,
},
-
- "name": schema.StringAttribute{
- Description: "Specifies the identifier of the service reference declaration.It corresponds to the serviceRefDeclaration name defined in either:- 'componentDefinition.spec.serviceRefDeclarations[*].name'- 'clusterDefinition.spec.componentDefs[*].serviceRefDeclarations[*].name' (deprecated)",
- MarkdownDescription: "Specifies the identifier of the service reference declaration.It corresponds to the serviceRefDeclaration name defined in either:- 'componentDefinition.spec.serviceRefDeclarations[*].name'- 'clusterDefinition.spec.componentDefs[*].serviceRefDeclarations[*].name' (deprecated)",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "namespace": schema.StringAttribute{
- Description: "Specifies the namespace of the referenced Cluster or the namespace of the referenced ServiceDescriptor object.If not provided, the referenced Cluster and ServiceDescriptor will be searched in the namespace of the currentCluster by default.",
- MarkdownDescription: "Specifies the namespace of the referenced Cluster or the namespace of the referenced ServiceDescriptor object.If not provided, the referenced Cluster and ServiceDescriptor will be searched in the namespace of the currentCluster by default.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "service_descriptor": schema.StringAttribute{
- Description: "Specifies the name of the ServiceDescriptor object that describes a service provided by external sources.When referencing a service provided by external sources, a ServiceDescriptor object is required to establishthe service binding.The 'serviceDescriptor.spec.serviceKind' and 'serviceDescriptor.spec.serviceVersion' should match the serviceKindand serviceVersion declared in the definition.If both 'cluster' and 'serviceDescriptor' are specified, the 'cluster' takes precedence.",
- MarkdownDescription: "Specifies the name of the ServiceDescriptor object that describes a service provided by external sources.When referencing a service provided by external sources, a ServiceDescriptor object is required to establishthe service binding.The 'serviceDescriptor.spec.serviceKind' and 'serviceDescriptor.spec.serviceVersion' should match the serviceKindand serviceVersion declared in the definition.If both 'cluster' and 'serviceDescriptor' are specified, the 'cluster' takes precedence.",
- Required: false,
- Optional: true,
- Computed: false,
- },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "service_version": schema.StringAttribute{
- Description: "ServiceVersion specifies the version of the Service expected to be provisioned by this Component.The version should follow the syntax and semantics of the 'Semantic Versioning' specification (http://semver.org/).If no version is specified, the latest available version will be used.",
- MarkdownDescription: "ServiceVersion specifies the version of the Service expected to be provisioned by this Component.The version should follow the syntax and semantics of the 'Semantic Versioning' specification (http://semver.org/).If no version is specified, the latest available version will be used.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.LengthAtMost(32),
- },
- },
- "services": schema.ListNestedAttribute{
- Description: "Overrides services defined in referenced ComponentDefinition and expose endpoints that can be accessed by clients.",
- MarkdownDescription: "Overrides services defined in referenced ComponentDefinition and expose endpoints that can be accessed by clients.",
- NestedObject: schema.NestedAttributeObject{
+ "pod_anti_affinity": schema.SingleNestedAttribute{
+ Description: "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).",
+ MarkdownDescription: "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).",
Attributes: map[string]schema.Attribute{
- "annotations": schema.MapAttribute{
- Description: "If ServiceType is LoadBalancer, cloud provider related parameters can be put here.More info: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer.",
- MarkdownDescription: "If ServiceType is LoadBalancer, cloud provider related parameters can be put here.More info: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "name": schema.StringAttribute{
- Description: "References the ComponentService name defined in the 'componentDefinition.spec.services[*].name'.",
- MarkdownDescription: "References the ComponentService name defined in the 'componentDefinition.spec.services[*].name'.",
- Required: true,
- Optional: false,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.LengthAtMost(25),
- },
- },
-
- "pod_service": schema.BoolAttribute{
- Description: "Indicates whether to generate individual Services for each Pod.If set to true, a separate Service will be created for each Pod in the Cluster.",
- MarkdownDescription: "Indicates whether to generate individual Services for each Pod.If set to true, a separate Service will be created for each Pod in the Cluster.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
+ MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "pod_affinity_term": schema.SingleNestedAttribute{
+ Description: "Required. A pod affinity term, associated with the corresponding weight.",
+ MarkdownDescription: "Required. A pod affinity term, associated with the corresponding weight.",
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "A label query over a set of resources, in this case pods.",
+ MarkdownDescription: "A label query over a set of resources, in this case pods.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "service_type": schema.StringAttribute{
- Description: "Determines how the Service is exposed. Valid options are 'ClusterIP', 'NodePort', and 'LoadBalancer'.- 'ClusterIP' allocates a Cluster-internal IP address for load-balancing to endpoints. Endpoints are determined by the selector or if that is not specified, they are determined by manual construction of an Endpoints object or EndpointSlice objects.- 'NodePort' builds on ClusterIP and allocates a port on every node which routes to the same endpoints as the ClusterIP.- 'LoadBalancer' builds on NodePort and creates an external load-balancer (if supported in the current cloud) which routes to the same endpoints as the ClusterIP.Note: although K8s Service type allows the 'ExternalName' type, it is not a valid option for ClusterComponentService.For more info, see:https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types.",
- MarkdownDescription: "Determines how the Service is exposed. Valid options are 'ClusterIP', 'NodePort', and 'LoadBalancer'.- 'ClusterIP' allocates a Cluster-internal IP address for load-balancing to endpoints. Endpoints are determined by the selector or if that is not specified, they are determined by manual construction of an Endpoints object or EndpointSlice objects.- 'NodePort' builds on ClusterIP and allocates a port on every node which routes to the same endpoints as the ClusterIP.- 'LoadBalancer' builds on NodePort and creates an external load-balancer (if supported in the current cloud) which routes to the same endpoints as the ClusterIP.Note: although K8s Service type allows the 'ExternalName' type, it is not a valid option for ClusterComponentService.For more info, see:https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.OneOf("ClusterIP", "NodePort", "LoadBalancer"),
- },
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "switch_policy": schema.SingleNestedAttribute{
- Description: "Defines the strategy for switchover and failover when workloadType is Replication.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
- MarkdownDescription: "Defines the strategy for switchover and failover when workloadType is Replication.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
- Attributes: map[string]schema.Attribute{
- "type": schema.StringAttribute{
- Description: "Type specifies the type of switch policy to be applied.",
- MarkdownDescription: "Type specifies the type of switch policy to be applied.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.OneOf("Noop"),
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "system_accounts": schema.ListNestedAttribute{
- Description: "Overrides system accounts defined in referenced ComponentDefinition.",
- MarkdownDescription: "Overrides system accounts defined in referenced ComponentDefinition.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "The name of the system account.",
- MarkdownDescription: "The name of the system account.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "password_config": schema.SingleNestedAttribute{
- Description: "Specifies the policy for generating the account's password.This field is immutable once set.",
- MarkdownDescription: "Specifies the policy for generating the account's password.This field is immutable once set.",
- Attributes: map[string]schema.Attribute{
- "length": schema.Int64Attribute{
- Description: "The length of the password.",
- MarkdownDescription: "The length of the password.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.Int64{
- int64validator.AtLeast(8),
- int64validator.AtMost(32),
- },
- },
+ "namespace_selector": schema.SingleNestedAttribute{
+ Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "letter_case": schema.StringAttribute{
- Description: "The case of the letters in the password.",
- MarkdownDescription: "The case of the letters in the password.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.OneOf("LowerCases", "UpperCases", "MixedCases"),
- },
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "num_digits": schema.Int64Attribute{
- Description: "The number of digits in the password.",
- MarkdownDescription: "The number of digits in the password.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.Int64{
- int64validator.AtLeast(0),
- int64validator.AtMost(8),
- },
- },
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "num_symbols": schema.Int64Attribute{
- Description: "The number of symbols in the password.",
- MarkdownDescription: "The number of symbols in the password.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.Int64{
- int64validator.AtLeast(0),
- int64validator.AtMost(8),
- },
- },
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "seed": schema.StringAttribute{
- Description: "Seed to generate the account's password.Cannot be updated.",
- MarkdownDescription: "Seed to generate the account's password.Cannot be updated.",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "namespaces": schema.ListAttribute{
+ Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "secret_ref": schema.SingleNestedAttribute{
- Description: "Refers to the secret from which data will be copied to create the new account.This field is immutable once set.",
- MarkdownDescription: "Refers to the secret from which data will be copied to create the new account.This field is immutable once set.",
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "The unique identifier of the secret.",
- MarkdownDescription: "The unique identifier of the secret.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "topology_key": schema.StringAttribute{
+ Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "namespace": schema.StringAttribute{
- Description: "The namespace where the secret is located.",
- MarkdownDescription: "The namespace where the secret is located.",
- Required: true,
- Optional: false,
- Computed: false,
+ "weight": schema.Int64Attribute{
+ Description: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
+ MarkdownDescription: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
},
},
Required: false,
Optional: true,
Computed: false,
},
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "tls": schema.BoolAttribute{
- Description: "A boolean flag that indicates whether the Component should use Transport Layer Security (TLS)for secure communication.When set to true, the Component will be configured to use TLS encryption for its network connections.This ensures that the data transmitted between the Component and its clients or other Components is encryptedand protected from unauthorized access.If TLS is enabled, the Component may require additional configuration, such as specifying TLS certificates and keys,to properly set up the secure communication channel.",
- MarkdownDescription: "A boolean flag that indicates whether the Component should use Transport Layer Security (TLS)for secure communication.When set to true, the Component will be configured to use TLS encryption for its network connections.This ensures that the data transmitted between the Component and its clients or other Components is encryptedand protected from unauthorized access.If TLS is enabled, the Component may require additional configuration, such as specifying TLS certificates and keys,to properly set up the secure communication channel.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "tolerations": schema.MapAttribute{
- Description: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.Deprecated since v0.10, replaced by the 'schedulingPolicy' field.",
- MarkdownDescription: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.Deprecated since v0.10, replaced by the 'schedulingPolicy' field.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "update_strategy": schema.StringAttribute{
- Description: "Defines the update strategy for the Component.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
- MarkdownDescription: "Defines the update strategy for the Component.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.OneOf("Serial", "BestEffortParallel", "Parallel"),
- },
- },
-
- "user_resource_refs": schema.SingleNestedAttribute{
- Description: "Allows users to specify custom ConfigMaps and Secrets to be mounted as volumesin the Cluster's Pods.This is useful in scenarios where users need to provide additional resources to the Cluster, such as:- Mounting custom scripts or configuration files during Cluster startup.- Mounting Secrets as volumes to provide sensitive information, like S3 AK/SK, to the Cluster.",
- MarkdownDescription: "Allows users to specify custom ConfigMaps and Secrets to be mounted as volumesin the Cluster's Pods.This is useful in scenarios where users need to provide additional resources to the Cluster, such as:- Mounting custom scripts or configuration files during Cluster startup.- Mounting Secrets as volumes to provide sensitive information, like S3 AK/SK, to the Cluster.",
- Attributes: map[string]schema.Attribute{
- "config_map_refs": schema.ListNestedAttribute{
- Description: "ConfigMapRefs defines the user-defined ConfigMaps.",
- MarkdownDescription: "ConfigMapRefs defines the user-defined ConfigMaps.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "as_volume_from": schema.ListAttribute{
- Description: "AsVolumeFrom lists the names of containers in which the volume should be mounted.",
- MarkdownDescription: "AsVolumeFrom lists the names of containers in which the volume should be mounted.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "config_map": schema.SingleNestedAttribute{
- Description: "ConfigMap specifies the ConfigMap to be mounted as a volume.",
- MarkdownDescription: "ConfigMap specifies the ConfigMap to be mounted as a volume.",
- Attributes: map[string]schema.Attribute{
- "default_mode": schema.Int64Attribute{
- Description: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
- "items": schema.ListNestedAttribute{
- Description: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the key to project.",
- MarkdownDescription: "key is the key to project.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "required_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
+ MarkdownDescription: "If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "A label query over a set of resources, in this case pods.",
+ MarkdownDescription: "A label query over a set of resources, in this case pods.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "mode": schema.Int64Attribute{
- Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "path": schema.StringAttribute{
- Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- Required: true,
- Optional: false,
- Computed: false,
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "optional": schema.BoolAttribute{
- Description: "optional specify whether the ConfigMap or its keys must be defined",
- MarkdownDescription: "optional specify whether the ConfigMap or its keys must be defined",
- Required: false,
- Optional: true,
- Computed: false,
+ "namespace_selector": schema.SingleNestedAttribute{
+ Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: true,
- Optional: false,
- Computed: false,
- },
- "mount_point": schema.StringAttribute{
- Description: "MountPoint is the filesystem path where the volume will be mounted.",
- MarkdownDescription: "MountPoint is the filesystem path where the volume will be mounted.",
- Required: true,
- Optional: false,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.LengthAtMost(256),
- stringvalidator.RegexMatches(regexp.MustCompile(`^/[a-z]([a-z0-9\-]*[a-z0-9])?$`), ""),
+ "namespaces": schema.ListAttribute{
+ Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- },
- "name": schema.StringAttribute{
- Description: "Name is the name of the referenced ConfigMap or Secret object. It must conform to DNS label standards.",
- MarkdownDescription: "Name is the name of the referenced ConfigMap or Secret object. It must conform to DNS label standards.",
- Required: true,
- Optional: false,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.LengthAtMost(63),
- stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z0-9]([a-z0-9\.\-]*[a-z0-9])?$`), ""),
+ "topology_key": schema.StringAttribute{
+ Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
},
-
- "sub_path": schema.StringAttribute{
- Description: "SubPath specifies a path within the volume from which to mount.",
- MarkdownDescription: "SubPath specifies a path within the volume from which to mount.",
- Required: false,
- Optional: true,
- Computed: false,
- },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "secret_refs": schema.ListNestedAttribute{
- Description: "SecretRefs defines the user-defined Secrets.",
- MarkdownDescription: "SecretRefs defines the user-defined Secrets.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "as_volume_from": schema.ListAttribute{
- Description: "AsVolumeFrom lists the names of containers in which the volume should be mounted.",
- MarkdownDescription: "AsVolumeFrom lists the names of containers in which the volume should be mounted.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "node_name": schema.StringAttribute{
+ Description: "NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.",
+ MarkdownDescription: "NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "mount_point": schema.StringAttribute{
- Description: "MountPoint is the filesystem path where the volume will be mounted.",
- MarkdownDescription: "MountPoint is the filesystem path where the volume will be mounted.",
- Required: true,
- Optional: false,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.LengthAtMost(256),
- stringvalidator.RegexMatches(regexp.MustCompile(`^/[a-z]([a-z0-9\-]*[a-z0-9])?$`), ""),
- },
- },
+ "node_selector": schema.MapAttribute{
+ Description: "NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/",
+ MarkdownDescription: "NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "name": schema.StringAttribute{
- Description: "Name is the name of the referenced ConfigMap or Secret object. It must conform to DNS label standards.",
- MarkdownDescription: "Name is the name of the referenced ConfigMap or Secret object. It must conform to DNS label standards.",
- Required: true,
- Optional: false,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.LengthAtMost(63),
- stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z0-9]([a-z0-9\.\-]*[a-z0-9])?$`), ""),
- },
- },
+ "scheduler_name": schema.StringAttribute{
+ Description: "If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.",
+ MarkdownDescription: "If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "secret": schema.SingleNestedAttribute{
- Description: "Secret specifies the Secret to be mounted as a volume.",
- MarkdownDescription: "Secret specifies the Secret to be mounted as a volume.",
- Attributes: map[string]schema.Attribute{
- "default_mode": schema.Int64Attribute{
- Description: "defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "tolerations": schema.ListNestedAttribute{
+ Description: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.",
+ MarkdownDescription: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "effect": schema.StringAttribute{
+ Description: "Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.",
+ MarkdownDescription: "Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "items": schema.ListNestedAttribute{
- Description: "items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- MarkdownDescription: "items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the key to project.",
- MarkdownDescription: "key is the key to project.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "key": schema.StringAttribute{
+ Description: "Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.",
+ MarkdownDescription: "Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.",
+ MarkdownDescription: "Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "toleration_seconds": schema.Int64Attribute{
+ Description: "TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.",
+ MarkdownDescription: "TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "mode": schema.Int64Attribute{
- Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "value": schema.StringAttribute{
+ Description: "Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.",
+ MarkdownDescription: "Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "path": schema.StringAttribute{
- Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ "topology_spread_constraints": schema.ListNestedAttribute{
+ Description: "TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed.",
+ MarkdownDescription: "TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain.",
+ MarkdownDescription: "LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- "optional": schema.BoolAttribute{
- Description: "optional field specify whether the Secret or its keys must be defined",
- MarkdownDescription: "optional field specify whether the Secret or its keys must be defined",
- Required: false,
- Optional: true,
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
Computed: false,
},
- "secret_name": schema.StringAttribute{
- Description: "secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
- MarkdownDescription: "secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
Required: false,
Optional: true,
Computed: false,
},
},
- Required: true,
- Optional: false,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "sub_path": schema.StringAttribute{
- Description: "SubPath specifies a path within the volume from which to mount.",
- MarkdownDescription: "SubPath specifies a path within the volume from which to mount.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
},
},
Required: false,
Optional: true,
Computed: false,
},
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "volume_claim_templates": schema.ListNestedAttribute{
- Description: "Specifies a list of PersistentVolumeClaim templates that represent the storage requirements for the Component.Each template specifies the desired characteristics of a persistent volume, such as storage class,size, and access modes.These templates are used to dynamically provision persistent volumes for the Component.",
- MarkdownDescription: "Specifies a list of PersistentVolumeClaim templates that represent the storage requirements for the Component.Each template specifies the desired characteristics of a persistent volume, such as storage class,size, and access modes.These templates are used to dynamically provision persistent volumes for the Component.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Refers to the name of a volumeMount defined in either:- 'componentDefinition.spec.runtime.containers[*].volumeMounts'- 'clusterDefinition.spec.componentDefs[*].podSpec.containers[*].volumeMounts' (deprecated)The value of 'name' must match the 'name' field of a volumeMount specified in the corresponding 'volumeMounts' array.",
- MarkdownDescription: "Refers to the name of a volumeMount defined in either:- 'componentDefinition.spec.runtime.containers[*].volumeMounts'- 'clusterDefinition.spec.componentDefs[*].podSpec.containers[*].volumeMounts' (deprecated)The value of 'name' must match the 'name' field of a volumeMount specified in the corresponding 'volumeMounts' array.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "spec": schema.SingleNestedAttribute{
- Description: "Defines the desired characteristics of a PersistentVolumeClaim that will be created for the volumewith the mount name specified in the 'name' field.When a Pod is created for this ClusterComponent, a new PVC will be created based on the specificationdefined in the 'spec' field. The PVC will be associated with the volume mount specified by the 'name' field.",
- MarkdownDescription: "Defines the desired characteristics of a PersistentVolumeClaim that will be created for the volumewith the mount name specified in the 'name' field.When a Pod is created for this ClusterComponent, a new PVC will be created based on the specificationdefined in the 'spec' field. The PVC will be associated with the volume mount specified by the 'name' field.",
- Attributes: map[string]schema.Attribute{
- "access_modes": schema.MapAttribute{
- Description: "Contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1.",
- MarkdownDescription: "Contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "resources": schema.SingleNestedAttribute{
- Description: "Represents the minimum resources the volume should have.If the RecoverVolumeExpansionFailure feature is enabled, users are allowed to specify resource requirements thatare lower than the previous value but must still be higher than the capacity recorded in the status field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources.",
- MarkdownDescription: "Represents the minimum resources the volume should have.If the RecoverVolumeExpansionFailure feature is enabled, users are allowed to specify resource requirements thatare lower than the previous value but must still be higher than the capacity recorded in the status field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources.",
- Attributes: map[string]schema.Attribute{
- "claims": schema.ListNestedAttribute{
- Description: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
- MarkdownDescription: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
- MarkdownDescription: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- "limits": schema.MapAttribute{
- Description: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- MarkdownDescription: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "match_label_keys": schema.ListAttribute{
+ Description: "MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).",
+ MarkdownDescription: "MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "requests": schema.MapAttribute{
- Description: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- MarkdownDescription: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "max_skew": schema.Int64Attribute{
+ Description: "MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.",
+ MarkdownDescription: "MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "storage_class_name": schema.StringAttribute{
- Description: "The name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1.",
- MarkdownDescription: "The name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "min_domains": schema.Int64Attribute{
+ Description: "MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).",
+ MarkdownDescription: "MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "volume_mode": schema.StringAttribute{
- Description: "Defines what type of volume is required by the claim, either Block or Filesystem.",
- MarkdownDescription: "Defines what type of volume is required by the claim, either Block or Filesystem.",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "node_affinity_policy": schema.StringAttribute{
+ Description: "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
+ MarkdownDescription: "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- "network": schema.SingleNestedAttribute{
- Description: "The configuration of network.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
- MarkdownDescription: "The configuration of network.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
- Attributes: map[string]schema.Attribute{
- "host_network_accessible": schema.BoolAttribute{
- Description: "Indicates whether the host network can be accessed. By default, this is set to false.",
- MarkdownDescription: "Indicates whether the host network can be accessed. By default, this is set to false.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "node_taints_policy": schema.StringAttribute{
+ Description: "NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
+ MarkdownDescription: "NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "publicly_accessible": schema.BoolAttribute{
- Description: "Indicates whether the network is accessible to the public. By default, this is set to false.",
- MarkdownDescription: "Indicates whether the network is accessible to the public. By default, this is set to false.",
- Required: false,
- Optional: true,
- Computed: false,
+ "topology_key": schema.StringAttribute{
+ Description: "TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.",
+ MarkdownDescription: "TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "when_unsatisfiable": schema.StringAttribute{
+ Description: "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.",
+ MarkdownDescription: "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
},
},
Required: false,
@@ -7551,302 +11408,459 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "replicas": schema.Int64Attribute{
- Description: "Specifies the replicas of the first componentSpec, if the replicas of the first componentSpec is specified,this value will be ignored.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
- MarkdownDescription: "Specifies the replicas of the first componentSpec, if the replicas of the first componentSpec is specified,this value will be ignored.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
+ "services": schema.MapAttribute{
+ Description: "Defines a list of additional Services that are exposed by a Cluster.This field allows Services of selected Components, either from 'componentSpecs' or 'shardingSpecs' to be exposed,alongside Services defined with ComponentService.Services defined here can be referenced by other clusters using the ServiceRefClusterSelector.",
+ MarkdownDescription: "Defines a list of additional Services that are exposed by a Cluster.This field allows Services of selected Components, either from 'componentSpecs' or 'shardingSpecs' to be exposed,alongside Services defined with ComponentService.Services defined here can be referenced by other clusters using the ServiceRefClusterSelector.",
+ ElementType: types.StringType,
Required: false,
Optional: true,
Computed: false,
},
- "resources": schema.SingleNestedAttribute{
- Description: "Specifies the resources of the first componentSpec, if the resources of the first componentSpec is specified,this value will be ignored.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
- MarkdownDescription: "Specifies the resources of the first componentSpec, if the resources of the first componentSpec is specified,this value will be ignored.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
- Attributes: map[string]schema.Attribute{
- "cpu": schema.StringAttribute{
- Description: "Specifies the amount of CPU resource the Cluster needs.For more information, refer to: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- MarkdownDescription: "Specifies the amount of CPU resource the Cluster needs.For more information, refer to: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "sharding_specs": schema.ListNestedAttribute{
+ Description: "Specifies a list of ShardingSpec objects that manage the sharding topology for Cluster Components.Each ShardingSpec organizes components into shards, with each shard corresponding to a Component.Components within a shard are all based on a common ClusterComponentSpec template, ensuring uniform configurations.This field supports dynamic resharding by facilitating the addition or removal of shardsthrough the 'shards' field in ShardingSpec.Note: 'shardingSpecs' and 'componentSpecs' cannot both be empty; at least one must be defined to configure a Cluster.",
+ MarkdownDescription: "Specifies a list of ShardingSpec objects that manage the sharding topology for Cluster Components.Each ShardingSpec organizes components into shards, with each shard corresponding to a Component.Components within a shard are all based on a common ClusterComponentSpec template, ensuring uniform configurations.This field supports dynamic resharding by facilitating the addition or removal of shardsthrough the 'shards' field in ShardingSpec.Note: 'shardingSpecs' and 'componentSpecs' cannot both be empty; at least one must be defined to configure a Cluster.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Represents the common parent part of all shard names.This identifier is included as part of the Service DNS name and must comply with IANA service naming rules.It is used to generate the names of underlying Components following the pattern '$(shardingSpec.name)-$(ShardID)'.ShardID is a random string that is appended to the Name to generate unique identifiers for each shard.For example, if the sharding specification name is 'my-shard' and the ShardID is 'abc', the resulting Component namewould be 'my-shard-abc'.Note that the name defined in Component template('shardingSpec.template.name') will be disregardedwhen generating the Component names of the shards. The 'shardingSpec.name' field takes precedence.",
+ MarkdownDescription: "Represents the common parent part of all shard names.This identifier is included as part of the Service DNS name and must comply with IANA service naming rules.It is used to generate the names of underlying Components following the pattern '$(shardingSpec.name)-$(ShardID)'.ShardID is a random string that is appended to the Name to generate unique identifiers for each shard.For example, if the sharding specification name is 'my-shard' and the ShardID is 'abc', the resulting Component namewould be 'my-shard-abc'.Note that the name defined in Component template('shardingSpec.template.name') will be disregardedwhen generating the Component names of the shards. The 'shardingSpec.name' field takes precedence.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.LengthAtMost(15),
+ stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z0-9]([a-z0-9\.\-]*[a-z0-9])?$`), ""),
+ },
+ },
- "memory": schema.StringAttribute{
- Description: "Specifies the amount of memory resource the Cluster needs.For more information, refer to: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- MarkdownDescription: "Specifies the amount of memory resource the Cluster needs.For more information, refer to: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "shards": schema.Int64Attribute{
+ Description: "Specifies the desired number of shards.Users can declare the desired number of shards through this field.KubeBlocks dynamically creates and deletes Components based on the differencebetween the desired and actual number of shards.KubeBlocks provides lifecycle management for sharding, including:- Executing the postProvision Action defined in the ComponentDefinition when the number of shards increases. This allows for custom actions to be performed after a new shard is provisioned.- Executing the preTerminate Action defined in the ComponentDefinition when the number of shards decreases. This enables custom cleanup or data migration tasks to be executed before a shard is terminated. Resources and data associated with the corresponding Component will also be deleted.",
+ MarkdownDescription: "Specifies the desired number of shards.Users can declare the desired number of shards through this field.KubeBlocks dynamically creates and deletes Components based on the differencebetween the desired and actual number of shards.KubeBlocks provides lifecycle management for sharding, including:- Executing the postProvision Action defined in the ComponentDefinition when the number of shards increases. This allows for custom actions to be performed after a new shard is provisioned.- Executing the preTerminate Action defined in the ComponentDefinition when the number of shards decreases. This enables custom cleanup or data migration tasks to be executed before a shard is terminated. Resources and data associated with the corresponding Component will also be deleted.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.Int64{
+ int64validator.AtLeast(0),
+ int64validator.AtMost(2048),
+ },
+ },
- "runtime_class_name": schema.StringAttribute{
- Description: "Specifies runtimeClassName for all Pods managed by this Cluster.",
- MarkdownDescription: "Specifies runtimeClassName for all Pods managed by this Cluster.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "template": schema.SingleNestedAttribute{
+ Description: "The template for generating Components for shards, where each shard consists of one Component.This field is of type ClusterComponentSpec, which encapsulates all the required details anddefinitions for creating and managing the Components.KubeBlocks uses this template to generate a set of identical Components or shards.All the generated Components will have the same specifications and definitions as specified in the 'template' field.This allows for the creation of multiple Components with consistent configurations,enabling sharding and distribution of workloads across Components.",
+ MarkdownDescription: "The template for generating Components for shards, where each shard consists of one Component.This field is of type ClusterComponentSpec, which encapsulates all the required details anddefinitions for creating and managing the Components.KubeBlocks uses this template to generate a set of identical Components or shards.All the generated Components will have the same specifications and definitions as specified in the 'template' field.This allows for the creation of multiple Components with consistent configurations,enabling sharding and distribution of workloads across Components.",
+ Attributes: map[string]schema.Attribute{
+ "affinity": schema.SingleNestedAttribute{
+ Description: "Specifies a group of affinity scheduling rules for the Component.It allows users to control how the Component's Pods are scheduled onto nodes in the K8s cluster.Deprecated since v0.10, replaced by the 'schedulingPolicy' field.",
+ MarkdownDescription: "Specifies a group of affinity scheduling rules for the Component.It allows users to control how the Component's Pods are scheduled onto nodes in the K8s cluster.Deprecated since v0.10, replaced by the 'schedulingPolicy' field.",
+ Attributes: map[string]schema.Attribute{
+ "node_labels": schema.MapAttribute{
+ Description: "Indicates the node labels that must be present on nodes for pods to be scheduled on them.It is a map where the keys are the label keys and the values are the corresponding label values.Pods will only be scheduled on nodes that have all the specified labels with the corresponding values.For example, if NodeLabels is set to {'nodeType': 'ssd', 'environment': 'production'},pods will only be scheduled on nodes that have both the 'nodeType' label with value 'ssd'and the 'environment' label with value 'production'.This field allows users to control Pod placement based on specific node labels.It can be used to ensure that Pods are scheduled on nodes with certain characteristics,such as specific hardware (e.g., SSD), environment (e.g., production, staging),or any other custom labels assigned to nodes.",
+ MarkdownDescription: "Indicates the node labels that must be present on nodes for pods to be scheduled on them.It is a map where the keys are the label keys and the values are the corresponding label values.Pods will only be scheduled on nodes that have all the specified labels with the corresponding values.For example, if NodeLabels is set to {'nodeType': 'ssd', 'environment': 'production'},pods will only be scheduled on nodes that have both the 'nodeType' label with value 'ssd'and the 'environment' label with value 'production'.This field allows users to control Pod placement based on specific node labels.It can be used to ensure that Pods are scheduled on nodes with certain characteristics,such as specific hardware (e.g., SSD), environment (e.g., production, staging),or any other custom labels assigned to nodes.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "scheduling_policy": schema.SingleNestedAttribute{
- Description: "Specifies the scheduling policy for the Cluster.",
- MarkdownDescription: "Specifies the scheduling policy for the Cluster.",
- Attributes: map[string]schema.Attribute{
- "affinity": schema.SingleNestedAttribute{
- Description: "Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity.",
- MarkdownDescription: "Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity.",
- Attributes: map[string]schema.Attribute{
- "node_affinity": schema.SingleNestedAttribute{
- Description: "Describes node affinity scheduling rules for the pod.",
- MarkdownDescription: "Describes node affinity scheduling rules for the pod.",
- Attributes: map[string]schema.Attribute{
- "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred.",
- MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "preference": schema.SingleNestedAttribute{
- Description: "A node selector term, associated with the corresponding weight.",
- MarkdownDescription: "A node selector term, associated with the corresponding weight.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "A list of node selector requirements by node's labels.",
- MarkdownDescription: "A list of node selector requirements by node's labels.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The label key that the selector applies to.",
- MarkdownDescription: "The label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "pod_anti_affinity": schema.StringAttribute{
+ Description: "Specifies the anti-affinity level of Pods within a Component.It determines how pods should be spread across nodes to improve availability and performance.It can have the following values: 'Preferred' and 'Required'.The default value is 'Preferred'.",
+ MarkdownDescription: "Specifies the anti-affinity level of Pods within a Component.It determines how pods should be spread across nodes to improve availability and performance.It can have the following values: 'Preferred' and 'Required'.The default value is 'Preferred'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.OneOf("Preferred", "Required"),
+ },
+ },
- "operator": schema.StringAttribute{
- Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "tenancy": schema.StringAttribute{
+ Description: "Determines the level of resource isolation between Pods.It can have the following values: 'SharedNode' and 'DedicatedNode'.- SharedNode: Allow that multiple Pods may share the same node, which is the default behavior of K8s.- DedicatedNode: Each Pod runs on a dedicated node, ensuring that no two Pods share the same node. In other words, if a Pod is already running on a node, no other Pods will be scheduled on that node. Which provides a higher level of isolation and resource guarantee for Pods. The default value is 'SharedNode'.",
+ MarkdownDescription: "Determines the level of resource isolation between Pods.It can have the following values: 'SharedNode' and 'DedicatedNode'.- SharedNode: Allow that multiple Pods may share the same node, which is the default behavior of K8s.- DedicatedNode: Each Pod runs on a dedicated node, ensuring that no two Pods share the same node. In other words, if a Pod is already running on a node, no other Pods will be scheduled on that node. Which provides a higher level of isolation and resource guarantee for Pods. The default value is 'SharedNode'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.OneOf("SharedNode", "DedicatedNode"),
+ },
+ },
- "values": schema.ListAttribute{
- Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "topology_keys": schema.ListAttribute{
+ Description: "Represents the key of node labels used to define the topology domain for Pod anti-affinityand Pod spread constraints.In K8s, a topology domain is a set of nodes that have the same value for a specific label key.Nodes with labels containing any of the specified TopologyKeys and identical values are consideredto be in the same topology domain.Note: The concept of topology in the context of K8s TopologyKeys is different from the concept oftopology in the ClusterDefinition.When a Pod has anti-affinity or spread constraints specified, Kubernetes will attempt to schedule thePod on nodes with different values for the specified TopologyKeys.This ensures that Pods are spread across different topology domains, promoting high availability andreducing the impact of node failures.Some well-known label keys, such as 'kubernetes.io/hostname' and 'topology.kubernetes.io/zone',are often used as TopologyKey.These keys represent the hostname and zone of a node, respectively.By including these keys in the TopologyKeys list, Pods will be spread across nodes withdifferent hostnames or zones.In addition to the well-known keys, users can also specify custom label keys as TopologyKeys.This allows for more flexible and custom topology definitions based on the specific needsof the application or environment.The TopologyKeys field is a slice of strings, where each string represents a label key.The order of the keys in the slice does not matter.",
+ MarkdownDescription: "Represents the key of node labels used to define the topology domain for Pod anti-affinityand Pod spread constraints.In K8s, a topology domain is a set of nodes that have the same value for a specific label key.Nodes with labels containing any of the specified TopologyKeys and identical values are consideredto be in the same topology domain.Note: The concept of topology in the context of K8s TopologyKeys is different from the concept oftopology in the ClusterDefinition.When a Pod has anti-affinity or spread constraints specified, Kubernetes will attempt to schedule thePod on nodes with different values for the specified TopologyKeys.This ensures that Pods are spread across different topology domains, promoting high availability andreducing the impact of node failures.Some well-known label keys, such as 'kubernetes.io/hostname' and 'topology.kubernetes.io/zone',are often used as TopologyKey.These keys represent the hostname and zone of a node, respectively.By including these keys in the TopologyKeys list, Pods will be spread across nodes withdifferent hostnames or zones.In addition to the well-known keys, users can also specify custom label keys as TopologyKeys.This allows for more flexible and custom topology definitions based on the specific needsof the application or environment.The TopologyKeys field is a slice of strings, where each string represents a label key.The order of the keys in the slice does not matter.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_fields": schema.ListNestedAttribute{
- Description: "A list of node selector requirements by node's fields.",
- MarkdownDescription: "A list of node selector requirements by node's fields.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The label key that the selector applies to.",
- MarkdownDescription: "The label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "annotations": schema.MapAttribute{
+ Description: "Specifies Annotations to override or add for underlying Pods.",
+ MarkdownDescription: "Specifies Annotations to override or add for underlying Pods.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "component_def": schema.StringAttribute{
+ Description: "References the name of a ComponentDefinition object.The ComponentDefinition specifies the behavior and characteristics of the Component.If both 'componentDefRef' and 'componentDef' are provided,the 'componentDef' will take precedence over 'componentDefRef'.",
+ MarkdownDescription: "References the name of a ComponentDefinition object.The ComponentDefinition specifies the behavior and characteristics of the Component.If both 'componentDefRef' and 'componentDef' are provided,the 'componentDef' will take precedence over 'componentDefRef'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.LengthAtMost(64),
+ stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z0-9]([a-z0-9\.\-]*[a-z0-9])?$`), ""),
+ },
+ },
+
+ "component_def_ref": schema.StringAttribute{
+ Description: "References a ClusterComponentDefinition defined in the 'clusterDefinition.spec.componentDef' field.Must comply with the IANA service naming rule.Deprecated since v0.9,because defining Components in 'clusterDefinition.spec.componentDef' field has been deprecated.This field is replaced by the 'componentDef' field, use 'componentDef' instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.TODO +kubebuilder:validation:XValidation:rule='self == oldSelf',message='componentDefRef is immutable'",
+ MarkdownDescription: "References a ClusterComponentDefinition defined in the 'clusterDefinition.spec.componentDef' field.Must comply with the IANA service naming rule.Deprecated since v0.9,because defining Components in 'clusterDefinition.spec.componentDef' field has been deprecated.This field is replaced by the 'componentDef' field, use 'componentDef' instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.TODO +kubebuilder:validation:XValidation:rule='self == oldSelf',message='componentDefRef is immutable'",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.LengthAtMost(22),
+ stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z]([a-z0-9\-]*[a-z0-9])?$`), ""),
+ },
+ },
+
+ "configs": schema.ListNestedAttribute{
+ Description: "Specifies the configuration content of a config template.",
+ MarkdownDescription: "Specifies the configuration content of a config template.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "config_map": schema.SingleNestedAttribute{
+ Description: "ConfigMap source for the config.",
+ MarkdownDescription: "ConfigMap source for the config.",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "items": schema.ListNestedAttribute{
+ Description: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: true,
- Optional: false,
- Computed: false,
- },
- "weight": schema.Int64Attribute{
- Description: "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.",
- MarkdownDescription: "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.",
- Required: true,
- Optional: false,
- Computed: false,
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "optional": schema.BoolAttribute{
+ Description: "optional specify whether the ConfigMap or its keys must be defined",
+ MarkdownDescription: "optional specify whether the ConfigMap or its keys must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "The name of the config.",
+ MarkdownDescription: "The name of the config.",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "required_during_scheduling_ignored_during_execution": schema.SingleNestedAttribute{
- Description: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node.",
- MarkdownDescription: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node.",
+ "disable_exporter": schema.BoolAttribute{
+ Description: "Determines whether metrics exporter information is annotated on the Component's headless Service.If set to true, the following annotations will not be patched into the Service:- 'monitor.kubeblocks.io/path'- 'monitor.kubeblocks.io/port'- 'monitor.kubeblocks.io/scheme'These annotations allow the Prometheus installed by KubeBlocks to discover and scrape metrics from the exporter.",
+ MarkdownDescription: "Determines whether metrics exporter information is annotated on the Component's headless Service.If set to true, the following annotations will not be patched into the Service:- 'monitor.kubeblocks.io/path'- 'monitor.kubeblocks.io/port'- 'monitor.kubeblocks.io/scheme'These annotations allow the Prometheus installed by KubeBlocks to discover and scrape metrics from the exporter.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "enabled_logs": schema.ListAttribute{
+ Description: "Specifies which types of logs should be collected for the Component.The log types are defined in the 'componentDefinition.spec.logConfigs' field with the LogConfig entries.The elements in the 'enabledLogs' array correspond to the names of the LogConfig entries.For example, if the 'componentDefinition.spec.logConfigs' defines LogConfig entries withnames 'slow_query_log' and 'error_log',you can enable the collection of these logs by including their names in the 'enabledLogs' array:'''yamlenabledLogs:- slow_query_log- error_log'''",
+ MarkdownDescription: "Specifies which types of logs should be collected for the Component.The log types are defined in the 'componentDefinition.spec.logConfigs' field with the LogConfig entries.The elements in the 'enabledLogs' array correspond to the names of the LogConfig entries.For example, if the 'componentDefinition.spec.logConfigs' defines LogConfig entries withnames 'slow_query_log' and 'error_log',you can enable the collection of these logs by including their names in the 'enabledLogs' array:'''yamlenabledLogs:- slow_query_log- error_log'''",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "env": schema.ListNestedAttribute{
+ Description: "List of environment variables to add.These environment variables will be placed after the environment variables declared in the Pod.",
+ MarkdownDescription: "List of environment variables to add.These environment variables will be placed after the environment variables declared in the Pod.",
+ NestedObject: schema.NestedAttributeObject{
Attributes: map[string]schema.Attribute{
- "node_selector_terms": schema.ListNestedAttribute{
- Description: "Required. A list of node selector terms. The terms are ORed.",
- MarkdownDescription: "Required. A list of node selector terms. The terms are ORed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "A list of node selector requirements by node's labels.",
- MarkdownDescription: "A list of node selector requirements by node's labels.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The label key that the selector applies to.",
- MarkdownDescription: "The label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "Name of the environment variable. Must be a C_IDENTIFIER.",
+ MarkdownDescription: "Name of the environment variable. Must be a C_IDENTIFIER.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "value": schema.StringAttribute{
+ Description: "Variable references $(VAR_NAME) are expandedusing the previously defined environment variables in the container andany service environment variables. If a variable cannot be resolved,the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.'$$(VAR_NAME)' will produce the string literal '$(VAR_NAME)'.Escaped references will never be expanded, regardless of whether the variableexists or not.Defaults to ''.",
+ MarkdownDescription: "Variable references $(VAR_NAME) are expandedusing the previously defined environment variables in the container andany service environment variables. If a variable cannot be resolved,the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.'$$(VAR_NAME)' will produce the string literal '$(VAR_NAME)'.Escaped references will never be expanded, regardless of whether the variableexists or not.Defaults to ''.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
+ "value_from": schema.SingleNestedAttribute{
+ Description: "Source for the environment variable's value. Cannot be used if value is not empty.",
+ MarkdownDescription: "Source for the environment variable's value. Cannot be used if value is not empty.",
+ Attributes: map[string]schema.Attribute{
+ "config_map_key_ref": schema.SingleNestedAttribute{
+ Description: "Selects a key of a ConfigMap.",
+ MarkdownDescription: "Selects a key of a ConfigMap.",
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The key to select.",
+ MarkdownDescription: "The key to select.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "optional": schema.BoolAttribute{
+ Description: "Specify whether the ConfigMap or its key must be defined",
+ MarkdownDescription: "Specify whether the ConfigMap or its key must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_fields": schema.ListNestedAttribute{
- Description: "A list of node selector requirements by node's fields.",
- MarkdownDescription: "A list of node selector requirements by node's fields.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The label key that the selector applies to.",
- MarkdownDescription: "The label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "field_ref": schema.SingleNestedAttribute{
+ Description: "Selects a field of the pod: supports metadata.name, metadata.namespace, 'metadata.labels['']', 'metadata.annotations['']',spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.",
+ MarkdownDescription: "Selects a field of the pod: supports metadata.name, metadata.namespace, 'metadata.labels['']', 'metadata.annotations['']',spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.",
+ Attributes: map[string]schema.Attribute{
+ "api_version": schema.StringAttribute{
+ Description: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ MarkdownDescription: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "field_path": schema.StringAttribute{
+ Description: "Path of the field to select in the specified API version.",
+ MarkdownDescription: "Path of the field to select in the specified API version.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
+ "resource_field_ref": schema.SingleNestedAttribute{
+ Description: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.",
+ MarkdownDescription: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.",
+ Attributes: map[string]schema.Attribute{
+ "container_name": schema.StringAttribute{
+ Description: "Container name: required for volumes, optional for env vars",
+ MarkdownDescription: "Container name: required for volumes, optional for env vars",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "divisor": schema.StringAttribute{
+ Description: "Specifies the output format of the exposed resources, defaults to '1'",
+ MarkdownDescription: "Specifies the output format of the exposed resources, defaults to '1'",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "resource": schema.StringAttribute{
+ Description: "Required: resource to select",
+ MarkdownDescription: "Required: resource to select",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_key_ref": schema.SingleNestedAttribute{
+ Description: "Selects a key of a secret in the pod's namespace",
+ MarkdownDescription: "Selects a key of a secret in the pod's namespace",
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The key of the secret to select from. Must be a valid secret key.",
+ MarkdownDescription: "The key of the secret to select from. Must be a valid secret key.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "optional": schema.BoolAttribute{
+ Description: "Specify whether the Secret or its key must be defined",
+ MarkdownDescription: "Specify whether the Secret or its key must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
},
- Required: true,
- Optional: false,
+ Required: false,
+ Optional: true,
Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ },
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- "pod_affinity": schema.SingleNestedAttribute{
- Description: "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).",
- MarkdownDescription: "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).",
- Attributes: map[string]schema.Attribute{
- "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
- MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "pod_affinity_term": schema.SingleNestedAttribute{
- Description: "Required. A pod affinity term, associated with the corresponding weight.",
- MarkdownDescription: "Required. A pod affinity term, associated with the corresponding weight.",
+ "instances": schema.ListNestedAttribute{
+ Description: "Allows for the customization of configuration values for each instance within a Component.An instance represent a single replica (Pod and associated K8s resources like PVCs, Services, and ConfigMaps).While instances typically share a common configuration as defined in the ClusterComponentSpec,they can require unique settings in various scenarios:For example:- A database Component might require different resource allocations for primary and secondary instances, with primaries needing more resources.- During a rolling upgrade, a Component may first update the image for one or a few instances, and then update the remaining instances after verifying that the updated instances are functioning correctly.InstanceTemplate allows for specifying these unique configurations per instance.Each instance's name is constructed using the pattern: $(component.name)-$(template.name)-$(ordinal),starting with an ordinal of 0.It is crucial to maintain unique names for each InstanceTemplate to avoid conflicts.The sum of replicas across all InstanceTemplates should not exceed the total number of replicas specified for the Component.Any remaining replicas will be generated using the default template and will follow the default naming rules.",
+ MarkdownDescription: "Allows for the customization of configuration values for each instance within a Component.An instance represent a single replica (Pod and associated K8s resources like PVCs, Services, and ConfigMaps).While instances typically share a common configuration as defined in the ClusterComponentSpec,they can require unique settings in various scenarios:For example:- A database Component might require different resource allocations for primary and secondary instances, with primaries needing more resources.- During a rolling upgrade, a Component may first update the image for one or a few instances, and then update the remaining instances after verifying that the updated instances are functioning correctly.InstanceTemplate allows for specifying these unique configurations per instance.Each instance's name is constructed using the pattern: $(component.name)-$(template.name)-$(ordinal),starting with an ordinal of 0.It is crucial to maintain unique names for each InstanceTemplate to avoid conflicts.The sum of replicas across all InstanceTemplates should not exceed the total number of replicas specified for the Component.Any remaining replicas will be generated using the default template and will follow the default naming rules.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "annotations": schema.MapAttribute{
+ Description: "Specifies a map of key-value pairs to be merged into the Pod's existing annotations.Existing keys will have their values overwritten, while new keys will be added to the annotations.",
+ MarkdownDescription: "Specifies a map of key-value pairs to be merged into the Pod's existing annotations.Existing keys will have their values overwritten, while new keys will be added to the annotations.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "env": schema.ListNestedAttribute{
+ Description: "Defines Env to override.Add new or override existing envs.",
+ MarkdownDescription: "Defines Env to override.Add new or override existing envs.",
+ NestedObject: schema.NestedAttributeObject{
Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "A label query over a set of resources, in this case pods.",
- MarkdownDescription: "A label query over a set of resources, in this case pods.",
+ "name": schema.StringAttribute{
+ Description: "Name of the environment variable. Must be a C_IDENTIFIER.",
+ MarkdownDescription: "Name of the environment variable. Must be a C_IDENTIFIER.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "value": schema.StringAttribute{
+ Description: "Variable references $(VAR_NAME) are expandedusing the previously defined environment variables in the container andany service environment variables. If a variable cannot be resolved,the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.'$$(VAR_NAME)' will produce the string literal '$(VAR_NAME)'.Escaped references will never be expanded, regardless of whether the variableexists or not.Defaults to ''.",
+ MarkdownDescription: "Variable references $(VAR_NAME) are expandedusing the previously defined environment variables in the container andany service environment variables. If a variable cannot be resolved,the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.'$$(VAR_NAME)' will produce the string literal '$(VAR_NAME)'.Escaped references will never be expanded, regardless of whether the variableexists or not.Defaults to ''.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "value_from": schema.SingleNestedAttribute{
+ Description: "Source for the environment variable's value. Cannot be used if value is not empty.",
+ MarkdownDescription: "Source for the environment variable's value. Cannot be used if value is not empty.",
Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "config_map_key_ref": schema.SingleNestedAttribute{
+ Description: "Selects a key of a ConfigMap.",
+ MarkdownDescription: "Selects a key of a ConfigMap.",
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The key to select.",
+ MarkdownDescription: "The key to select.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "optional": schema.BoolAttribute{
+ Description: "Specify whether the ConfigMap or its key must be defined",
+ MarkdownDescription: "Specify whether the ConfigMap or its key must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
},
Required: false,
@@ -7854,53 +11868,24 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "namespace_selector": schema.SingleNestedAttribute{
- Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "field_ref": schema.SingleNestedAttribute{
+ Description: "Selects a field of the pod: supports metadata.name, metadata.namespace, 'metadata.labels['']', 'metadata.annotations['']',spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.",
+ MarkdownDescription: "Selects a field of the pod: supports metadata.name, metadata.namespace, 'metadata.labels['']', 'metadata.annotations['']',spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.",
+ Attributes: map[string]schema.Attribute{
+ "api_version": schema.StringAttribute{
+ Description: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ MarkdownDescription: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "field_path": schema.StringAttribute{
+ Description: "Path of the field to select in the specified API version.",
+ MarkdownDescription: "Path of the field to select in the specified API version.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
},
Required: false,
@@ -7908,861 +11893,1046 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "namespaces": schema.ListAttribute{
- Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "topology_key": schema.StringAttribute{
- Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "weight": schema.Int64Attribute{
- Description: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
- MarkdownDescription: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "required_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
- MarkdownDescription: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "A label query over a set of resources, in this case pods.",
- MarkdownDescription: "A label query over a set of resources, in this case pods.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "resource_field_ref": schema.SingleNestedAttribute{
+ Description: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.",
+ MarkdownDescription: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.",
+ Attributes: map[string]schema.Attribute{
+ "container_name": schema.StringAttribute{
+ Description: "Container name: required for volumes, optional for env vars",
+ MarkdownDescription: "Container name: required for volumes, optional for env vars",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
+ "divisor": schema.StringAttribute{
+ Description: "Specifies the output format of the exposed resources, defaults to '1'",
+ MarkdownDescription: "Specifies the output format of the exposed resources, defaults to '1'",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "resource": schema.StringAttribute{
+ Description: "Required: resource to select",
+ MarkdownDescription: "Required: resource to select",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
+ "secret_key_ref": schema.SingleNestedAttribute{
+ Description: "Selects a key of a secret in the pod's namespace",
+ MarkdownDescription: "Selects a key of a secret in the pod's namespace",
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The key of the secret to select from. Must be a valid secret key.",
+ MarkdownDescription: "The key of the secret to select from. Must be a valid secret key.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "optional": schema.BoolAttribute{
+ Description: "Specify whether the Secret or its key must be defined",
+ MarkdownDescription: "Specify whether the Secret or its key must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
},
Required: false,
Optional: true,
Computed: false,
},
-
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "namespace_selector": schema.SingleNestedAttribute{
- Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "image": schema.StringAttribute{
+ Description: "Specifies an override for the first container's image in the Pod.",
+ MarkdownDescription: "Specifies an override for the first container's image in the Pod.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "labels": schema.MapAttribute{
+ Description: "Specifies a map of key-value pairs that will be merged into the Pod's existing labels.Values for existing keys will be overwritten, and new keys will be added.",
+ MarkdownDescription: "Specifies a map of key-value pairs that will be merged into the Pod's existing labels.Values for existing keys will be overwritten, and new keys will be added.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "Name specifies the unique name of the instance Pod created using this InstanceTemplate.This name is constructed by concatenating the Component's name, the template's name, and the instance's ordinalusing the pattern: $(cluster.name)-$(component.name)-$(template.name)-$(ordinal). Ordinals start from 0.The specified name overrides any default naming conventions or patterns.",
+ MarkdownDescription: "Name specifies the unique name of the instance Pod created using this InstanceTemplate.This name is constructed by concatenating the Component's name, the template's name, and the instance's ordinalusing the pattern: $(cluster.name)-$(component.name)-$(template.name)-$(ordinal). Ordinals start from 0.The specified name overrides any default naming conventions or patterns.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.LengthAtMost(54),
+ stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z0-9]([a-z0-9\.\-]*[a-z0-9])?$`), ""),
+ },
+ },
+
+ "replicas": schema.Int64Attribute{
+ Description: "Specifies the number of instances (Pods) to create from this InstanceTemplate.This field allows setting how many replicated instances of the Component,with the specific overrides in the InstanceTemplate, are created.The default value is 1. A value of 0 disables instance creation.",
+ MarkdownDescription: "Specifies the number of instances (Pods) to create from this InstanceTemplate.This field allows setting how many replicated instances of the Component,with the specific overrides in the InstanceTemplate, are created.The default value is 1. A value of 0 disables instance creation.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.Int64{
+ int64validator.AtLeast(0),
+ },
+ },
+
+ "resources": schema.SingleNestedAttribute{
+ Description: "Specifies an override for the resource requirements of the first container in the Pod.This field allows for customizing resource allocation (CPU, memory, etc.) for the container.",
+ MarkdownDescription: "Specifies an override for the resource requirements of the first container in the Pod.This field allows for customizing resource allocation (CPU, memory, etc.) for the container.",
+ Attributes: map[string]schema.Attribute{
+ "claims": schema.ListNestedAttribute{
+ Description: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ MarkdownDescription: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ MarkdownDescription: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "limits": schema.MapAttribute{
+ Description: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- "namespaces": schema.ListAttribute{
- Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
+ "requests": schema.MapAttribute{
+ Description: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "scheduling_policy": schema.SingleNestedAttribute{
+ Description: "Specifies the scheduling policy for the Component.",
+ MarkdownDescription: "Specifies the scheduling policy for the Component.",
+ Attributes: map[string]schema.Attribute{
+ "affinity": schema.SingleNestedAttribute{
+ Description: "Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity.",
+ MarkdownDescription: "Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity.",
+ Attributes: map[string]schema.Attribute{
+ "node_affinity": schema.SingleNestedAttribute{
+ Description: "Describes node affinity scheduling rules for the pod.",
+ MarkdownDescription: "Describes node affinity scheduling rules for the pod.",
+ Attributes: map[string]schema.Attribute{
+ "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred.",
+ MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "preference": schema.SingleNestedAttribute{
+ Description: "A node selector term, associated with the corresponding weight.",
+ MarkdownDescription: "A node selector term, associated with the corresponding weight.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "A list of node selector requirements by node's labels.",
+ MarkdownDescription: "A list of node selector requirements by node's labels.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The label key that the selector applies to.",
+ MarkdownDescription: "The label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "topology_key": schema.StringAttribute{
- Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "match_fields": schema.ListNestedAttribute{
+ Description: "A list of node selector requirements by node's fields.",
+ MarkdownDescription: "A list of node selector requirements by node's fields.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The label key that the selector applies to.",
+ MarkdownDescription: "The label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "pod_anti_affinity": schema.SingleNestedAttribute{
- Description: "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).",
- MarkdownDescription: "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).",
- Attributes: map[string]schema.Attribute{
- "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
- MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "pod_affinity_term": schema.SingleNestedAttribute{
- Description: "Required. A pod affinity term, associated with the corresponding weight.",
- MarkdownDescription: "Required. A pod affinity term, associated with the corresponding weight.",
- Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "A label query over a set of resources, in this case pods.",
- MarkdownDescription: "A label query over a set of resources, in this case pods.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
+ "weight": schema.Int64Attribute{
+ Description: "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.",
+ MarkdownDescription: "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
},
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- "namespace_selector": schema.SingleNestedAttribute{
- Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
+ "required_during_scheduling_ignored_during_execution": schema.SingleNestedAttribute{
+ Description: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node.",
+ MarkdownDescription: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node.",
Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "node_selector_terms": schema.ListNestedAttribute{
+ Description: "Required. A list of node selector terms. The terms are ORed.",
+ MarkdownDescription: "Required. A list of node selector terms. The terms are ORed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "A list of node selector requirements by node's labels.",
+ MarkdownDescription: "A list of node selector requirements by node's labels.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The label key that the selector applies to.",
+ MarkdownDescription: "The label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
+ "match_fields": schema.ListNestedAttribute{
+ Description: "A list of node selector requirements by node's fields.",
+ MarkdownDescription: "A list of node selector requirements by node's fields.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The label key that the selector applies to.",
+ MarkdownDescription: "The label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- "namespaces": schema.ListAttribute{
- Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "pod_affinity": schema.SingleNestedAttribute{
+ Description: "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).",
+ MarkdownDescription: "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).",
+ Attributes: map[string]schema.Attribute{
+ "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
+ MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "pod_affinity_term": schema.SingleNestedAttribute{
+ Description: "Required. A pod affinity term, associated with the corresponding weight.",
+ MarkdownDescription: "Required. A pod affinity term, associated with the corresponding weight.",
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "A label query over a set of resources, in this case pods.",
+ MarkdownDescription: "A label query over a set of resources, in this case pods.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "topology_key": schema.StringAttribute{
- Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "weight": schema.Int64Attribute{
- Description: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
- MarkdownDescription: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "required_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
- MarkdownDescription: "If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "A label query over a set of resources, in this case pods.",
- MarkdownDescription: "A label query over a set of resources, in this case pods.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "namespace_selector": schema.SingleNestedAttribute{
+ Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "namespace_selector": schema.SingleNestedAttribute{
- Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "namespaces": schema.ListAttribute{
+ Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "topology_key": schema.StringAttribute{
+ Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
+ "weight": schema.Int64Attribute{
+ Description: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
+ MarkdownDescription: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "required_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
+ MarkdownDescription: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "A label query over a set of resources, in this case pods.",
+ MarkdownDescription: "A label query over a set of resources, in this case pods.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "namespaces": schema.ListAttribute{
- Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "topology_key": schema.StringAttribute{
- Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "node_name": schema.StringAttribute{
- Description: "NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.",
- MarkdownDescription: "NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "node_selector": schema.MapAttribute{
- Description: "NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/",
- MarkdownDescription: "NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "namespace_selector": schema.SingleNestedAttribute{
+ Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "scheduler_name": schema.StringAttribute{
- Description: "If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.",
- MarkdownDescription: "If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "tolerations": schema.ListNestedAttribute{
- Description: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.",
- MarkdownDescription: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "effect": schema.StringAttribute{
- Description: "Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.",
- MarkdownDescription: "Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "key": schema.StringAttribute{
- Description: "Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.",
- MarkdownDescription: "Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.",
- MarkdownDescription: "Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "namespaces": schema.ListAttribute{
+ Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "toleration_seconds": schema.Int64Attribute{
- Description: "TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.",
- MarkdownDescription: "TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "topology_key": schema.StringAttribute{
+ Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "value": schema.StringAttribute{
- Description: "Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.",
- MarkdownDescription: "Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "pod_anti_affinity": schema.SingleNestedAttribute{
+ Description: "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).",
+ MarkdownDescription: "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).",
+ Attributes: map[string]schema.Attribute{
+ "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
+ MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "pod_affinity_term": schema.SingleNestedAttribute{
+ Description: "Required. A pod affinity term, associated with the corresponding weight.",
+ MarkdownDescription: "Required. A pod affinity term, associated with the corresponding weight.",
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "A label query over a set of resources, in this case pods.",
+ MarkdownDescription: "A label query over a set of resources, in this case pods.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "topology_spread_constraints": schema.ListNestedAttribute{
- Description: "TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed.",
- MarkdownDescription: "TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain.",
- MarkdownDescription: "LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "namespace_selector": schema.SingleNestedAttribute{
+ Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "match_label_keys": schema.ListAttribute{
- Description: "MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).",
- MarkdownDescription: "MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "max_skew": schema.Int64Attribute{
- Description: "MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.",
- MarkdownDescription: "MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "min_domains": schema.Int64Attribute{
- Description: "MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).",
- MarkdownDescription: "MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "node_affinity_policy": schema.StringAttribute{
- Description: "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
- MarkdownDescription: "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "namespaces": schema.ListAttribute{
+ Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "node_taints_policy": schema.StringAttribute{
- Description: "NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
- MarkdownDescription: "NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "topology_key": schema.StringAttribute{
+ Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "weight": schema.Int64Attribute{
+ Description: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
+ MarkdownDescription: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "topology_key": schema.StringAttribute{
- Description: "TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.",
- MarkdownDescription: "TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "required_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
+ MarkdownDescription: "If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "A label query over a set of resources, in this case pods.",
+ MarkdownDescription: "A label query over a set of resources, in this case pods.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "when_unsatisfiable": schema.StringAttribute{
- Description: "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.",
- MarkdownDescription: "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "services": schema.MapAttribute{
- Description: "Defines a list of additional Services that are exposed by a Cluster.This field allows Services of selected Components, either from 'componentSpecs' or 'shardingSpecs' to be exposed,alongside Services defined with ComponentService.Services defined here can be referenced by other clusters using the ServiceRefClusterSelector.",
- MarkdownDescription: "Defines a list of additional Services that are exposed by a Cluster.This field allows Services of selected Components, either from 'componentSpecs' or 'shardingSpecs' to be exposed,alongside Services defined with ComponentService.Services defined here can be referenced by other clusters using the ServiceRefClusterSelector.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "sharding_specs": schema.ListNestedAttribute{
- Description: "Specifies a list of ShardingSpec objects that manage the sharding topology for Cluster Components.Each ShardingSpec organizes components into shards, with each shard corresponding to a Component.Components within a shard are all based on a common ClusterComponentSpec template, ensuring uniform configurations.This field supports dynamic resharding by facilitating the addition or removal of shardsthrough the 'shards' field in ShardingSpec.Note: 'shardingSpecs' and 'componentSpecs' cannot both be empty; at least one must be defined to configure a Cluster.",
- MarkdownDescription: "Specifies a list of ShardingSpec objects that manage the sharding topology for Cluster Components.Each ShardingSpec organizes components into shards, with each shard corresponding to a Component.Components within a shard are all based on a common ClusterComponentSpec template, ensuring uniform configurations.This field supports dynamic resharding by facilitating the addition or removal of shardsthrough the 'shards' field in ShardingSpec.Note: 'shardingSpecs' and 'componentSpecs' cannot both be empty; at least one must be defined to configure a Cluster.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Represents the common parent part of all shard names.This identifier is included as part of the Service DNS name and must comply with IANA service naming rules.It is used to generate the names of underlying Components following the pattern '$(shardingSpec.name)-$(ShardID)'.ShardID is a random string that is appended to the Name to generate unique identifiers for each shard.For example, if the sharding specification name is 'my-shard' and the ShardID is 'abc', the resulting Component namewould be 'my-shard-abc'.Note that the name defined in Component template('shardingSpec.template.name') will be disregardedwhen generating the Component names of the shards. The 'shardingSpec.name' field takes precedence.",
- MarkdownDescription: "Represents the common parent part of all shard names.This identifier is included as part of the Service DNS name and must comply with IANA service naming rules.It is used to generate the names of underlying Components following the pattern '$(shardingSpec.name)-$(ShardID)'.ShardID is a random string that is appended to the Name to generate unique identifiers for each shard.For example, if the sharding specification name is 'my-shard' and the ShardID is 'abc', the resulting Component namewould be 'my-shard-abc'.Note that the name defined in Component template('shardingSpec.template.name') will be disregardedwhen generating the Component names of the shards. The 'shardingSpec.name' field takes precedence.",
- Required: true,
- Optional: false,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.LengthAtMost(15),
- stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z0-9]([a-z0-9\.\-]*[a-z0-9])?$`), ""),
- },
- },
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "shards": schema.Int64Attribute{
- Description: "Specifies the desired number of shards.Users can declare the desired number of shards through this field.KubeBlocks dynamically creates and deletes Components based on the differencebetween the desired and actual number of shards.KubeBlocks provides lifecycle management for sharding, including:- Executing the postProvision Action defined in the ComponentDefinition when the number of shards increases. This allows for custom actions to be performed after a new shard is provisioned.- Executing the preTerminate Action defined in the ComponentDefinition when the number of shards decreases. This enables custom cleanup or data migration tasks to be executed before a shard is terminated. Resources and data associated with the corresponding Component will also be deleted.",
- MarkdownDescription: "Specifies the desired number of shards.Users can declare the desired number of shards through this field.KubeBlocks dynamically creates and deletes Components based on the differencebetween the desired and actual number of shards.KubeBlocks provides lifecycle management for sharding, including:- Executing the postProvision Action defined in the ComponentDefinition when the number of shards increases. This allows for custom actions to be performed after a new shard is provisioned.- Executing the preTerminate Action defined in the ComponentDefinition when the number of shards decreases. This enables custom cleanup or data migration tasks to be executed before a shard is terminated. Resources and data associated with the corresponding Component will also be deleted.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.Int64{
- int64validator.AtLeast(0),
- int64validator.AtMost(2048),
- },
- },
+ "namespace_selector": schema.SingleNestedAttribute{
+ Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "template": schema.SingleNestedAttribute{
- Description: "The template for generating Components for shards, where each shard consists of one Component.This field is of type ClusterComponentSpec, which encapsulates all the required details anddefinitions for creating and managing the Components.KubeBlocks uses this template to generate a set of identical Components or shards.All the generated Components will have the same specifications and definitions as specified in the 'template' field.This allows for the creation of multiple Components with consistent configurations,enabling sharding and distribution of workloads across Components.",
- MarkdownDescription: "The template for generating Components for shards, where each shard consists of one Component.This field is of type ClusterComponentSpec, which encapsulates all the required details anddefinitions for creating and managing the Components.KubeBlocks uses this template to generate a set of identical Components or shards.All the generated Components will have the same specifications and definitions as specified in the 'template' field.This allows for the creation of multiple Components with consistent configurations,enabling sharding and distribution of workloads across Components.",
- Attributes: map[string]schema.Attribute{
- "affinity": schema.SingleNestedAttribute{
- Description: "Specifies a group of affinity scheduling rules for the Component.It allows users to control how the Component's Pods are scheduled onto nodes in the K8s cluster.Deprecated since v0.10, replaced by the 'schedulingPolicy' field.",
- MarkdownDescription: "Specifies a group of affinity scheduling rules for the Component.It allows users to control how the Component's Pods are scheduled onto nodes in the K8s cluster.Deprecated since v0.10, replaced by the 'schedulingPolicy' field.",
- Attributes: map[string]schema.Attribute{
- "node_labels": schema.MapAttribute{
- Description: "Indicates the node labels that must be present on nodes for pods to be scheduled on them.It is a map where the keys are the label keys and the values are the corresponding label values.Pods will only be scheduled on nodes that have all the specified labels with the corresponding values.For example, if NodeLabels is set to {'nodeType': 'ssd', 'environment': 'production'},pods will only be scheduled on nodes that have both the 'nodeType' label with value 'ssd'and the 'environment' label with value 'production'.This field allows users to control Pod placement based on specific node labels.It can be used to ensure that Pods are scheduled on nodes with certain characteristics,such as specific hardware (e.g., SSD), environment (e.g., production, staging),or any other custom labels assigned to nodes.",
- MarkdownDescription: "Indicates the node labels that must be present on nodes for pods to be scheduled on them.It is a map where the keys are the label keys and the values are the corresponding label values.Pods will only be scheduled on nodes that have all the specified labels with the corresponding values.For example, if NodeLabels is set to {'nodeType': 'ssd', 'environment': 'production'},pods will only be scheduled on nodes that have both the 'nodeType' label with value 'ssd'and the 'environment' label with value 'production'.This field allows users to control Pod placement based on specific node labels.It can be used to ensure that Pods are scheduled on nodes with certain characteristics,such as specific hardware (e.g., SSD), environment (e.g., production, staging),or any other custom labels assigned to nodes.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "pod_anti_affinity": schema.StringAttribute{
- Description: "Specifies the anti-affinity level of Pods within a Component.It determines how pods should be spread across nodes to improve availability and performance.It can have the following values: 'Preferred' and 'Required'.The default value is 'Preferred'.",
- MarkdownDescription: "Specifies the anti-affinity level of Pods within a Component.It determines how pods should be spread across nodes to improve availability and performance.It can have the following values: 'Preferred' and 'Required'.The default value is 'Preferred'.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.OneOf("Preferred", "Required"),
- },
- },
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "tenancy": schema.StringAttribute{
- Description: "Determines the level of resource isolation between Pods.It can have the following values: 'SharedNode' and 'DedicatedNode'.- SharedNode: Allow that multiple Pods may share the same node, which is the default behavior of K8s.- DedicatedNode: Each Pod runs on a dedicated node, ensuring that no two Pods share the same node. In other words, if a Pod is already running on a node, no other Pods will be scheduled on that node. Which provides a higher level of isolation and resource guarantee for Pods. The default value is 'SharedNode'.",
- MarkdownDescription: "Determines the level of resource isolation between Pods.It can have the following values: 'SharedNode' and 'DedicatedNode'.- SharedNode: Allow that multiple Pods may share the same node, which is the default behavior of K8s.- DedicatedNode: Each Pod runs on a dedicated node, ensuring that no two Pods share the same node. In other words, if a Pod is already running on a node, no other Pods will be scheduled on that node. Which provides a higher level of isolation and resource guarantee for Pods. The default value is 'SharedNode'.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.OneOf("SharedNode", "DedicatedNode"),
- },
- },
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "topology_keys": schema.ListAttribute{
- Description: "Represents the key of node labels used to define the topology domain for Pod anti-affinityand Pod spread constraints.In K8s, a topology domain is a set of nodes that have the same value for a specific label key.Nodes with labels containing any of the specified TopologyKeys and identical values are consideredto be in the same topology domain.Note: The concept of topology in the context of K8s TopologyKeys is different from the concept oftopology in the ClusterDefinition.When a Pod has anti-affinity or spread constraints specified, Kubernetes will attempt to schedule thePod on nodes with different values for the specified TopologyKeys.This ensures that Pods are spread across different topology domains, promoting high availability andreducing the impact of node failures.Some well-known label keys, such as 'kubernetes.io/hostname' and 'topology.kubernetes.io/zone',are often used as TopologyKey.These keys represent the hostname and zone of a node, respectively.By including these keys in the TopologyKeys list, Pods will be spread across nodes withdifferent hostnames or zones.In addition to the well-known keys, users can also specify custom label keys as TopologyKeys.This allows for more flexible and custom topology definitions based on the specific needsof the application or environment.The TopologyKeys field is a slice of strings, where each string represents a label key.The order of the keys in the slice does not matter.",
- MarkdownDescription: "Represents the key of node labels used to define the topology domain for Pod anti-affinityand Pod spread constraints.In K8s, a topology domain is a set of nodes that have the same value for a specific label key.Nodes with labels containing any of the specified TopologyKeys and identical values are consideredto be in the same topology domain.Note: The concept of topology in the context of K8s TopologyKeys is different from the concept oftopology in the ClusterDefinition.When a Pod has anti-affinity or spread constraints specified, Kubernetes will attempt to schedule thePod on nodes with different values for the specified TopologyKeys.This ensures that Pods are spread across different topology domains, promoting high availability andreducing the impact of node failures.Some well-known label keys, such as 'kubernetes.io/hostname' and 'topology.kubernetes.io/zone',are often used as TopologyKey.These keys represent the hostname and zone of a node, respectively.By including these keys in the TopologyKeys list, Pods will be spread across nodes withdifferent hostnames or zones.In addition to the well-known keys, users can also specify custom label keys as TopologyKeys.This allows for more flexible and custom topology definitions based on the specific needsof the application or environment.The TopologyKeys field is a slice of strings, where each string represents a label key.The order of the keys in the slice does not matter.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "namespaces": schema.ListAttribute{
+ Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "component_def": schema.StringAttribute{
- Description: "References the name of a ComponentDefinition object.The ComponentDefinition specifies the behavior and characteristics of the Component.If both 'componentDefRef' and 'componentDef' are provided,the 'componentDef' will take precedence over 'componentDefRef'.",
- MarkdownDescription: "References the name of a ComponentDefinition object.The ComponentDefinition specifies the behavior and characteristics of the Component.If both 'componentDefRef' and 'componentDef' are provided,the 'componentDef' will take precedence over 'componentDefRef'.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.LengthAtMost(64),
- stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z0-9]([a-z0-9\.\-]*[a-z0-9])?$`), ""),
- },
- },
+ "topology_key": schema.StringAttribute{
+ Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "component_def_ref": schema.StringAttribute{
- Description: "References a ClusterComponentDefinition defined in the 'clusterDefinition.spec.componentDef' field.Must comply with the IANA service naming rule.Deprecated since v0.9,because defining Components in 'clusterDefinition.spec.componentDef' field has been deprecated.This field is replaced by the 'componentDef' field, use 'componentDef' instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.TODO +kubebuilder:validation:XValidation:rule='self == oldSelf',message='componentDefRef is immutable'",
- MarkdownDescription: "References a ClusterComponentDefinition defined in the 'clusterDefinition.spec.componentDef' field.Must comply with the IANA service naming rule.Deprecated since v0.9,because defining Components in 'clusterDefinition.spec.componentDef' field has been deprecated.This field is replaced by the 'componentDef' field, use 'componentDef' instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.TODO +kubebuilder:validation:XValidation:rule='self == oldSelf',message='componentDefRef is immutable'",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.LengthAtMost(22),
- stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z]([a-z0-9\-]*[a-z0-9])?$`), ""),
- },
- },
+ "node_name": schema.StringAttribute{
+ Description: "NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.",
+ MarkdownDescription: "NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "configs": schema.ListNestedAttribute{
- Description: "",
- MarkdownDescription: "",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "config_map": schema.SingleNestedAttribute{
- Description: "ConfigMap source for the config.",
- MarkdownDescription: "ConfigMap source for the config.",
- Attributes: map[string]schema.Attribute{
- "default_mode": schema.Int64Attribute{
- Description: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ "node_selector": schema.MapAttribute{
+ Description: "NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/",
+ MarkdownDescription: "NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/",
+ ElementType: types.StringType,
Required: false,
Optional: true,
Computed: false,
},
- "items": schema.ListNestedAttribute{
- Description: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ "scheduler_name": schema.StringAttribute{
+ Description: "If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.",
+ MarkdownDescription: "If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "tolerations": schema.ListNestedAttribute{
+ Description: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.",
+ MarkdownDescription: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.",
NestedObject: schema.NestedAttributeObject{
Attributes: map[string]schema.Attribute{
+ "effect": schema.StringAttribute{
+ Description: "Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.",
+ MarkdownDescription: "Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
"key": schema.StringAttribute{
- Description: "key is the key to project.",
- MarkdownDescription: "key is the key to project.",
- Required: true,
- Optional: false,
+ Description: "Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.",
+ MarkdownDescription: "Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.",
+ Required: false,
+ Optional: true,
Computed: false,
},
- "mode": schema.Int64Attribute{
- Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ "operator": schema.StringAttribute{
+ Description: "Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.",
+ MarkdownDescription: "Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.",
Required: false,
Optional: true,
Computed: false,
},
- "path": schema.StringAttribute{
- Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- Required: true,
- Optional: false,
+ "toleration_seconds": schema.Int64Attribute{
+ Description: "TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.",
+ MarkdownDescription: "TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "value": schema.StringAttribute{
+ Description: "Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.",
+ MarkdownDescription: "Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.",
+ Required: false,
+ Optional: true,
Computed: false,
},
},
@@ -8772,219 +12942,219 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "topology_spread_constraints": schema.ListNestedAttribute{
+ Description: "TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed.",
+ MarkdownDescription: "TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain.",
+ MarkdownDescription: "LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "optional": schema.BoolAttribute{
- Description: "optional specify whether the ConfigMap or its keys must be defined",
- MarkdownDescription: "optional specify whether the ConfigMap or its keys must be defined",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "name": schema.StringAttribute{
- Description: "The name of the config.",
- MarkdownDescription: "The name of the config.",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "disable_exporter": schema.BoolAttribute{
- Description: "Determines whether metrics exporter information is annotated on the Component's headless Service.If set to true, the following annotations will not be patched into the Service:- 'monitor.kubeblocks.io/path'- 'monitor.kubeblocks.io/port'- 'monitor.kubeblocks.io/scheme'These annotations allow the Prometheus installed by KubeBlocks to discover and scrape metrics from the exporter.",
- MarkdownDescription: "Determines whether metrics exporter information is annotated on the Component's headless Service.If set to true, the following annotations will not be patched into the Service:- 'monitor.kubeblocks.io/path'- 'monitor.kubeblocks.io/port'- 'monitor.kubeblocks.io/scheme'These annotations allow the Prometheus installed by KubeBlocks to discover and scrape metrics from the exporter.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "enabled_logs": schema.ListAttribute{
- Description: "Specifies which types of logs should be collected for the Component.The log types are defined in the 'componentDefinition.spec.logConfigs' field with the LogConfig entries.The elements in the 'enabledLogs' array correspond to the names of the LogConfig entries.For example, if the 'componentDefinition.spec.logConfigs' defines LogConfig entries withnames 'slow_query_log' and 'error_log',you can enable the collection of these logs by including their names in the 'enabledLogs' array:'''yamlenabledLogs:- slow_query_log- error_log'''",
- MarkdownDescription: "Specifies which types of logs should be collected for the Component.The log types are defined in the 'componentDefinition.spec.logConfigs' field with the LogConfig entries.The elements in the 'enabledLogs' array correspond to the names of the LogConfig entries.For example, if the 'componentDefinition.spec.logConfigs' defines LogConfig entries withnames 'slow_query_log' and 'error_log',you can enable the collection of these logs by including their names in the 'enabledLogs' array:'''yamlenabledLogs:- slow_query_log- error_log'''",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "match_label_keys": schema.ListAttribute{
+ Description: "MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).",
+ MarkdownDescription: "MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "instances": schema.ListNestedAttribute{
- Description: "Allows for the customization of configuration values for each instance within a Component.An instance represent a single replica (Pod and associated K8s resources like PVCs, Services, and ConfigMaps).While instances typically share a common configuration as defined in the ClusterComponentSpec,they can require unique settings in various scenarios:For example:- A database Component might require different resource allocations for primary and secondary instances, with primaries needing more resources.- During a rolling upgrade, a Component may first update the image for one or a few instances, and then update the remaining instances after verifying that the updated instances are functioning correctly.InstanceTemplate allows for specifying these unique configurations per instance.Each instance's name is constructed using the pattern: $(component.name)-$(template.name)-$(ordinal),starting with an ordinal of 0.It is crucial to maintain unique names for each InstanceTemplate to avoid conflicts.The sum of replicas across all InstanceTemplates should not exceed the total number of replicas specified for the Component.Any remaining replicas will be generated using the default template and will follow the default naming rules.",
- MarkdownDescription: "Allows for the customization of configuration values for each instance within a Component.An instance represent a single replica (Pod and associated K8s resources like PVCs, Services, and ConfigMaps).While instances typically share a common configuration as defined in the ClusterComponentSpec,they can require unique settings in various scenarios:For example:- A database Component might require different resource allocations for primary and secondary instances, with primaries needing more resources.- During a rolling upgrade, a Component may first update the image for one or a few instances, and then update the remaining instances after verifying that the updated instances are functioning correctly.InstanceTemplate allows for specifying these unique configurations per instance.Each instance's name is constructed using the pattern: $(component.name)-$(template.name)-$(ordinal),starting with an ordinal of 0.It is crucial to maintain unique names for each InstanceTemplate to avoid conflicts.The sum of replicas across all InstanceTemplates should not exceed the total number of replicas specified for the Component.Any remaining replicas will be generated using the default template and will follow the default naming rules.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "annotations": schema.MapAttribute{
- Description: "Specifies a map of key-value pairs to be merged into the Pod's existing annotations.Existing keys will have their values overwritten, while new keys will be added to the annotations.",
- MarkdownDescription: "Specifies a map of key-value pairs to be merged into the Pod's existing annotations.Existing keys will have their values overwritten, while new keys will be added to the annotations.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
+ "max_skew": schema.Int64Attribute{
+ Description: "MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.",
+ MarkdownDescription: "MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "min_domains": schema.Int64Attribute{
+ Description: "MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).",
+ MarkdownDescription: "MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "node_affinity_policy": schema.StringAttribute{
+ Description: "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
+ MarkdownDescription: "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "node_taints_policy": schema.StringAttribute{
+ Description: "NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
+ MarkdownDescription: "NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "topology_key": schema.StringAttribute{
+ Description: "TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.",
+ MarkdownDescription: "TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "when_unsatisfiable": schema.StringAttribute{
+ Description: "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.",
+ MarkdownDescription: "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- "env": schema.ListNestedAttribute{
- Description: "Defines Env to override.Add new or override existing envs.",
- MarkdownDescription: "Defines Env to override.Add new or override existing envs.",
+ "volume_claim_templates": schema.ListNestedAttribute{
+ Description: "Defines VolumeClaimTemplates to override.Add new or override existing volume claim templates.",
+ MarkdownDescription: "Defines VolumeClaimTemplates to override.Add new or override existing volume claim templates.",
NestedObject: schema.NestedAttributeObject{
Attributes: map[string]schema.Attribute{
"name": schema.StringAttribute{
- Description: "Name of the environment variable. Must be a C_IDENTIFIER.",
- MarkdownDescription: "Name of the environment variable. Must be a C_IDENTIFIER.",
+ Description: "Refers to the name of a volumeMount defined in either:- 'componentDefinition.spec.runtime.containers[*].volumeMounts'- 'clusterDefinition.spec.componentDefs[*].podSpec.containers[*].volumeMounts' (deprecated)The value of 'name' must match the 'name' field of a volumeMount specified in the corresponding 'volumeMounts' array.",
+ MarkdownDescription: "Refers to the name of a volumeMount defined in either:- 'componentDefinition.spec.runtime.containers[*].volumeMounts'- 'clusterDefinition.spec.componentDefs[*].podSpec.containers[*].volumeMounts' (deprecated)The value of 'name' must match the 'name' field of a volumeMount specified in the corresponding 'volumeMounts' array.",
Required: true,
Optional: false,
Computed: false,
},
- "value": schema.StringAttribute{
- Description: "Variable references $(VAR_NAME) are expandedusing the previously defined environment variables in the container andany service environment variables. If a variable cannot be resolved,the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.'$$(VAR_NAME)' will produce the string literal '$(VAR_NAME)'.Escaped references will never be expanded, regardless of whether the variableexists or not.Defaults to ''.",
- MarkdownDescription: "Variable references $(VAR_NAME) are expandedusing the previously defined environment variables in the container andany service environment variables. If a variable cannot be resolved,the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.'$$(VAR_NAME)' will produce the string literal '$(VAR_NAME)'.Escaped references will never be expanded, regardless of whether the variableexists or not.Defaults to ''.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "value_from": schema.SingleNestedAttribute{
- Description: "Source for the environment variable's value. Cannot be used if value is not empty.",
- MarkdownDescription: "Source for the environment variable's value. Cannot be used if value is not empty.",
+ "spec": schema.SingleNestedAttribute{
+ Description: "Defines the desired characteristics of a PersistentVolumeClaim that will be created for the volumewith the mount name specified in the 'name' field.When a Pod is created for this ClusterComponent, a new PVC will be created based on the specificationdefined in the 'spec' field. The PVC will be associated with the volume mount specified by the 'name' field.",
+ MarkdownDescription: "Defines the desired characteristics of a PersistentVolumeClaim that will be created for the volumewith the mount name specified in the 'name' field.When a Pod is created for this ClusterComponent, a new PVC will be created based on the specificationdefined in the 'spec' field. The PVC will be associated with the volume mount specified by the 'name' field.",
Attributes: map[string]schema.Attribute{
- "config_map_key_ref": schema.SingleNestedAttribute{
- Description: "Selects a key of a ConfigMap.",
- MarkdownDescription: "Selects a key of a ConfigMap.",
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The key to select.",
- MarkdownDescription: "The key to select.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "optional": schema.BoolAttribute{
- Description: "Specify whether the ConfigMap or its key must be defined",
- MarkdownDescription: "Specify whether the ConfigMap or its key must be defined",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ "access_modes": schema.MapAttribute{
+ Description: "Contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1.",
+ MarkdownDescription: "Contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- "field_ref": schema.SingleNestedAttribute{
- Description: "Selects a field of the pod: supports metadata.name, metadata.namespace, 'metadata.labels['']', 'metadata.annotations['']',spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.",
- MarkdownDescription: "Selects a field of the pod: supports metadata.name, metadata.namespace, 'metadata.labels['']', 'metadata.annotations['']',spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.",
+ "resources": schema.SingleNestedAttribute{
+ Description: "Represents the minimum resources the volume should have.If the RecoverVolumeExpansionFailure feature is enabled, users are allowed to specify resource requirements thatare lower than the previous value but must still be higher than the capacity recorded in the status field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources.",
+ MarkdownDescription: "Represents the minimum resources the volume should have.If the RecoverVolumeExpansionFailure feature is enabled, users are allowed to specify resource requirements thatare lower than the previous value but must still be higher than the capacity recorded in the status field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources.",
Attributes: map[string]schema.Attribute{
- "api_version": schema.StringAttribute{
- Description: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
- MarkdownDescription: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "field_path": schema.StringAttribute{
- Description: "Path of the field to select in the specified API version.",
- MarkdownDescription: "Path of the field to select in the specified API version.",
- Required: true,
- Optional: false,
- Computed: false,
+ "claims": schema.ListNestedAttribute{
+ Description: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ MarkdownDescription: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ MarkdownDescription: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- "resource_field_ref": schema.SingleNestedAttribute{
- Description: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.",
- MarkdownDescription: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.",
- Attributes: map[string]schema.Attribute{
- "container_name": schema.StringAttribute{
- Description: "Container name: required for volumes, optional for env vars",
- MarkdownDescription: "Container name: required for volumes, optional for env vars",
+ "limits": schema.MapAttribute{
+ Description: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
Required: false,
Optional: true,
Computed: false,
},
- "divisor": schema.StringAttribute{
- Description: "Specifies the output format of the exposed resources, defaults to '1'",
- MarkdownDescription: "Specifies the output format of the exposed resources, defaults to '1'",
+ "requests": schema.MapAttribute{
+ Description: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
Required: false,
Optional: true,
Computed: false,
},
-
- "resource": schema.StringAttribute{
- Description: "Required: resource to select",
- MarkdownDescription: "Required: resource to select",
- Required: true,
- Optional: false,
- Computed: false,
- },
},
Required: false,
Optional: true,
Computed: false,
},
- "secret_key_ref": schema.SingleNestedAttribute{
- Description: "Selects a key of a secret in the pod's namespace",
- MarkdownDescription: "Selects a key of a secret in the pod's namespace",
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The key of the secret to select from. Must be a valid secret key.",
- MarkdownDescription: "The key of the secret to select from. Must be a valid secret key.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "storage_class_name": schema.StringAttribute{
+ Description: "The name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1.",
+ MarkdownDescription: "The name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "optional": schema.BoolAttribute{
- Description: "Specify whether the Secret or its key must be defined",
- MarkdownDescription: "Specify whether the Secret or its key must be defined",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ "volume_mode": schema.StringAttribute{
+ Description: "Defines what type of volume is required by the claim, either Block or Filesystem.",
+ MarkdownDescription: "Defines what type of volume is required by the claim, either Block or Filesystem.",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
},
Required: false,
@@ -8998,794 +13168,735 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "image": schema.StringAttribute{
- Description: "Specifies an override for the first container's image in the Pod.",
- MarkdownDescription: "Specifies an override for the first container's image in the Pod.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "volume_mounts": schema.ListNestedAttribute{
+ Description: "Defines VolumeMounts to override.Add new or override existing volume mounts of the first container in the Pod.",
+ MarkdownDescription: "Defines VolumeMounts to override.Add new or override existing volume mounts of the first container in the Pod.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "mount_path": schema.StringAttribute{
+ Description: "Path within the container at which the volume should be mounted. Mustnot contain ':'.",
+ MarkdownDescription: "Path within the container at which the volume should be mounted. Mustnot contain ':'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "labels": schema.MapAttribute{
- Description: "Specifies a map of key-value pairs that will be merged into the Pod's existing labels.Values for existing keys will be overwritten, and new keys will be added.",
- MarkdownDescription: "Specifies a map of key-value pairs that will be merged into the Pod's existing labels.Values for existing keys will be overwritten, and new keys will be added.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "mount_propagation": schema.StringAttribute{
+ Description: "mountPropagation determines how mounts are propagated from the hostto container and the other way around.When not set, MountPropagationNone is used.This field is beta in 1.10.",
+ MarkdownDescription: "mountPropagation determines how mounts are propagated from the hostto container and the other way around.When not set, MountPropagationNone is used.This field is beta in 1.10.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "name": schema.StringAttribute{
- Description: "Name specifies the unique name of the instance Pod created using this InstanceTemplate.This name is constructed by concatenating the Component's name, the template's name, and the instance's ordinalusing the pattern: $(cluster.name)-$(component.name)-$(template.name)-$(ordinal). Ordinals start from 0.The specified name overrides any default naming conventions or patterns.",
- MarkdownDescription: "Name specifies the unique name of the instance Pod created using this InstanceTemplate.This name is constructed by concatenating the Component's name, the template's name, and the instance's ordinalusing the pattern: $(cluster.name)-$(component.name)-$(template.name)-$(ordinal). Ordinals start from 0.The specified name overrides any default naming conventions or patterns.",
- Required: true,
- Optional: false,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.LengthAtMost(54),
- stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z0-9]([a-z0-9\.\-]*[a-z0-9])?$`), ""),
- },
- },
+ "name": schema.StringAttribute{
+ Description: "This must match the Name of a Volume.",
+ MarkdownDescription: "This must match the Name of a Volume.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "replicas": schema.Int64Attribute{
- Description: "Specifies the number of instances (Pods) to create from this InstanceTemplate.This field allows setting how many replicated instances of the Component,with the specific overrides in the InstanceTemplate, are created.The default value is 1. A value of 0 disables instance creation.",
- MarkdownDescription: "Specifies the number of instances (Pods) to create from this InstanceTemplate.This field allows setting how many replicated instances of the Component,with the specific overrides in the InstanceTemplate, are created.The default value is 1. A value of 0 disables instance creation.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.Int64{
- int64validator.AtLeast(0),
+ "read_only": schema.BoolAttribute{
+ Description: "Mounted read-only if true, read-write otherwise (false or unspecified).Defaults to false.",
+ MarkdownDescription: "Mounted read-only if true, read-write otherwise (false or unspecified).Defaults to false.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "sub_path": schema.StringAttribute{
+ Description: "Path within the volume from which the container's volume should be mounted.Defaults to '' (volume's root).",
+ MarkdownDescription: "Path within the volume from which the container's volume should be mounted.Defaults to '' (volume's root).",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "sub_path_expr": schema.StringAttribute{
+ Description: "Expanded path within the volume from which the container's volume should be mounted.Behaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.Defaults to '' (volume's root).SubPathExpr and SubPath are mutually exclusive.",
+ MarkdownDescription: "Expanded path within the volume from which the container's volume should be mounted.Behaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.Defaults to '' (volume's root).SubPathExpr and SubPath are mutually exclusive.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- "resources": schema.SingleNestedAttribute{
- Description: "Specifies an override for the resource requirements of the first container in the Pod.This field allows for customizing resource allocation (CPU, memory, etc.) for the container.",
- MarkdownDescription: "Specifies an override for the resource requirements of the first container in the Pod.This field allows for customizing resource allocation (CPU, memory, etc.) for the container.",
- Attributes: map[string]schema.Attribute{
- "claims": schema.ListNestedAttribute{
- Description: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
- MarkdownDescription: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
- NestedObject: schema.NestedAttributeObject{
+ "volumes": schema.ListNestedAttribute{
+ Description: "Defines Volumes to override.Add new or override existing volumes.",
+ MarkdownDescription: "Defines Volumes to override.Add new or override existing volumes.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "aws_elastic_block_store": schema.SingleNestedAttribute{
+ Description: "awsElasticBlockStore represents an AWS Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ MarkdownDescription: "awsElasticBlockStore represents an AWS Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
- MarkdownDescription: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstoreTODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstoreTODO: how do we prevent errors in the filesystem from compromising the machine",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "partition": schema.Int64Attribute{
+ Description: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).",
+ MarkdownDescription: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly value true will force the readOnly setting in VolumeMounts.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ MarkdownDescription: "readOnly value true will force the readOnly setting in VolumeMounts.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_id": schema.StringAttribute{
+ Description: "volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ MarkdownDescription: "volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
Required: true,
Optional: false,
Computed: false,
},
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "limits": schema.MapAttribute{
- Description: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- MarkdownDescription: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- "requests": schema.MapAttribute{
- Description: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- MarkdownDescription: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "azure_disk": schema.SingleNestedAttribute{
+ Description: "azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.",
+ MarkdownDescription: "azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.",
+ Attributes: map[string]schema.Attribute{
+ "caching_mode": schema.StringAttribute{
+ Description: "cachingMode is the Host Caching mode: None, Read Only, Read Write.",
+ MarkdownDescription: "cachingMode is the Host Caching mode: None, Read Only, Read Write.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "scheduling_policy": schema.SingleNestedAttribute{
- Description: "Specifies the scheduling policy for the Component.",
- MarkdownDescription: "Specifies the scheduling policy for the Component.",
- Attributes: map[string]schema.Attribute{
- "affinity": schema.SingleNestedAttribute{
- Description: "Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity.",
- MarkdownDescription: "Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity.",
- Attributes: map[string]schema.Attribute{
- "node_affinity": schema.SingleNestedAttribute{
- Description: "Describes node affinity scheduling rules for the pod.",
- MarkdownDescription: "Describes node affinity scheduling rules for the pod.",
- Attributes: map[string]schema.Attribute{
- "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred.",
- MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "preference": schema.SingleNestedAttribute{
- Description: "A node selector term, associated with the corresponding weight.",
- MarkdownDescription: "A node selector term, associated with the corresponding weight.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "A list of node selector requirements by node's labels.",
- MarkdownDescription: "A list of node selector requirements by node's labels.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The label key that the selector applies to.",
- MarkdownDescription: "The label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "disk_name": schema.StringAttribute{
+ Description: "diskName is the Name of the data disk in the blob storage",
+ MarkdownDescription: "diskName is the Name of the data disk in the blob storage",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "disk_uri": schema.StringAttribute{
+ Description: "diskURI is the URI of data disk in the blob storage",
+ MarkdownDescription: "diskURI is the URI of data disk in the blob storage",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is Filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fsType is Filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_fields": schema.ListNestedAttribute{
- Description: "A list of node selector requirements by node's fields.",
- MarkdownDescription: "A list of node selector requirements by node's fields.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The label key that the selector applies to.",
- MarkdownDescription: "The label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "kind": schema.StringAttribute{
+ Description: "kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared",
+ MarkdownDescription: "kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "azure_file": schema.SingleNestedAttribute{
+ Description: "azureFile represents an Azure File Service mount on the host and bind mount to the pod.",
+ MarkdownDescription: "azureFile represents an Azure File Service mount on the host and bind mount to the pod.",
+ Attributes: map[string]schema.Attribute{
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "weight": schema.Int64Attribute{
- Description: "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.",
- MarkdownDescription: "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "secret_name": schema.StringAttribute{
+ Description: "secretName is the name of secret that contains Azure Storage Account Name and Key",
+ MarkdownDescription: "secretName is the name of secret that contains Azure Storage Account Name and Key",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "required_during_scheduling_ignored_during_execution": schema.SingleNestedAttribute{
- Description: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node.",
- MarkdownDescription: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node.",
- Attributes: map[string]schema.Attribute{
- "node_selector_terms": schema.ListNestedAttribute{
- Description: "Required. A list of node selector terms. The terms are ORed.",
- MarkdownDescription: "Required. A list of node selector terms. The terms are ORed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "A list of node selector requirements by node's labels.",
- MarkdownDescription: "A list of node selector requirements by node's labels.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The label key that the selector applies to.",
- MarkdownDescription: "The label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "share_name": schema.StringAttribute{
+ Description: "shareName is the azure share Name",
+ MarkdownDescription: "shareName is the azure share Name",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "cephfs": schema.SingleNestedAttribute{
+ Description: "cephFS represents a Ceph FS mount on the host that shares a pod's lifetime",
+ MarkdownDescription: "cephFS represents a Ceph FS mount on the host that shares a pod's lifetime",
+ Attributes: map[string]schema.Attribute{
+ "monitors": schema.ListAttribute{
+ Description: "monitors is Required: Monitors is a collection of Ceph monitorsMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "monitors is Required: Monitors is a collection of Ceph monitorsMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ ElementType: types.StringType,
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "path": schema.StringAttribute{
+ Description: "path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /",
+ MarkdownDescription: "path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_fields": schema.ListNestedAttribute{
- Description: "A list of node selector requirements by node's fields.",
- MarkdownDescription: "A list of node selector requirements by node's fields.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The label key that the selector applies to.",
- MarkdownDescription: "The label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "secret_file": schema.StringAttribute{
+ Description: "secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secretMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secretMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "user": schema.StringAttribute{
+ Description: "user is optional: User is the rados user name, default is adminMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "user is optional: User is the rados user name, default is adminMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "pod_affinity": schema.SingleNestedAttribute{
- Description: "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).",
- MarkdownDescription: "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).",
- Attributes: map[string]schema.Attribute{
- "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
- MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "pod_affinity_term": schema.SingleNestedAttribute{
- Description: "Required. A pod affinity term, associated with the corresponding weight.",
- MarkdownDescription: "Required. A pod affinity term, associated with the corresponding weight.",
- Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "A label query over a set of resources, in this case pods.",
- MarkdownDescription: "A label query over a set of resources, in this case pods.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "cinder": schema.SingleNestedAttribute{
+ Description: "cinder represents a cinder volume attached and mounted on kubelets host machine.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ MarkdownDescription: "cinder represents a cinder volume attached and mounted on kubelets host machine.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is optional: points to a secret object containing parameters used to connectto OpenStack.",
+ MarkdownDescription: "secretRef is optional: points to a secret object containing parameters used to connectto OpenStack.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_id": schema.StringAttribute{
+ Description: "volumeID used to identify the volume in cinder.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ MarkdownDescription: "volumeID used to identify the volume in cinder.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "config_map": schema.SingleNestedAttribute{
+ Description: "configMap represents a configMap that should populate this volume",
+ MarkdownDescription: "configMap represents a configMap that should populate this volume",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "namespace_selector": schema.SingleNestedAttribute{
- Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "items": schema.ListNestedAttribute{
+ Description: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "namespaces": schema.ListAttribute{
- Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "optional": schema.BoolAttribute{
+ Description: "optional specify whether the ConfigMap or its keys must be defined",
+ MarkdownDescription: "optional specify whether the ConfigMap or its keys must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "topology_key": schema.StringAttribute{
- Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "csi": schema.SingleNestedAttribute{
+ Description: "csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).",
+ MarkdownDescription: "csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).",
+ Attributes: map[string]schema.Attribute{
+ "driver": schema.StringAttribute{
+ Description: "driver is the name of the CSI driver that handles this volume.Consult with your admin for the correct name as registered in the cluster.",
+ MarkdownDescription: "driver is the name of the CSI driver that handles this volume.Consult with your admin for the correct name as registered in the cluster.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "weight": schema.Int64Attribute{
- Description: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
- MarkdownDescription: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
+ "fs_type": schema.StringAttribute{
+ Description: "fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'.If not provided, the empty value is passed to the associated CSI driverwhich will determine the default filesystem to apply.",
+ MarkdownDescription: "fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'.If not provided, the empty value is passed to the associated CSI driverwhich will determine the default filesystem to apply.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "node_publish_secret_ref": schema.SingleNestedAttribute{
+ Description: "nodePublishSecretRef is a reference to the secret object containingsensitive information to pass to the CSI driver to complete the CSINodePublishVolume and NodeUnpublishVolume calls.This field is optional, and may be empty if no secret is required. If thesecret object contains more than one secret, all secret references are passed.",
+ MarkdownDescription: "nodePublishSecretRef is a reference to the secret object containingsensitive information to pass to the CSI driver to complete the CSINodePublishVolume and NodeUnpublishVolume calls.This field is optional, and may be empty if no secret is required. If thesecret object contains more than one secret, all secret references are passed.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "required_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
- MarkdownDescription: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "A label query over a set of resources, in this case pods.",
- MarkdownDescription: "A label query over a set of resources, in this case pods.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly specifies a read-only configuration for the volume.Defaults to false (read/write).",
+ MarkdownDescription: "readOnly specifies a read-only configuration for the volume.Defaults to false (read/write).",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "volume_attributes": schema.MapAttribute{
+ Description: "volumeAttributes stores driver-specific properties that are passed to the CSIdriver. Consult your driver's documentation for supported values.",
+ MarkdownDescription: "volumeAttributes stores driver-specific properties that are passed to the CSIdriver. Consult your driver's documentation for supported values.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "downward_api": schema.SingleNestedAttribute{
+ Description: "downwardAPI represents downward API about the pod that should populate this volume",
+ MarkdownDescription: "downwardAPI represents downward API about the pod that should populate this volume",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "Optional: mode bits to use on created files by default. Must be aOptional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "Optional: mode bits to use on created files by default. Must be aOptional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "items": schema.ListNestedAttribute{
+ Description: "Items is a list of downward API volume file",
+ MarkdownDescription: "Items is a list of downward API volume file",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "field_ref": schema.SingleNestedAttribute{
+ Description: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
+ MarkdownDescription: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
+ Attributes: map[string]schema.Attribute{
+ "api_version": schema.StringAttribute{
+ Description: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ MarkdownDescription: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- "namespace_selector": schema.SingleNestedAttribute{
- Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "field_path": schema.StringAttribute{
+ Description: "Path of the field to select in the specified API version.",
+ MarkdownDescription: "Path of the field to select in the specified API version.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "mode": schema.Int64Attribute{
+ Description: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "path": schema.StringAttribute{
+ Description: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
+ MarkdownDescription: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "resource_field_ref": schema.SingleNestedAttribute{
+ Description: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
+ MarkdownDescription: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
+ Attributes: map[string]schema.Attribute{
+ "container_name": schema.StringAttribute{
+ Description: "Container name: required for volumes, optional for env vars",
+ MarkdownDescription: "Container name: required for volumes, optional for env vars",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- "namespaces": schema.ListAttribute{
- Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "divisor": schema.StringAttribute{
+ Description: "Specifies the output format of the exposed resources, defaults to '1'",
+ MarkdownDescription: "Specifies the output format of the exposed resources, defaults to '1'",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "topology_key": schema.StringAttribute{
- Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- Required: true,
- Optional: false,
- Computed: false,
+ "resource": schema.StringAttribute{
+ Description: "Required: resource to select",
+ MarkdownDescription: "Required: resource to select",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "pod_anti_affinity": schema.SingleNestedAttribute{
- Description: "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).",
- MarkdownDescription: "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).",
- Attributes: map[string]schema.Attribute{
- "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
- MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "pod_affinity_term": schema.SingleNestedAttribute{
- Description: "Required. A pod affinity term, associated with the corresponding weight.",
- MarkdownDescription: "Required. A pod affinity term, associated with the corresponding weight.",
- Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "A label query over a set of resources, in this case pods.",
- MarkdownDescription: "A label query over a set of resources, in this case pods.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "empty_dir": schema.SingleNestedAttribute{
+ Description: "emptyDir represents a temporary directory that shares a pod's lifetime.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ MarkdownDescription: "emptyDir represents a temporary directory that shares a pod's lifetime.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ Attributes: map[string]schema.Attribute{
+ "medium": schema.StringAttribute{
+ Description: "medium represents what type of storage medium should back this directory.The default is '' which means to use the node's default medium.Must be an empty string (default) or Memory.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ MarkdownDescription: "medium represents what type of storage medium should back this directory.The default is '' which means to use the node's default medium.Must be an empty string (default) or Memory.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "size_limit": schema.StringAttribute{
+ Description: "sizeLimit is the total amount of local storage required for this EmptyDir volume.The size limit is also applicable for memory medium.The maximum usage on memory medium EmptyDir would be the minimum value betweenthe SizeLimit specified here and the sum of memory limits of all containers in a pod.The default is nil which means that the limit is undefined.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ MarkdownDescription: "sizeLimit is the total amount of local storage required for this EmptyDir volume.The size limit is also applicable for memory medium.The maximum usage on memory medium EmptyDir would be the minimum value betweenthe SizeLimit specified here and the sum of memory limits of all containers in a pod.The default is nil which means that the limit is undefined.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "ephemeral": schema.SingleNestedAttribute{
+ Description: "ephemeral represents a volume that is handled by a cluster storage driver.The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,and deleted when the pod is removed.Use this if:a) the volume is only needed while the pod runs,b) features of normal volumes like restoring from snapshot or capacity tracking are needed,c) the storage driver is specified through a storage class, andd) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim).Use PersistentVolumeClaim or one of the vendor-specificAPIs for volumes that persist for longer than the lifecycleof an individual pod.Use CSI for light-weight local ephemeral volumes if the CSI driver is meant tobe used that way - see the documentation of the driver formore information.A pod can use both types of ephemeral volumes andpersistent volumes at the same time.",
+ MarkdownDescription: "ephemeral represents a volume that is handled by a cluster storage driver.The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,and deleted when the pod is removed.Use this if:a) the volume is only needed while the pod runs,b) features of normal volumes like restoring from snapshot or capacity tracking are needed,c) the storage driver is specified through a storage class, andd) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim).Use PersistentVolumeClaim or one of the vendor-specificAPIs for volumes that persist for longer than the lifecycleof an individual pod.Use CSI for light-weight local ephemeral volumes if the CSI driver is meant tobe used that way - see the documentation of the driver formore information.A pod can use both types of ephemeral volumes andpersistent volumes at the same time.",
+ Attributes: map[string]schema.Attribute{
+ "volume_claim_template": schema.SingleNestedAttribute{
+ Description: "Will be used to create a stand-alone PVC to provision the volume.The pod in which this EphemeralVolumeSource is embedded will be theowner of the PVC, i.e. the PVC will be deleted together with thepod. The name of the PVC will be '-' where'' is the name from the 'PodSpec.Volumes' arrayentry. Pod validation will reject the pod if the concatenated nameis not valid for a PVC (for example, too long).An existing PVC with that name that is not owned by the podwill *not* be used for the pod to avoid using an unrelatedvolume by mistake. Starting the pod is then blocked untilthe unrelated PVC is removed. If such a pre-created PVC ismeant to be used by the pod, the PVC has to updated with anowner reference to the pod once the pod exists. Normallythis should not be necessary, but it may be useful whenmanually reconstructing a broken cluster.This field is read-only and no changes will be made by Kubernetesto the PVC after it has been created.Required, must not be nil.",
+ MarkdownDescription: "Will be used to create a stand-alone PVC to provision the volume.The pod in which this EphemeralVolumeSource is embedded will be theowner of the PVC, i.e. the PVC will be deleted together with thepod. The name of the PVC will be '-' where'' is the name from the 'PodSpec.Volumes' arrayentry. Pod validation will reject the pod if the concatenated nameis not valid for a PVC (for example, too long).An existing PVC with that name that is not owned by the podwill *not* be used for the pod to avoid using an unrelatedvolume by mistake. Starting the pod is then blocked untilthe unrelated PVC is removed. If such a pre-created PVC ismeant to be used by the pod, the PVC has to updated with anowner reference to the pod once the pod exists. Normallythis should not be necessary, but it may be useful whenmanually reconstructing a broken cluster.This field is read-only and no changes will be made by Kubernetesto the PVC after it has been created.Required, must not be nil.",
+ Attributes: map[string]schema.Attribute{
+ "metadata": schema.SingleNestedAttribute{
+ Description: "May contain labels and annotations that will be copied into the PVCwhen creating it. No other fields are allowed and will be rejected duringvalidation.",
+ MarkdownDescription: "May contain labels and annotations that will be copied into the PVCwhen creating it. No other fields are allowed and will be rejected duringvalidation.",
+ Attributes: map[string]schema.Attribute{
+ "annotations": schema.MapAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "finalizers": schema.ListAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "namespace_selector": schema.SingleNestedAttribute{
- Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "labels": schema.MapAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "namespace": schema.StringAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "spec": schema.SingleNestedAttribute{
+ Description: "The specification for the PersistentVolumeClaim. The entire content iscopied unchanged into the PVC that gets created from thistemplate. The same fields as in a PersistentVolumeClaimare also valid here.",
+ MarkdownDescription: "The specification for the PersistentVolumeClaim. The entire content iscopied unchanged into the PVC that gets created from thistemplate. The same fields as in a PersistentVolumeClaimare also valid here.",
+ Attributes: map[string]schema.Attribute{
+ "access_modes": schema.ListAttribute{
+ Description: "accessModes contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1",
+ MarkdownDescription: "accessModes contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "namespaces": schema.ListAttribute{
- Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- ElementType: types.StringType,
+ "data_source": schema.SingleNestedAttribute{
+ Description: "dataSource field can be used to specify either:* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)* An existing PVC (PersistentVolumeClaim)If the provisioner or an external controller can support the specified data source,it will create a new volume based on the contents of the specified data source.When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.If the namespace is specified, then dataSourceRef will not be copied to dataSource.",
+ MarkdownDescription: "dataSource field can be used to specify either:* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)* An existing PVC (PersistentVolumeClaim)If the provisioner or an external controller can support the specified data source,it will create a new volume based on the contents of the specified data source.When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.If the namespace is specified, then dataSourceRef will not be copied to dataSource.",
+ Attributes: map[string]schema.Attribute{
+ "api_group": schema.StringAttribute{
+ Description: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
+ MarkdownDescription: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
Required: false,
Optional: true,
Computed: false,
},
- "topology_key": schema.StringAttribute{
- Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ "kind": schema.StringAttribute{
+ Description: "Kind is the type of resource being referenced",
+ MarkdownDescription: "Kind is the type of resource being referenced",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name is the name of resource being referenced",
+ MarkdownDescription: "Name is the name of resource being referenced",
Required: true,
Optional: false,
Computed: false,
},
},
- Required: true,
- Optional: false,
+ Required: false,
+ Optional: true,
Computed: false,
},
- "weight": schema.Int64Attribute{
- Description: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
- MarkdownDescription: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
- Required: true,
- Optional: false,
- Computed: false,
+ "data_source_ref": schema.SingleNestedAttribute{
+ Description: "dataSourceRef specifies the object from which to populate the volume with data, if a non-emptyvolume is desired. This may be any object from a non-empty API group (noncore object) or a PersistentVolumeClaim object.When this field is specified, volume binding will only succeed if the type ofthe specified object matches some installed volume populator or dynamicprovisioner.This field will replace the functionality of the dataSource field and as suchif both fields are non-empty, they must have the same value. For backwardscompatibility, when namespace isn't specified in dataSourceRef,both fields (dataSource and dataSourceRef) will be set to the samevalue automatically if one of them is empty and the other is non-empty.When namespace is specified in dataSourceRef,dataSource isn't set to the same value and must be empty.There are three important differences between dataSource and dataSourceRef:* While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects.* While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified.* While dataSource only allows local objects, dataSourceRef allows objects in any namespaces.(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
+ MarkdownDescription: "dataSourceRef specifies the object from which to populate the volume with data, if a non-emptyvolume is desired. This may be any object from a non-empty API group (noncore object) or a PersistentVolumeClaim object.When this field is specified, volume binding will only succeed if the type ofthe specified object matches some installed volume populator or dynamicprovisioner.This field will replace the functionality of the dataSource field and as suchif both fields are non-empty, they must have the same value. For backwardscompatibility, when namespace isn't specified in dataSourceRef,both fields (dataSource and dataSourceRef) will be set to the samevalue automatically if one of them is empty and the other is non-empty.When namespace is specified in dataSourceRef,dataSource isn't set to the same value and must be empty.There are three important differences between dataSource and dataSourceRef:* While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects.* While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified.* While dataSource only allows local objects, dataSourceRef allows objects in any namespaces.(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
+ Attributes: map[string]schema.Attribute{
+ "api_group": schema.StringAttribute{
+ Description: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
+ MarkdownDescription: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "kind": schema.StringAttribute{
+ Description: "Kind is the type of resource being referenced",
+ MarkdownDescription: "Kind is the type of resource being referenced",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name is the name of resource being referenced",
+ MarkdownDescription: "Name is the name of resource being referenced",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "namespace": schema.StringAttribute{
+ Description: "Namespace is the namespace of resource being referencedNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
+ MarkdownDescription: "Namespace is the namespace of resource being referencedNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- "required_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
- MarkdownDescription: "If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "A label query over a set of resources, in this case pods.",
- MarkdownDescription: "A label query over a set of resources, in this case pods.",
+ "resources": schema.SingleNestedAttribute{
+ Description: "resources represents the minimum resources the volume should have.If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirementsthat are lower than previous value but must still be higher than capacity recorded in thestatus field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources",
+ MarkdownDescription: "resources represents the minimum resources the volume should have.If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirementsthat are lower than previous value but must still be higher than capacity recorded in thestatus field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources",
Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ "claims": schema.ListNestedAttribute{
+ Description: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ MarkdownDescription: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
NestedObject: schema.NestedAttributeObject{
Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ "name": schema.StringAttribute{
+ Description: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ MarkdownDescription: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
Required: true,
Optional: false,
Computed: false,
},
-
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
},
},
Required: false,
@@ -9793,9 +13904,18 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ "limits": schema.MapAttribute{
+ Description: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "requests": schema.MapAttribute{
+ Description: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
ElementType: types.StringType,
Required: false,
Optional: true,
@@ -9807,9 +13927,9 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "namespace_selector": schema.SingleNestedAttribute{
- Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ "selector": schema.SingleNestedAttribute{
+ Description: "selector is a label query over volumes to consider for binding.",
+ MarkdownDescription: "selector is a label query over volumes to consider for binding.",
Attributes: map[string]schema.Attribute{
"match_expressions": schema.ListNestedAttribute{
Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
@@ -9861,304 +13981,140 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "namespaces": schema.ListAttribute{
- Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- ElementType: types.StringType,
+ "storage_class_name": schema.StringAttribute{
+ Description: "storageClassName is the name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1",
+ MarkdownDescription: "storageClassName is the name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_mode": schema.StringAttribute{
+ Description: "volumeMode defines what type of volume is required by the claim.Value of Filesystem is implied when not included in claim spec.",
+ MarkdownDescription: "volumeMode defines what type of volume is required by the claim.Value of Filesystem is implied when not included in claim spec.",
Required: false,
Optional: true,
Computed: false,
},
- "topology_key": schema.StringAttribute{
- Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- Required: true,
- Optional: false,
+ "volume_name": schema.StringAttribute{
+ Description: "volumeName is the binding reference to the PersistentVolume backing this claim.",
+ MarkdownDescription: "volumeName is the binding reference to the PersistentVolume backing this claim.",
+ Required: false,
+ Optional: true,
Computed: false,
},
},
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "node_name": schema.StringAttribute{
- Description: "NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.",
- MarkdownDescription: "NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "node_selector": schema.MapAttribute{
- Description: "NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/",
- MarkdownDescription: "NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "scheduler_name": schema.StringAttribute{
- Description: "If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.",
- MarkdownDescription: "If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.",
- Required: false,
- Optional: true,
- Computed: false,
- },
- "tolerations": schema.ListNestedAttribute{
- Description: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.",
- MarkdownDescription: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.",
- NestedObject: schema.NestedAttributeObject{
+ "fc": schema.SingleNestedAttribute{
+ Description: "fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.",
+ MarkdownDescription: "fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.",
Attributes: map[string]schema.Attribute{
- "effect": schema.StringAttribute{
- Description: "Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.",
- MarkdownDescription: "Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "key": schema.StringAttribute{
- Description: "Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.",
- MarkdownDescription: "Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "operator": schema.StringAttribute{
- Description: "Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.",
- MarkdownDescription: "Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.",
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.TODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.TODO: how do we prevent errors in the filesystem from compromising the machine",
Required: false,
Optional: true,
Computed: false,
},
- "toleration_seconds": schema.Int64Attribute{
- Description: "TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.",
- MarkdownDescription: "TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.",
+ "lun": schema.Int64Attribute{
+ Description: "lun is Optional: FC target lun number",
+ MarkdownDescription: "lun is Optional: FC target lun number",
Required: false,
Optional: true,
Computed: false,
},
- "value": schema.StringAttribute{
- Description: "Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.",
- MarkdownDescription: "Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.",
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
Required: false,
Optional: true,
Computed: false,
},
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "topology_spread_constraints": schema.ListNestedAttribute{
- Description: "TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed.",
- MarkdownDescription: "TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain.",
- MarkdownDescription: "LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- "match_label_keys": schema.ListAttribute{
- Description: "MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).",
- MarkdownDescription: "MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).",
+ "target_ww_ns": schema.ListAttribute{
+ Description: "targetWWNs is Optional: FC target worldwide names (WWNs)",
+ MarkdownDescription: "targetWWNs is Optional: FC target worldwide names (WWNs)",
ElementType: types.StringType,
Required: false,
Optional: true,
Computed: false,
},
- "max_skew": schema.Int64Attribute{
- Description: "MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.",
- MarkdownDescription: "MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "min_domains": schema.Int64Attribute{
- Description: "MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).",
- MarkdownDescription: "MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "node_affinity_policy": schema.StringAttribute{
- Description: "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
- MarkdownDescription: "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "node_taints_policy": schema.StringAttribute{
- Description: "NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
- MarkdownDescription: "NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
+ "wwids": schema.ListAttribute{
+ Description: "wwids Optional: FC volume world wide identifiers (wwids)Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.",
+ MarkdownDescription: "wwids Optional: FC volume world wide identifiers (wwids)Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.",
+ ElementType: types.StringType,
Required: false,
Optional: true,
Computed: false,
},
-
- "topology_key": schema.StringAttribute{
- Description: "TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.",
- MarkdownDescription: "TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "when_unsatisfiable": schema.StringAttribute{
- Description: "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.",
- MarkdownDescription: "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.",
- Required: true,
- Optional: false,
- Computed: false,
- },
},
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "volume_claim_templates": schema.ListNestedAttribute{
- Description: "Defines VolumeClaimTemplates to override.Add new or override existing volume claim templates.",
- MarkdownDescription: "Defines VolumeClaimTemplates to override.Add new or override existing volume claim templates.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Refers to the name of a volumeMount defined in either:- 'componentDefinition.spec.runtime.containers[*].volumeMounts'- 'clusterDefinition.spec.componentDefs[*].podSpec.containers[*].volumeMounts' (deprecated)The value of 'name' must match the 'name' field of a volumeMount specified in the corresponding 'volumeMounts' array.",
- MarkdownDescription: "Refers to the name of a volumeMount defined in either:- 'componentDefinition.spec.runtime.containers[*].volumeMounts'- 'clusterDefinition.spec.componentDefs[*].podSpec.containers[*].volumeMounts' (deprecated)The value of 'name' must match the 'name' field of a volumeMount specified in the corresponding 'volumeMounts' array.",
- Required: true,
- Optional: false,
- Computed: false,
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- "spec": schema.SingleNestedAttribute{
- Description: "Defines the desired characteristics of a PersistentVolumeClaim that will be created for the volumewith the mount name specified in the 'name' field.When a Pod is created for this ClusterComponent, a new PVC will be created based on the specificationdefined in the 'spec' field. The PVC will be associated with the volume mount specified by the 'name' field.",
- MarkdownDescription: "Defines the desired characteristics of a PersistentVolumeClaim that will be created for the volumewith the mount name specified in the 'name' field.When a Pod is created for this ClusterComponent, a new PVC will be created based on the specificationdefined in the 'spec' field. The PVC will be associated with the volume mount specified by the 'name' field.",
+ "flex_volume": schema.SingleNestedAttribute{
+ Description: "flexVolume represents a generic volume resource that isprovisioned/attached using an exec based plugin.",
+ MarkdownDescription: "flexVolume represents a generic volume resource that isprovisioned/attached using an exec based plugin.",
Attributes: map[string]schema.Attribute{
- "access_modes": schema.MapAttribute{
- Description: "Contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1.",
- MarkdownDescription: "Contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1.",
- ElementType: types.StringType,
+ "driver": schema.StringAttribute{
+ Description: "driver is the name of the driver to use for this volume.",
+ MarkdownDescription: "driver is the name of the driver to use for this volume.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.",
Required: false,
Optional: true,
Computed: false,
},
- "resources": schema.SingleNestedAttribute{
- Description: "Represents the minimum resources the volume should have.If the RecoverVolumeExpansionFailure feature is enabled, users are allowed to specify resource requirements thatare lower than the previous value but must still be higher than the capacity recorded in the status field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources.",
- MarkdownDescription: "Represents the minimum resources the volume should have.If the RecoverVolumeExpansionFailure feature is enabled, users are allowed to specify resource requirements thatare lower than the previous value but must still be higher than the capacity recorded in the status field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources.",
- Attributes: map[string]schema.Attribute{
- "claims": schema.ListNestedAttribute{
- Description: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
- MarkdownDescription: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
- MarkdownDescription: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "options": schema.MapAttribute{
+ Description: "options is Optional: this field holds extra command options if any.",
+ MarkdownDescription: "options is Optional: this field holds extra command options if any.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "limits": schema.MapAttribute{
- Description: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- MarkdownDescription: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly is Optional: defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly is Optional: defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "requests": schema.MapAttribute{
- Description: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- MarkdownDescription: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- ElementType: types.StringType,
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is Optional: secretRef is reference to the secret object containingsensitive information to pass to the plugin scripts. This may beempty if no secret object is specified. If the secret objectcontains more than one secret, all secrets are passed to the pluginscripts.",
+ MarkdownDescription: "secretRef is Optional: secretRef is reference to the secret object containingsensitive information to pass to the plugin scripts. This may beempty if no secret object is specified. If the secret objectcontains more than one secret, all secrets are passed to the pluginscripts.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
Required: false,
Optional: true,
Computed: false,
@@ -10168,18 +14124,27 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Optional: true,
Computed: false,
},
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "storage_class_name": schema.StringAttribute{
- Description: "The name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1.",
- MarkdownDescription: "The name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1.",
+ "flocker": schema.SingleNestedAttribute{
+ Description: "flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running",
+ MarkdownDescription: "flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running",
+ Attributes: map[string]schema.Attribute{
+ "dataset_name": schema.StringAttribute{
+ Description: "datasetName is Name of the dataset stored as metadata -> name on the dataset for Flockershould be considered as deprecated",
+ MarkdownDescription: "datasetName is Name of the dataset stored as metadata -> name on the dataset for Flockershould be considered as deprecated",
Required: false,
Optional: true,
Computed: false,
},
- "volume_mode": schema.StringAttribute{
- Description: "Defines what type of volume is required by the claim, either Block or Filesystem.",
- MarkdownDescription: "Defines what type of volume is required by the claim, either Block or Filesystem.",
+ "dataset_uuid": schema.StringAttribute{
+ Description: "datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset",
+ MarkdownDescription: "datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset",
Required: false,
Optional: true,
Computed: false,
@@ -10189,110 +14154,40 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Optional: true,
Computed: false,
},
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "volume_mounts": schema.ListNestedAttribute{
- Description: "Defines VolumeMounts to override.Add new or override existing volume mounts of the first container in the Pod.",
- MarkdownDescription: "Defines VolumeMounts to override.Add new or override existing volume mounts of the first container in the Pod.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "mount_path": schema.StringAttribute{
- Description: "Path within the container at which the volume should be mounted. Mustnot contain ':'.",
- MarkdownDescription: "Path within the container at which the volume should be mounted. Mustnot contain ':'.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "mount_propagation": schema.StringAttribute{
- Description: "mountPropagation determines how mounts are propagated from the hostto container and the other way around.When not set, MountPropagationNone is used.This field is beta in 1.10.",
- MarkdownDescription: "mountPropagation determines how mounts are propagated from the hostto container and the other way around.When not set, MountPropagationNone is used.This field is beta in 1.10.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "name": schema.StringAttribute{
- Description: "This must match the Name of a Volume.",
- MarkdownDescription: "This must match the Name of a Volume.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- "read_only": schema.BoolAttribute{
- Description: "Mounted read-only if true, read-write otherwise (false or unspecified).Defaults to false.",
- MarkdownDescription: "Mounted read-only if true, read-write otherwise (false or unspecified).Defaults to false.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "sub_path": schema.StringAttribute{
- Description: "Path within the volume from which the container's volume should be mounted.Defaults to '' (volume's root).",
- MarkdownDescription: "Path within the volume from which the container's volume should be mounted.Defaults to '' (volume's root).",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "sub_path_expr": schema.StringAttribute{
- Description: "Expanded path within the volume from which the container's volume should be mounted.Behaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.Defaults to '' (volume's root).SubPathExpr and SubPath are mutually exclusive.",
- MarkdownDescription: "Expanded path within the volume from which the container's volume should be mounted.Behaves similarly to SubPath but environment variable references $(VAR_NAME) are expanded using the container's environment.Defaults to '' (volume's root).SubPathExpr and SubPath are mutually exclusive.",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "volumes": schema.ListNestedAttribute{
- Description: "Defines Volumes to override.Add new or override existing volumes.",
- MarkdownDescription: "Defines Volumes to override.Add new or override existing volumes.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "aws_elastic_block_store": schema.SingleNestedAttribute{
- Description: "awsElasticBlockStore represents an AWS Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
- MarkdownDescription: "awsElasticBlockStore represents an AWS Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ "gce_persistent_disk": schema.SingleNestedAttribute{
+ Description: "gcePersistentDisk represents a GCE Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ MarkdownDescription: "gcePersistentDisk represents a GCE Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
Attributes: map[string]schema.Attribute{
"fs_type": schema.StringAttribute{
- Description: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstoreTODO: how do we prevent errors in the filesystem from compromising the machine",
- MarkdownDescription: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstoreTODO: how do we prevent errors in the filesystem from compromising the machine",
+ Description: "fsType is filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskTODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskTODO: how do we prevent errors in the filesystem from compromising the machine",
Required: false,
Optional: true,
Computed: false,
},
"partition": schema.Int64Attribute{
- Description: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).",
- MarkdownDescription: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).",
+ Description: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ MarkdownDescription: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
Required: false,
Optional: true,
Computed: false,
},
- "read_only": schema.BoolAttribute{
- Description: "readOnly value true will force the readOnly setting in VolumeMounts.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
- MarkdownDescription: "readOnly value true will force the readOnly setting in VolumeMounts.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
- Required: false,
- Optional: true,
+ "pd_name": schema.StringAttribute{
+ Description: "pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ MarkdownDescription: "pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ Required: true,
+ Optional: false,
Computed: false,
},
- "volume_id": schema.StringAttribute{
- Description: "volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
- MarkdownDescription: "volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
- Required: true,
- Optional: false,
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ MarkdownDescription: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ Required: false,
+ Optional: true,
Computed: false,
},
},
@@ -10301,53 +14196,62 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "azure_disk": schema.SingleNestedAttribute{
- Description: "azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.",
- MarkdownDescription: "azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.",
+ "git_repo": schema.SingleNestedAttribute{
+ Description: "gitRepo represents a git repository at a particular revision.DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount anEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDirinto the Pod's container.",
+ MarkdownDescription: "gitRepo represents a git repository at a particular revision.DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount anEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDirinto the Pod's container.",
Attributes: map[string]schema.Attribute{
- "caching_mode": schema.StringAttribute{
- Description: "cachingMode is the Host Caching mode: None, Read Only, Read Write.",
- MarkdownDescription: "cachingMode is the Host Caching mode: None, Read Only, Read Write.",
+ "directory": schema.StringAttribute{
+ Description: "directory is the target directory name.Must not contain or start with '..'. If '.' is supplied, the volume directory will be thegit repository. Otherwise, if specified, the volume will contain the git repository inthe subdirectory with the given name.",
+ MarkdownDescription: "directory is the target directory name.Must not contain or start with '..'. If '.' is supplied, the volume directory will be thegit repository. Otherwise, if specified, the volume will contain the git repository inthe subdirectory with the given name.",
Required: false,
Optional: true,
Computed: false,
},
- "disk_name": schema.StringAttribute{
- Description: "diskName is the Name of the data disk in the blob storage",
- MarkdownDescription: "diskName is the Name of the data disk in the blob storage",
+ "repository": schema.StringAttribute{
+ Description: "repository is the URL",
+ MarkdownDescription: "repository is the URL",
Required: true,
Optional: false,
Computed: false,
},
- "disk_uri": schema.StringAttribute{
- Description: "diskURI is the URI of data disk in the blob storage",
- MarkdownDescription: "diskURI is the URI of data disk in the blob storage",
- Required: true,
- Optional: false,
+ "revision": schema.StringAttribute{
+ Description: "revision is the commit hash for the specified revision.",
+ MarkdownDescription: "revision is the commit hash for the specified revision.",
+ Required: false,
+ Optional: true,
Computed: false,
},
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "fs_type": schema.StringAttribute{
- Description: "fsType is Filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
- MarkdownDescription: "fsType is Filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
- Required: false,
- Optional: true,
+ "glusterfs": schema.SingleNestedAttribute{
+ Description: "glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/glusterfs/README.md",
+ MarkdownDescription: "glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/glusterfs/README.md",
+ Attributes: map[string]schema.Attribute{
+ "endpoints": schema.StringAttribute{
+ Description: "endpoints is the endpoint name that details Glusterfs topology.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ MarkdownDescription: "endpoints is the endpoint name that details Glusterfs topology.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ Required: true,
+ Optional: false,
Computed: false,
},
- "kind": schema.StringAttribute{
- Description: "kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared",
- MarkdownDescription: "kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared",
- Required: false,
- Optional: true,
+ "path": schema.StringAttribute{
+ Description: "path is the Glusterfs volume path.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ MarkdownDescription: "path is the Glusterfs volume path.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ Required: true,
+ Optional: false,
Computed: false,
},
"read_only": schema.BoolAttribute{
- Description: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- MarkdownDescription: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Description: "readOnly here will force the Glusterfs volume to be mounted with read-only permissions.Defaults to false.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ MarkdownDescription: "readOnly here will force the Glusterfs volume to be mounted with read-only permissions.Defaults to false.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
Required: false,
Optional: true,
Computed: false,
@@ -10358,31 +14262,23 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "azure_file": schema.SingleNestedAttribute{
- Description: "azureFile represents an Azure File Service mount on the host and bind mount to the pod.",
- MarkdownDescription: "azureFile represents an Azure File Service mount on the host and bind mount to the pod.",
+ "host_path": schema.SingleNestedAttribute{
+ Description: "hostPath represents a pre-existing file or directory on the hostmachine that is directly exposed to the container. This is generallyused for system agents or other privileged things that are allowedto see the host machine. Most containers will NOT need this.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath---TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can notmount host directories as read/write.",
+ MarkdownDescription: "hostPath represents a pre-existing file or directory on the hostmachine that is directly exposed to the container. This is generallyused for system agents or other privileged things that are allowedto see the host machine. Most containers will NOT need this.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath---TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can notmount host directories as read/write.",
Attributes: map[string]schema.Attribute{
- "read_only": schema.BoolAttribute{
- Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "secret_name": schema.StringAttribute{
- Description: "secretName is the name of secret that contains Azure Storage Account Name and Key",
- MarkdownDescription: "secretName is the name of secret that contains Azure Storage Account Name and Key",
+ "path": schema.StringAttribute{
+ Description: "path of the directory on the host.If the path is a symlink, it will follow the link to the real path.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
+ MarkdownDescription: "path of the directory on the host.If the path is a symlink, it will follow the link to the real path.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
Required: true,
Optional: false,
Computed: false,
},
- "share_name": schema.StringAttribute{
- Description: "shareName is the azure share Name",
- MarkdownDescription: "shareName is the azure share Name",
- Required: true,
- Optional: false,
+ "type": schema.StringAttribute{
+ Description: "type for HostPath VolumeDefaults to ''More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
+ MarkdownDescription: "type for HostPath VolumeDefaults to ''More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
+ Required: false,
+ Optional: true,
Computed: false,
},
},
@@ -10391,96 +14287,86 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "cephfs": schema.SingleNestedAttribute{
- Description: "cephFS represents a Ceph FS mount on the host that shares a pod's lifetime",
- MarkdownDescription: "cephFS represents a Ceph FS mount on the host that shares a pod's lifetime",
+ "iscsi": schema.SingleNestedAttribute{
+ Description: "iscsi represents an ISCSI Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://examples.k8s.io/volumes/iscsi/README.md",
+ MarkdownDescription: "iscsi represents an ISCSI Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://examples.k8s.io/volumes/iscsi/README.md",
Attributes: map[string]schema.Attribute{
- "monitors": schema.ListAttribute{
- Description: "monitors is Required: Monitors is a collection of Ceph monitorsMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
- MarkdownDescription: "monitors is Required: Monitors is a collection of Ceph monitorsMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
- ElementType: types.StringType,
- Required: true,
- Optional: false,
+ "chap_auth_discovery": schema.BoolAttribute{
+ Description: "chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication",
+ MarkdownDescription: "chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication",
+ Required: false,
+ Optional: true,
Computed: false,
},
- "path": schema.StringAttribute{
- Description: "path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /",
- MarkdownDescription: "path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /",
+ "chap_auth_session": schema.BoolAttribute{
+ Description: "chapAuthSession defines whether support iSCSI Session CHAP authentication",
+ MarkdownDescription: "chapAuthSession defines whether support iSCSI Session CHAP authentication",
Required: false,
Optional: true,
Computed: false,
},
- "read_only": schema.BoolAttribute{
- Description: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
- MarkdownDescription: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsiTODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsiTODO: how do we prevent errors in the filesystem from compromising the machine",
Required: false,
Optional: true,
Computed: false,
},
- "secret_file": schema.StringAttribute{
- Description: "secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secretMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
- MarkdownDescription: "secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secretMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ "initiator_name": schema.StringAttribute{
+ Description: "initiatorName is the custom iSCSI Initiator Name.If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface: will be created for the connection.",
+ MarkdownDescription: "initiatorName is the custom iSCSI Initiator Name.If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface: will be created for the connection.",
Required: false,
Optional: true,
Computed: false,
},
- "secret_ref": schema.SingleNestedAttribute{
- Description: "secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
- MarkdownDescription: "secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ "iqn": schema.StringAttribute{
+ Description: "iqn is the target iSCSI Qualified Name.",
+ MarkdownDescription: "iqn is the target iSCSI Qualified Name.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- "user": schema.StringAttribute{
- Description: "user is optional: User is the rados user name, default is adminMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
- MarkdownDescription: "user is optional: User is the rados user name, default is adminMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ "iscsi_interface": schema.StringAttribute{
+ Description: "iscsiInterface is the interface Name that uses an iSCSI transport.Defaults to 'default' (tcp).",
+ MarkdownDescription: "iscsiInterface is the interface Name that uses an iSCSI transport.Defaults to 'default' (tcp).",
Required: false,
Optional: true,
Computed: false,
},
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- "cinder": schema.SingleNestedAttribute{
- Description: "cinder represents a cinder volume attached and mounted on kubelets host machine.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
- MarkdownDescription: "cinder represents a cinder volume attached and mounted on kubelets host machine.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
- Attributes: map[string]schema.Attribute{
- "fs_type": schema.StringAttribute{
- Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
- MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ "lun": schema.Int64Attribute{
+ Description: "lun represents iSCSI Target Lun number.",
+ MarkdownDescription: "lun represents iSCSI Target Lun number.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "portals": schema.ListAttribute{
+ Description: "portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
+ MarkdownDescription: "portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
+ ElementType: types.StringType,
Required: false,
Optional: true,
Computed: false,
},
"read_only": schema.BoolAttribute{
- Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
- MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ Description: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.",
+ MarkdownDescription: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.",
Required: false,
Optional: true,
Computed: false,
},
"secret_ref": schema.SingleNestedAttribute{
- Description: "secretRef is optional: points to a secret object containing parameters used to connectto OpenStack.",
- MarkdownDescription: "secretRef is optional: points to a secret object containing parameters used to connectto OpenStack.",
+ Description: "secretRef is the CHAP Secret for iSCSI target and initiator authentication",
+ MarkdownDescription: "secretRef is the CHAP Secret for iSCSI target and initiator authentication",
Attributes: map[string]schema.Attribute{
"name": schema.StringAttribute{
Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
@@ -10495,9 +14381,9 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "volume_id": schema.StringAttribute{
- Description: "volumeID used to identify the volume in cinder.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
- MarkdownDescription: "volumeID used to identify the volume in cinder.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ "target_portal": schema.StringAttribute{
+ Description: "targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
+ MarkdownDescription: "targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
Required: true,
Optional: false,
Computed: false,
@@ -10508,64 +14394,62 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "config_map": schema.SingleNestedAttribute{
- Description: "configMap represents a configMap that should populate this volume",
- MarkdownDescription: "configMap represents a configMap that should populate this volume",
+ "name": schema.StringAttribute{
+ Description: "name of the volume.Must be a DNS_LABEL and unique within the pod.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names",
+ MarkdownDescription: "name of the volume.Must be a DNS_LABEL and unique within the pod.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "nfs": schema.SingleNestedAttribute{
+ Description: "nfs represents an NFS mount on the host that shares a pod's lifetimeMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ MarkdownDescription: "nfs represents an NFS mount on the host that shares a pod's lifetimeMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
Attributes: map[string]schema.Attribute{
- "default_mode": schema.Int64Attribute{
- Description: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ "path": schema.StringAttribute{
+ Description: "path that is exported by the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ MarkdownDescription: "path that is exported by the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the NFS export to be mounted with read-only permissions.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ MarkdownDescription: "readOnly here will force the NFS export to be mounted with read-only permissions.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
Required: false,
Optional: true,
Computed: false,
},
- "items": schema.ListNestedAttribute{
- Description: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the key to project.",
- MarkdownDescription: "key is the key to project.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "mode": schema.Int64Attribute{
- Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "path": schema.StringAttribute{
- Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ "server": schema.StringAttribute{
+ Description: "server is the hostname or IP address of the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ MarkdownDescription: "server is the hostname or IP address of the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
+ "persistent_volume_claim": schema.SingleNestedAttribute{
+ Description: "persistentVolumeClaimVolumeSource represents a reference to aPersistentVolumeClaim in the same namespace.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
+ MarkdownDescription: "persistentVolumeClaimVolumeSource represents a reference to aPersistentVolumeClaim in the same namespace.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
+ Attributes: map[string]schema.Attribute{
+ "claim_name": schema.StringAttribute{
+ Description: "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
+ MarkdownDescription: "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
+ Required: true,
+ Optional: false,
Computed: false,
},
- "optional": schema.BoolAttribute{
- Description: "optional specify whether the ConfigMap or its keys must be defined",
- MarkdownDescription: "optional specify whether the ConfigMap or its keys must be defined",
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly Will force the ReadOnly setting in VolumeMounts.Default false.",
+ MarkdownDescription: "readOnly Will force the ReadOnly setting in VolumeMounts.Default false.",
Required: false,
Optional: true,
Computed: false,
@@ -10576,57 +14460,56 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "csi": schema.SingleNestedAttribute{
- Description: "csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).",
- MarkdownDescription: "csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).",
+ "photon_persistent_disk": schema.SingleNestedAttribute{
+ Description: "photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine",
+ MarkdownDescription: "photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine",
Attributes: map[string]schema.Attribute{
- "driver": schema.StringAttribute{
- Description: "driver is the name of the CSI driver that handles this volume.Consult with your admin for the correct name as registered in the cluster.",
- MarkdownDescription: "driver is the name of the CSI driver that handles this volume.Consult with your admin for the correct name as registered in the cluster.",
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "pd_id": schema.StringAttribute{
+ Description: "pdID is the ID that identifies Photon Controller persistent disk",
+ MarkdownDescription: "pdID is the ID that identifies Photon Controller persistent disk",
Required: true,
Optional: false,
Computed: false,
},
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "fs_type": schema.StringAttribute{
- Description: "fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'.If not provided, the empty value is passed to the associated CSI driverwhich will determine the default filesystem to apply.",
- MarkdownDescription: "fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'.If not provided, the empty value is passed to the associated CSI driverwhich will determine the default filesystem to apply.",
+ "portworx_volume": schema.SingleNestedAttribute{
+ Description: "portworxVolume represents a portworx volume attached and mounted on kubelets host machine",
+ MarkdownDescription: "portworxVolume represents a portworx volume attached and mounted on kubelets host machine",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fSType represents the filesystem type to mountMust be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fSType represents the filesystem type to mountMust be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.",
Required: false,
Optional: true,
Computed: false,
},
- "node_publish_secret_ref": schema.SingleNestedAttribute{
- Description: "nodePublishSecretRef is a reference to the secret object containingsensitive information to pass to the CSI driver to complete the CSINodePublishVolume and NodeUnpublishVolume calls.This field is optional, and may be empty if no secret is required. If thesecret object contains more than one secret, all secret references are passed.",
- MarkdownDescription: "nodePublishSecretRef is a reference to the secret object containingsensitive information to pass to the CSI driver to complete the CSINodePublishVolume and NodeUnpublishVolume calls.This field is optional, and may be empty if no secret is required. If thesecret object contains more than one secret, all secret references are passed.",
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
-
"read_only": schema.BoolAttribute{
- Description: "readOnly specifies a read-only configuration for the volume.Defaults to false (read/write).",
- MarkdownDescription: "readOnly specifies a read-only configuration for the volume.Defaults to false (read/write).",
+ Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
Required: false,
Optional: true,
Computed: false,
},
- "volume_attributes": schema.MapAttribute{
- Description: "volumeAttributes stores driver-specific properties that are passed to the CSIdriver. Consult your driver's documentation for supported values.",
- MarkdownDescription: "volumeAttributes stores driver-specific properties that are passed to the CSIdriver. Consult your driver's documentation for supported values.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
+ "volume_id": schema.StringAttribute{
+ Description: "volumeID uniquely identifies a Portworx volume",
+ MarkdownDescription: "volumeID uniquely identifies a Portworx volume",
+ Required: true,
+ Optional: false,
Computed: false,
},
},
@@ -10635,40 +14518,75 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "downward_api": schema.SingleNestedAttribute{
- Description: "downwardAPI represents downward API about the pod that should populate this volume",
- MarkdownDescription: "downwardAPI represents downward API about the pod that should populate this volume",
+ "projected": schema.SingleNestedAttribute{
+ Description: "projected items for all in one resources secrets, configmaps, and downward API",
+ MarkdownDescription: "projected items for all in one resources secrets, configmaps, and downward API",
Attributes: map[string]schema.Attribute{
"default_mode": schema.Int64Attribute{
- Description: "Optional: mode bits to use on created files by default. Must be aOptional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "Optional: mode bits to use on created files by default. Must be aOptional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Description: "defaultMode are the mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "defaultMode are the mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
Required: false,
Optional: true,
Computed: false,
},
- "items": schema.ListNestedAttribute{
- Description: "Items is a list of downward API volume file",
- MarkdownDescription: "Items is a list of downward API volume file",
+ "sources": schema.ListNestedAttribute{
+ Description: "sources is the list of volume projections",
+ MarkdownDescription: "sources is the list of volume projections",
NestedObject: schema.NestedAttributeObject{
Attributes: map[string]schema.Attribute{
- "field_ref": schema.SingleNestedAttribute{
- Description: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
- MarkdownDescription: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
+ "config_map": schema.SingleNestedAttribute{
+ Description: "configMap information about the configMap data to project",
+ MarkdownDescription: "configMap information about the configMap data to project",
Attributes: map[string]schema.Attribute{
- "api_version": schema.StringAttribute{
- Description: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
- MarkdownDescription: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ "items": schema.ListNestedAttribute{
+ Description: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
Required: false,
Optional: true,
Computed: false,
},
- "field_path": schema.StringAttribute{
- Description: "Path of the field to select in the specified API version.",
- MarkdownDescription: "Path of the field to select in the specified API version.",
- Required: true,
- Optional: false,
+ "optional": schema.BoolAttribute{
+ Description: "optional specify whether the ConfigMap or its keys must be defined",
+ MarkdownDescription: "optional specify whether the ConfigMap or its keys must be defined",
+ Required: false,
+ Optional: true,
Computed: false,
},
},
@@ -10677,45 +14595,183 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "mode": schema.Int64Attribute{
- Description: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
+ "downward_api": schema.SingleNestedAttribute{
+ Description: "downwardAPI information about the downwardAPI data to project",
+ MarkdownDescription: "downwardAPI information about the downwardAPI data to project",
+ Attributes: map[string]schema.Attribute{
+ "items": schema.ListNestedAttribute{
+ Description: "Items is a list of DownwardAPIVolume file",
+ MarkdownDescription: "Items is a list of DownwardAPIVolume file",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "field_ref": schema.SingleNestedAttribute{
+ Description: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
+ MarkdownDescription: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
+ Attributes: map[string]schema.Attribute{
+ "api_version": schema.StringAttribute{
+ Description: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ MarkdownDescription: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "field_path": schema.StringAttribute{
+ Description: "Path of the field to select in the specified API version.",
+ MarkdownDescription: "Path of the field to select in the specified API version.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "mode": schema.Int64Attribute{
+ Description: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
+ MarkdownDescription: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "resource_field_ref": schema.SingleNestedAttribute{
+ Description: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
+ MarkdownDescription: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
+ Attributes: map[string]schema.Attribute{
+ "container_name": schema.StringAttribute{
+ Description: "Container name: required for volumes, optional for env vars",
+ MarkdownDescription: "Container name: required for volumes, optional for env vars",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "divisor": schema.StringAttribute{
+ Description: "Specifies the output format of the exposed resources, defaults to '1'",
+ MarkdownDescription: "Specifies the output format of the exposed resources, defaults to '1'",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "resource": schema.StringAttribute{
+ Description: "Required: resource to select",
+ MarkdownDescription: "Required: resource to select",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- "path": schema.StringAttribute{
- Description: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
- MarkdownDescription: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
- Required: true,
- Optional: false,
- Computed: false,
+ "secret": schema.SingleNestedAttribute{
+ Description: "secret information about the secret data to project",
+ MarkdownDescription: "secret information about the secret data to project",
+ Attributes: map[string]schema.Attribute{
+ "items": schema.ListNestedAttribute{
+ Description: "items if unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "optional": schema.BoolAttribute{
+ Description: "optional field specify whether the Secret or its key must be defined",
+ MarkdownDescription: "optional field specify whether the Secret or its key must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- "resource_field_ref": schema.SingleNestedAttribute{
- Description: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
- MarkdownDescription: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
+ "service_account_token": schema.SingleNestedAttribute{
+ Description: "serviceAccountToken is information about the serviceAccountToken data to project",
+ MarkdownDescription: "serviceAccountToken is information about the serviceAccountToken data to project",
Attributes: map[string]schema.Attribute{
- "container_name": schema.StringAttribute{
- Description: "Container name: required for volumes, optional for env vars",
- MarkdownDescription: "Container name: required for volumes, optional for env vars",
+ "audience": schema.StringAttribute{
+ Description: "audience is the intended audience of the token. A recipient of a tokenmust identify itself with an identifier specified in the audience of thetoken, and otherwise should reject the token. The audience defaults to theidentifier of the apiserver.",
+ MarkdownDescription: "audience is the intended audience of the token. A recipient of a tokenmust identify itself with an identifier specified in the audience of thetoken, and otherwise should reject the token. The audience defaults to theidentifier of the apiserver.",
Required: false,
Optional: true,
Computed: false,
},
- "divisor": schema.StringAttribute{
- Description: "Specifies the output format of the exposed resources, defaults to '1'",
- MarkdownDescription: "Specifies the output format of the exposed resources, defaults to '1'",
+ "expiration_seconds": schema.Int64Attribute{
+ Description: "expirationSeconds is the requested duration of validity of the serviceaccount token. As the token approaches expiration, the kubelet volumeplugin will proactively rotate the service account token. The kubelet willstart trying to rotate the token if the token is older than 80 percent ofits time to live or if the token is older than 24 hours.Defaults to 1 hourand must be at least 10 minutes.",
+ MarkdownDescription: "expirationSeconds is the requested duration of validity of the serviceaccount token. As the token approaches expiration, the kubelet volumeplugin will proactively rotate the service account token. The kubelet willstart trying to rotate the token if the token is older than 80 percent ofits time to live or if the token is older than 24 hours.Defaults to 1 hourand must be at least 10 minutes.",
Required: false,
Optional: true,
Computed: false,
},
- "resource": schema.StringAttribute{
- Description: "Required: resource to select",
- MarkdownDescription: "Required: resource to select",
+ "path": schema.StringAttribute{
+ Description: "path is the path relative to the mount point of the file to project thetoken into.",
+ MarkdownDescription: "path is the path relative to the mount point of the file to project thetoken into.",
Required: true,
Optional: false,
Computed: false,
@@ -10737,358 +14793,360 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "empty_dir": schema.SingleNestedAttribute{
- Description: "emptyDir represents a temporary directory that shares a pod's lifetime.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
- MarkdownDescription: "emptyDir represents a temporary directory that shares a pod's lifetime.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ "quobyte": schema.SingleNestedAttribute{
+ Description: "quobyte represents a Quobyte mount on the host that shares a pod's lifetime",
+ MarkdownDescription: "quobyte represents a Quobyte mount on the host that shares a pod's lifetime",
Attributes: map[string]schema.Attribute{
- "medium": schema.StringAttribute{
- Description: "medium represents what type of storage medium should back this directory.The default is '' which means to use the node's default medium.Must be an empty string (default) or Memory.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
- MarkdownDescription: "medium represents what type of storage medium should back this directory.The default is '' which means to use the node's default medium.Must be an empty string (default) or Memory.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ "group": schema.StringAttribute{
+ Description: "group to map volume access toDefault is no group",
+ MarkdownDescription: "group to map volume access toDefault is no group",
Required: false,
Optional: true,
Computed: false,
},
- "size_limit": schema.StringAttribute{
- Description: "sizeLimit is the total amount of local storage required for this EmptyDir volume.The size limit is also applicable for memory medium.The maximum usage on memory medium EmptyDir would be the minimum value betweenthe SizeLimit specified here and the sum of memory limits of all containers in a pod.The default is nil which means that the limit is undefined.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
- MarkdownDescription: "sizeLimit is the total amount of local storage required for this EmptyDir volume.The size limit is also applicable for memory medium.The maximum usage on memory medium EmptyDir would be the minimum value betweenthe SizeLimit specified here and the sum of memory limits of all containers in a pod.The default is nil which means that the limit is undefined.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the Quobyte volume to be mounted with read-only permissions.Defaults to false.",
+ MarkdownDescription: "readOnly here will force the Quobyte volume to be mounted with read-only permissions.Defaults to false.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "registry": schema.StringAttribute{
+ Description: "registry represents a single or multiple Quobyte Registry servicesspecified as a string as host:port pair (multiple entries are separated with commas)which acts as the central registry for volumes",
+ MarkdownDescription: "registry represents a single or multiple Quobyte Registry servicesspecified as a string as host:port pair (multiple entries are separated with commas)which acts as the central registry for volumes",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "tenant": schema.StringAttribute{
+ Description: "tenant owning the given Quobyte volume in the BackendUsed with dynamically provisioned Quobyte volumes, value is set by the plugin",
+ MarkdownDescription: "tenant owning the given Quobyte volume in the BackendUsed with dynamically provisioned Quobyte volumes, value is set by the plugin",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "user": schema.StringAttribute{
+ Description: "user to map volume access toDefaults to serivceaccount user",
+ MarkdownDescription: "user to map volume access toDefaults to serivceaccount user",
Required: false,
Optional: true,
Computed: false,
},
+
+ "volume": schema.StringAttribute{
+ Description: "volume is a string that references an already created Quobyte volume by name.",
+ MarkdownDescription: "volume is a string that references an already created Quobyte volume by name.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
},
Required: false,
Optional: true,
Computed: false,
},
- "ephemeral": schema.SingleNestedAttribute{
- Description: "ephemeral represents a volume that is handled by a cluster storage driver.The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,and deleted when the pod is removed.Use this if:a) the volume is only needed while the pod runs,b) features of normal volumes like restoring from snapshot or capacity tracking are needed,c) the storage driver is specified through a storage class, andd) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim).Use PersistentVolumeClaim or one of the vendor-specificAPIs for volumes that persist for longer than the lifecycleof an individual pod.Use CSI for light-weight local ephemeral volumes if the CSI driver is meant tobe used that way - see the documentation of the driver formore information.A pod can use both types of ephemeral volumes andpersistent volumes at the same time.",
- MarkdownDescription: "ephemeral represents a volume that is handled by a cluster storage driver.The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,and deleted when the pod is removed.Use this if:a) the volume is only needed while the pod runs,b) features of normal volumes like restoring from snapshot or capacity tracking are needed,c) the storage driver is specified through a storage class, andd) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim).Use PersistentVolumeClaim or one of the vendor-specificAPIs for volumes that persist for longer than the lifecycleof an individual pod.Use CSI for light-weight local ephemeral volumes if the CSI driver is meant tobe used that way - see the documentation of the driver formore information.A pod can use both types of ephemeral volumes andpersistent volumes at the same time.",
+ "rbd": schema.SingleNestedAttribute{
+ Description: "rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/rbd/README.md",
+ MarkdownDescription: "rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/rbd/README.md",
Attributes: map[string]schema.Attribute{
- "volume_claim_template": schema.SingleNestedAttribute{
- Description: "Will be used to create a stand-alone PVC to provision the volume.The pod in which this EphemeralVolumeSource is embedded will be theowner of the PVC, i.e. the PVC will be deleted together with thepod. The name of the PVC will be '-' where'' is the name from the 'PodSpec.Volumes' arrayentry. Pod validation will reject the pod if the concatenated nameis not valid for a PVC (for example, too long).An existing PVC with that name that is not owned by the podwill *not* be used for the pod to avoid using an unrelatedvolume by mistake. Starting the pod is then blocked untilthe unrelated PVC is removed. If such a pre-created PVC ismeant to be used by the pod, the PVC has to updated with anowner reference to the pod once the pod exists. Normallythis should not be necessary, but it may be useful whenmanually reconstructing a broken cluster.This field is read-only and no changes will be made by Kubernetesto the PVC after it has been created.Required, must not be nil.",
- MarkdownDescription: "Will be used to create a stand-alone PVC to provision the volume.The pod in which this EphemeralVolumeSource is embedded will be theowner of the PVC, i.e. the PVC will be deleted together with thepod. The name of the PVC will be '-' where'' is the name from the 'PodSpec.Volumes' arrayentry. Pod validation will reject the pod if the concatenated nameis not valid for a PVC (for example, too long).An existing PVC with that name that is not owned by the podwill *not* be used for the pod to avoid using an unrelatedvolume by mistake. Starting the pod is then blocked untilthe unrelated PVC is removed. If such a pre-created PVC ismeant to be used by the pod, the PVC has to updated with anowner reference to the pod once the pod exists. Normallythis should not be necessary, but it may be useful whenmanually reconstructing a broken cluster.This field is read-only and no changes will be made by Kubernetesto the PVC after it has been created.Required, must not be nil.",
- Attributes: map[string]schema.Attribute{
- "metadata": schema.SingleNestedAttribute{
- Description: "May contain labels and annotations that will be copied into the PVCwhen creating it. No other fields are allowed and will be rejected duringvalidation.",
- MarkdownDescription: "May contain labels and annotations that will be copied into the PVCwhen creating it. No other fields are allowed and will be rejected duringvalidation.",
- Attributes: map[string]schema.Attribute{
- "annotations": schema.MapAttribute{
- Description: "",
- MarkdownDescription: "",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "finalizers": schema.ListAttribute{
- Description: "",
- MarkdownDescription: "",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "labels": schema.MapAttribute{
- Description: "",
- MarkdownDescription: "",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "name": schema.StringAttribute{
- Description: "",
- MarkdownDescription: "",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#rbdTODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#rbdTODO: how do we prevent errors in the filesystem from compromising the machine",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "namespace": schema.StringAttribute{
- Description: "",
- MarkdownDescription: "",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "image": schema.StringAttribute{
+ Description: "image is the rados image name.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "image is the rados image name.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "spec": schema.SingleNestedAttribute{
- Description: "The specification for the PersistentVolumeClaim. The entire content iscopied unchanged into the PVC that gets created from thistemplate. The same fields as in a PersistentVolumeClaimare also valid here.",
- MarkdownDescription: "The specification for the PersistentVolumeClaim. The entire content iscopied unchanged into the PVC that gets created from thistemplate. The same fields as in a PersistentVolumeClaimare also valid here.",
- Attributes: map[string]schema.Attribute{
- "access_modes": schema.ListAttribute{
- Description: "accessModes contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1",
- MarkdownDescription: "accessModes contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "keyring": schema.StringAttribute{
+ Description: "keyring is the path to key ring for RBDUser.Default is /etc/ceph/keyring.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "keyring is the path to key ring for RBDUser.Default is /etc/ceph/keyring.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "data_source": schema.SingleNestedAttribute{
- Description: "dataSource field can be used to specify either:* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)* An existing PVC (PersistentVolumeClaim)If the provisioner or an external controller can support the specified data source,it will create a new volume based on the contents of the specified data source.When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.If the namespace is specified, then dataSourceRef will not be copied to dataSource.",
- MarkdownDescription: "dataSource field can be used to specify either:* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)* An existing PVC (PersistentVolumeClaim)If the provisioner or an external controller can support the specified data source,it will create a new volume based on the contents of the specified data source.When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.If the namespace is specified, then dataSourceRef will not be copied to dataSource.",
- Attributes: map[string]schema.Attribute{
- "api_group": schema.StringAttribute{
- Description: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
- MarkdownDescription: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "monitors": schema.ListAttribute{
+ Description: "monitors is a collection of Ceph monitors.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "monitors is a collection of Ceph monitors.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ ElementType: types.StringType,
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "kind": schema.StringAttribute{
- Description: "Kind is the type of resource being referenced",
- MarkdownDescription: "Kind is the type of resource being referenced",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "pool": schema.StringAttribute{
+ Description: "pool is the rados pool name.Default is rbd.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "pool is the rados pool name.Default is rbd.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "name": schema.StringAttribute{
- Description: "Name is the name of resource being referenced",
- MarkdownDescription: "Name is the name of resource being referenced",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "data_source_ref": schema.SingleNestedAttribute{
- Description: "dataSourceRef specifies the object from which to populate the volume with data, if a non-emptyvolume is desired. This may be any object from a non-empty API group (noncore object) or a PersistentVolumeClaim object.When this field is specified, volume binding will only succeed if the type ofthe specified object matches some installed volume populator or dynamicprovisioner.This field will replace the functionality of the dataSource field and as suchif both fields are non-empty, they must have the same value. For backwardscompatibility, when namespace isn't specified in dataSourceRef,both fields (dataSource and dataSourceRef) will be set to the samevalue automatically if one of them is empty and the other is non-empty.When namespace is specified in dataSourceRef,dataSource isn't set to the same value and must be empty.There are three important differences between dataSource and dataSourceRef:* While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects.* While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified.* While dataSource only allows local objects, dataSourceRef allows objects in any namespaces.(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
- MarkdownDescription: "dataSourceRef specifies the object from which to populate the volume with data, if a non-emptyvolume is desired. This may be any object from a non-empty API group (noncore object) or a PersistentVolumeClaim object.When this field is specified, volume binding will only succeed if the type ofthe specified object matches some installed volume populator or dynamicprovisioner.This field will replace the functionality of the dataSource field and as suchif both fields are non-empty, they must have the same value. For backwardscompatibility, when namespace isn't specified in dataSourceRef,both fields (dataSource and dataSourceRef) will be set to the samevalue automatically if one of them is empty and the other is non-empty.When namespace is specified in dataSourceRef,dataSource isn't set to the same value and must be empty.There are three important differences between dataSource and dataSourceRef:* While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects.* While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified.* While dataSource only allows local objects, dataSourceRef allows objects in any namespaces.(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
- Attributes: map[string]schema.Attribute{
- "api_group": schema.StringAttribute{
- Description: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
- MarkdownDescription: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is name of the authentication secret for RBDUser. If providedoverrides keyring.Default is nil.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "secretRef is name of the authentication secret for RBDUser. If providedoverrides keyring.Default is nil.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "kind": schema.StringAttribute{
- Description: "Kind is the type of resource being referenced",
- MarkdownDescription: "Kind is the type of resource being referenced",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "user": schema.StringAttribute{
+ Description: "user is the rados user name.Default is admin.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "user is the rados user name.Default is admin.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "name": schema.StringAttribute{
- Description: "Name is the name of resource being referenced",
- MarkdownDescription: "Name is the name of resource being referenced",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "scale_io": schema.SingleNestedAttribute{
+ Description: "scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.",
+ MarkdownDescription: "scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'.Default is 'xfs'.",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'.Default is 'xfs'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "namespace": schema.StringAttribute{
- Description: "Namespace is the namespace of resource being referencedNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
- MarkdownDescription: "Namespace is the namespace of resource being referencedNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "gateway": schema.StringAttribute{
+ Description: "gateway is the host address of the ScaleIO API Gateway.",
+ MarkdownDescription: "gateway is the host address of the ScaleIO API Gateway.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "resources": schema.SingleNestedAttribute{
- Description: "resources represents the minimum resources the volume should have.If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirementsthat are lower than previous value but must still be higher than capacity recorded in thestatus field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources",
- MarkdownDescription: "resources represents the minimum resources the volume should have.If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirementsthat are lower than previous value but must still be higher than capacity recorded in thestatus field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources",
- Attributes: map[string]schema.Attribute{
- "claims": schema.ListNestedAttribute{
- Description: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
- MarkdownDescription: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
- MarkdownDescription: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "protection_domain": schema.StringAttribute{
+ Description: "protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.",
+ MarkdownDescription: "protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "limits": schema.MapAttribute{
- Description: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- MarkdownDescription: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "requests": schema.MapAttribute{
- Description: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- MarkdownDescription: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef references to the secret for ScaleIO user and othersensitive information. If this is not provided, Login operation will fail.",
+ MarkdownDescription: "secretRef references to the secret for ScaleIO user and othersensitive information. If this is not provided, Login operation will fail.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "selector": schema.SingleNestedAttribute{
- Description: "selector is a label query over volumes to consider for binding.",
- MarkdownDescription: "selector is a label query over volumes to consider for binding.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "ssl_enabled": schema.BoolAttribute{
+ Description: "sslEnabled Flag enable/disable SSL communication with Gateway, default false",
+ MarkdownDescription: "sslEnabled Flag enable/disable SSL communication with Gateway, default false",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "storage_mode": schema.StringAttribute{
+ Description: "storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.Default is ThinProvisioned.",
+ MarkdownDescription: "storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.Default is ThinProvisioned.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "storage_pool": schema.StringAttribute{
+ Description: "storagePool is the ScaleIO Storage Pool associated with the protection domain.",
+ MarkdownDescription: "storagePool is the ScaleIO Storage Pool associated with the protection domain.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "system": schema.StringAttribute{
+ Description: "system is the name of the storage system as configured in ScaleIO.",
+ MarkdownDescription: "system is the name of the storage system as configured in ScaleIO.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "storage_class_name": schema.StringAttribute{
- Description: "storageClassName is the name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1",
- MarkdownDescription: "storageClassName is the name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "volume_name": schema.StringAttribute{
+ Description: "volumeName is the name of a volume already created in the ScaleIO systemthat is associated with this volume source.",
+ MarkdownDescription: "volumeName is the name of a volume already created in the ScaleIO systemthat is associated with this volume source.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "volume_mode": schema.StringAttribute{
- Description: "volumeMode defines what type of volume is required by the claim.Value of Filesystem is implied when not included in claim spec.",
- MarkdownDescription: "volumeMode defines what type of volume is required by the claim.Value of Filesystem is implied when not included in claim spec.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "secret": schema.SingleNestedAttribute{
+ Description: "secret represents a secret that should populate this volume.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ MarkdownDescription: "secret represents a secret that should populate this volume.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "items": schema.ListNestedAttribute{
+ Description: "items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "volume_name": schema.StringAttribute{
- Description: "volumeName is the binding reference to the PersistentVolume backing this claim.",
- MarkdownDescription: "volumeName is the binding reference to the PersistentVolume backing this claim.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- Required: true,
- Optional: false,
- Computed: false,
},
},
Required: false,
Optional: true,
Computed: false,
},
+
+ "optional": schema.BoolAttribute{
+ Description: "optional field specify whether the Secret or its keys must be defined",
+ MarkdownDescription: "optional field specify whether the Secret or its keys must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_name": schema.StringAttribute{
+ Description: "secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ MarkdownDescription: "secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
Required: false,
Optional: true,
Computed: false,
},
- "fc": schema.SingleNestedAttribute{
- Description: "fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.",
- MarkdownDescription: "fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.",
+ "storageos": schema.SingleNestedAttribute{
+ Description: "storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.",
+ MarkdownDescription: "storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.",
Attributes: map[string]schema.Attribute{
"fs_type": schema.StringAttribute{
- Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.TODO: how do we prevent errors in the filesystem from compromising the machine",
- MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.TODO: how do we prevent errors in the filesystem from compromising the machine",
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
Required: false,
Optional: true,
Computed: false,
},
- "lun": schema.Int64Attribute{
- Description: "lun is Optional: FC target lun number",
- MarkdownDescription: "lun is Optional: FC target lun number",
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
Required: false,
Optional: true,
Computed: false,
},
- "read_only": schema.BoolAttribute{
- Description: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- MarkdownDescription: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- Required: false,
- Optional: true,
- Computed: false,
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef specifies the secret to use for obtaining the StorageOS APIcredentials. If not specified, default values will be attempted.",
+ MarkdownDescription: "secretRef specifies the secret to use for obtaining the StorageOS APIcredentials. If not specified, default values will be attempted.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- "target_ww_ns": schema.ListAttribute{
- Description: "targetWWNs is Optional: FC target worldwide names (WWNs)",
- MarkdownDescription: "targetWWNs is Optional: FC target worldwide names (WWNs)",
- ElementType: types.StringType,
+ "volume_name": schema.StringAttribute{
+ Description: "volumeName is the human-readable name of the StorageOS volume. Volumenames are only unique within a namespace.",
+ MarkdownDescription: "volumeName is the human-readable name of the StorageOS volume. Volumenames are only unique within a namespace.",
Required: false,
Optional: true,
Computed: false,
},
- "wwids": schema.ListAttribute{
- Description: "wwids Optional: FC volume world wide identifiers (wwids)Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.",
- MarkdownDescription: "wwids Optional: FC volume world wide identifiers (wwids)Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.",
- ElementType: types.StringType,
+ "volume_namespace": schema.StringAttribute{
+ Description: "volumeNamespace specifies the scope of the volume within StorageOS. If nonamespace is specified then the Pod's namespace will be used. This allows theKubernetes name scoping to be mirrored within StorageOS for tighter integration.Set VolumeName to any name to override the default behaviour.Set to 'default' if you are not using namespaces within StorageOS.Namespaces that do not pre-exist within StorageOS will be created.",
+ MarkdownDescription: "volumeNamespace specifies the scope of the volume within StorageOS. If nonamespace is specified then the Pod's namespace will be used. This allows theKubernetes name scoping to be mirrored within StorageOS for tighter integration.Set VolumeName to any name to override the default behaviour.Set to 'default' if you are not using namespaces within StorageOS.Namespaces that do not pre-exist within StorageOS will be created.",
Required: false,
Optional: true,
Computed: false,
@@ -11099,190 +15157,317 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "flex_volume": schema.SingleNestedAttribute{
- Description: "flexVolume represents a generic volume resource that isprovisioned/attached using an exec based plugin.",
- MarkdownDescription: "flexVolume represents a generic volume resource that isprovisioned/attached using an exec based plugin.",
+ "vsphere_volume": schema.SingleNestedAttribute{
+ Description: "vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine",
+ MarkdownDescription: "vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine",
Attributes: map[string]schema.Attribute{
- "driver": schema.StringAttribute{
- Description: "driver is the name of the driver to use for this volume.",
- MarkdownDescription: "driver is the name of the driver to use for this volume.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
"fs_type": schema.StringAttribute{
- Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.",
- MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.",
+ Description: "fsType is filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fsType is filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
Required: false,
Optional: true,
Computed: false,
},
- "options": schema.MapAttribute{
- Description: "options is Optional: this field holds extra command options if any.",
- MarkdownDescription: "options is Optional: this field holds extra command options if any.",
- ElementType: types.StringType,
+ "storage_policy_id": schema.StringAttribute{
+ Description: "storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.",
+ MarkdownDescription: "storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.",
Required: false,
Optional: true,
Computed: false,
},
- "read_only": schema.BoolAttribute{
- Description: "readOnly is Optional: defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- MarkdownDescription: "readOnly is Optional: defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ "storage_policy_name": schema.StringAttribute{
+ Description: "storagePolicyName is the storage Policy Based Management (SPBM) profile name.",
+ MarkdownDescription: "storagePolicyName is the storage Policy Based Management (SPBM) profile name.",
Required: false,
Optional: true,
Computed: false,
},
- "secret_ref": schema.SingleNestedAttribute{
- Description: "secretRef is Optional: secretRef is reference to the secret object containingsensitive information to pass to the plugin scripts. This may beempty if no secret object is specified. If the secret objectcontains more than one secret, all secrets are passed to the pluginscripts.",
- MarkdownDescription: "secretRef is Optional: secretRef is reference to the secret object containingsensitive information to pass to the plugin scripts. This may beempty if no secret object is specified. If the secret objectcontains more than one secret, all secrets are passed to the pluginscripts.",
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ "volume_path": schema.StringAttribute{
+ Description: "volumePath is the path that identifies vSphere volume vmdk",
+ MarkdownDescription: "volumePath is the path that identifies vSphere volume vmdk",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
},
Required: false,
Optional: true,
Computed: false,
},
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "flocker": schema.SingleNestedAttribute{
- Description: "flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running",
- MarkdownDescription: "flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running",
- Attributes: map[string]schema.Attribute{
- "dataset_name": schema.StringAttribute{
- Description: "datasetName is Name of the dataset stored as metadata -> name on the dataset for Flockershould be considered as deprecated",
- MarkdownDescription: "datasetName is Name of the dataset stored as metadata -> name on the dataset for Flockershould be considered as deprecated",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "issuer": schema.SingleNestedAttribute{
+ Description: "Specifies the configuration for the TLS certificates issuer.It allows defining the issuer name and the reference to the secret containing the TLS certificates and key.The secret should contain the CA certificate, TLS certificate, and private key in the specified keys.Required when TLS is enabled.",
+ MarkdownDescription: "Specifies the configuration for the TLS certificates issuer.It allows defining the issuer name and the reference to the secret containing the TLS certificates and key.The secret should contain the CA certificate, TLS certificate, and private key in the specified keys.Required when TLS is enabled.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "The issuer for TLS certificates.It only allows two enum values: 'KubeBlocks' and 'UserProvided'.- 'KubeBlocks' indicates that the self-signed TLS certificates generated by the KubeBlocks Operator will be used.- 'UserProvided' means that the user is responsible for providing their own CA, Cert, and Key. In this case, the user-provided CA certificate, server certificate, and private key will be used for TLS communication.",
+ MarkdownDescription: "The issuer for TLS certificates.It only allows two enum values: 'KubeBlocks' and 'UserProvided'.- 'KubeBlocks' indicates that the self-signed TLS certificates generated by the KubeBlocks Operator will be used.- 'UserProvided' means that the user is responsible for providing their own CA, Cert, and Key. In this case, the user-provided CA certificate, server certificate, and private key will be used for TLS communication.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "SecretRef is the reference to the secret that contains user-provided certificates.It is required when the issuer is set to 'UserProvided'.",
+ MarkdownDescription: "SecretRef is the reference to the secret that contains user-provided certificates.It is required when the issuer is set to 'UserProvided'.",
+ Attributes: map[string]schema.Attribute{
+ "ca": schema.StringAttribute{
+ Description: "Key of CA cert in Secret",
+ MarkdownDescription: "Key of CA cert in Secret",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "cert": schema.StringAttribute{
+ Description: "Key of Cert in Secret",
+ MarkdownDescription: "Key of Cert in Secret",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "key": schema.StringAttribute{
+ Description: "Key of TLS private key in Secret",
+ MarkdownDescription: "Key of TLS private key in Secret",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name of the Secret that contains user-provided certificates.",
+ MarkdownDescription: "Name of the Secret that contains user-provided certificates.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "labels": schema.MapAttribute{
+ Description: "Specifies Labels to override or add for underlying Pods.",
+ MarkdownDescription: "Specifies Labels to override or add for underlying Pods.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "monitor": schema.BoolAttribute{
+ Description: "Deprecated since v0.9Determines whether metrics exporter information is annotated on the Component's headless Service.If set to true, the following annotations will be patched into the Service:- 'monitor.kubeblocks.io/path'- 'monitor.kubeblocks.io/port'- 'monitor.kubeblocks.io/scheme'These annotations allow the Prometheus installed by KubeBlocks to discover and scrape metrics from the exporter.",
+ MarkdownDescription: "Deprecated since v0.9Determines whether metrics exporter information is annotated on the Component's headless Service.If set to true, the following annotations will be patched into the Service:- 'monitor.kubeblocks.io/path'- 'monitor.kubeblocks.io/port'- 'monitor.kubeblocks.io/scheme'These annotations allow the Prometheus installed by KubeBlocks to discover and scrape metrics from the exporter.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Specifies the Component's name.It's part of the Service DNS name and must comply with the IANA service naming rule.The name is optional when ClusterComponentSpec is used as a template (e.g., in 'shardingSpec'),but required otherwise.TODO +kubebuilder:validation:XValidation:rule='self == oldSelf',message='name is immutable'",
+ MarkdownDescription: "Specifies the Component's name.It's part of the Service DNS name and must comply with the IANA service naming rule.The name is optional when ClusterComponentSpec is used as a template (e.g., in 'shardingSpec'),but required otherwise.TODO +kubebuilder:validation:XValidation:rule='self == oldSelf',message='name is immutable'",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.LengthAtMost(22),
+ stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z]([a-z0-9\-]*[a-z0-9])?$`), ""),
+ },
+ },
+
+ "offline_instances": schema.ListAttribute{
+ Description: "Specifies the names of instances to be transitioned to offline status.Marking an instance as offline results in the following:1. The associated Pod is stopped, and its PersistentVolumeClaim (PVC) is retained for potential future reuse or data recovery, but it is no longer actively used.2. The ordinal number assigned to this instance is preserved, ensuring it remains unique and avoiding conflicts with new instances.Setting instances to offline allows for a controlled scale-in process, preserving their data and maintainingordinal consistency within the Cluster.Note that offline instances and their associated resources, such as PVCs, are not automatically deleted.The administrator must manually manage the cleanup and removal of these resources when they are no longer needed.",
+ MarkdownDescription: "Specifies the names of instances to be transitioned to offline status.Marking an instance as offline results in the following:1. The associated Pod is stopped, and its PersistentVolumeClaim (PVC) is retained for potential future reuse or data recovery, but it is no longer actively used.2. The ordinal number assigned to this instance is preserved, ensuring it remains unique and avoiding conflicts with new instances.Setting instances to offline allows for a controlled scale-in process, preserving their data and maintainingordinal consistency within the Cluster.Note that offline instances and their associated resources, such as PVCs, are not automatically deleted.The administrator must manually manage the cleanup and removal of these resources when they are no longer needed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "dataset_uuid": schema.StringAttribute{
- Description: "datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset",
- MarkdownDescription: "datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "replicas": schema.Int64Attribute{
+ Description: "Specifies the desired number of replicas in the Component for enhancing availability and durability, or load balancing.",
+ MarkdownDescription: "Specifies the desired number of replicas in the Component for enhancing availability and durability, or load balancing.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ Validators: []validator.Int64{
+ int64validator.AtLeast(0),
+ },
+ },
- "gce_persistent_disk": schema.SingleNestedAttribute{
- Description: "gcePersistentDisk represents a GCE Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
- MarkdownDescription: "gcePersistentDisk represents a GCE Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
- Attributes: map[string]schema.Attribute{
- "fs_type": schema.StringAttribute{
- Description: "fsType is filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskTODO: how do we prevent errors in the filesystem from compromising the machine",
- MarkdownDescription: "fsType is filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskTODO: how do we prevent errors in the filesystem from compromising the machine",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "resources": schema.SingleNestedAttribute{
+ Description: "Specifies the resources required by the Component.It allows defining the CPU, memory requirements and limits for the Component's containers.",
+ MarkdownDescription: "Specifies the resources required by the Component.It allows defining the CPU, memory requirements and limits for the Component's containers.",
+ Attributes: map[string]schema.Attribute{
+ "claims": schema.ListNestedAttribute{
+ Description: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ MarkdownDescription: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ MarkdownDescription: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "partition": schema.Int64Attribute{
- Description: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
- MarkdownDescription: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "limits": schema.MapAttribute{
+ Description: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "pd_name": schema.StringAttribute{
- Description: "pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
- MarkdownDescription: "pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "requests": schema.MapAttribute{
+ Description: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
- MarkdownDescription: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "scheduling_policy": schema.SingleNestedAttribute{
+ Description: "Specifies the scheduling policy for the Component.",
+ MarkdownDescription: "Specifies the scheduling policy for the Component.",
+ Attributes: map[string]schema.Attribute{
+ "affinity": schema.SingleNestedAttribute{
+ Description: "Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity.",
+ MarkdownDescription: "Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity.",
+ Attributes: map[string]schema.Attribute{
+ "node_affinity": schema.SingleNestedAttribute{
+ Description: "Describes node affinity scheduling rules for the pod.",
+ MarkdownDescription: "Describes node affinity scheduling rules for the pod.",
+ Attributes: map[string]schema.Attribute{
+ "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred.",
+ MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "preference": schema.SingleNestedAttribute{
+ Description: "A node selector term, associated with the corresponding weight.",
+ MarkdownDescription: "A node selector term, associated with the corresponding weight.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "A list of node selector requirements by node's labels.",
+ MarkdownDescription: "A list of node selector requirements by node's labels.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The label key that the selector applies to.",
+ MarkdownDescription: "The label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "git_repo": schema.SingleNestedAttribute{
- Description: "gitRepo represents a git repository at a particular revision.DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount anEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDirinto the Pod's container.",
- MarkdownDescription: "gitRepo represents a git repository at a particular revision.DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount anEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDirinto the Pod's container.",
- Attributes: map[string]schema.Attribute{
- "directory": schema.StringAttribute{
- Description: "directory is the target directory name.Must not contain or start with '..'. If '.' is supplied, the volume directory will be thegit repository. Otherwise, if specified, the volume will contain the git repository inthe subdirectory with the given name.",
- MarkdownDescription: "directory is the target directory name.Must not contain or start with '..'. If '.' is supplied, the volume directory will be thegit repository. Otherwise, if specified, the volume will contain the git repository inthe subdirectory with the given name.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "repository": schema.StringAttribute{
- Description: "repository is the URL",
- MarkdownDescription: "repository is the URL",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "revision": schema.StringAttribute{
- Description: "revision is the commit hash for the specified revision.",
- MarkdownDescription: "revision is the commit hash for the specified revision.",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "match_fields": schema.ListNestedAttribute{
+ Description: "A list of node selector requirements by node's fields.",
+ MarkdownDescription: "A list of node selector requirements by node's fields.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The label key that the selector applies to.",
+ MarkdownDescription: "The label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "glusterfs": schema.SingleNestedAttribute{
- Description: "glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/glusterfs/README.md",
- MarkdownDescription: "glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/glusterfs/README.md",
- Attributes: map[string]schema.Attribute{
- "endpoints": schema.StringAttribute{
- Description: "endpoints is the endpoint name that details Glusterfs topology.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
- MarkdownDescription: "endpoints is the endpoint name that details Glusterfs topology.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "path": schema.StringAttribute{
- Description: "path is the Glusterfs volume path.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
- MarkdownDescription: "path is the Glusterfs volume path.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly here will force the Glusterfs volume to be mounted with read-only permissions.Defaults to false.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
- MarkdownDescription: "readOnly here will force the Glusterfs volume to be mounted with read-only permissions.Defaults to false.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
- Required: false,
- Optional: true,
- Computed: false,
+ "weight": schema.Int64Attribute{
+ Description: "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.",
+ MarkdownDescription: "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
},
},
Required: false,
@@ -11290,131 +15475,253 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "host_path": schema.SingleNestedAttribute{
- Description: "hostPath represents a pre-existing file or directory on the hostmachine that is directly exposed to the container. This is generallyused for system agents or other privileged things that are allowedto see the host machine. Most containers will NOT need this.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath---TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can notmount host directories as read/write.",
- MarkdownDescription: "hostPath represents a pre-existing file or directory on the hostmachine that is directly exposed to the container. This is generallyused for system agents or other privileged things that are allowedto see the host machine. Most containers will NOT need this.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath---TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can notmount host directories as read/write.",
+ "required_during_scheduling_ignored_during_execution": schema.SingleNestedAttribute{
+ Description: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node.",
+ MarkdownDescription: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node.",
Attributes: map[string]schema.Attribute{
- "path": schema.StringAttribute{
- Description: "path of the directory on the host.If the path is a symlink, it will follow the link to the real path.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
- MarkdownDescription: "path of the directory on the host.If the path is a symlink, it will follow the link to the real path.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "node_selector_terms": schema.ListNestedAttribute{
+ Description: "Required. A list of node selector terms. The terms are ORed.",
+ MarkdownDescription: "Required. A list of node selector terms. The terms are ORed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "A list of node selector requirements by node's labels.",
+ MarkdownDescription: "A list of node selector requirements by node's labels.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The label key that the selector applies to.",
+ MarkdownDescription: "The label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "type": schema.StringAttribute{
- Description: "type for HostPath VolumeDefaults to ''More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
- MarkdownDescription: "type for HostPath VolumeDefaults to ''More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
- Required: false,
- Optional: true,
- Computed: false,
+ "operator": schema.StringAttribute{
+ Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "match_fields": schema.ListNestedAttribute{
+ Description: "A list of node selector requirements by node's fields.",
+ MarkdownDescription: "A list of node selector requirements by node's fields.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The label key that the selector applies to.",
+ MarkdownDescription: "The label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: true,
+ Optional: false,
+ Computed: false,
},
},
Required: false,
Optional: true,
Computed: false,
},
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "iscsi": schema.SingleNestedAttribute{
- Description: "iscsi represents an ISCSI Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://examples.k8s.io/volumes/iscsi/README.md",
- MarkdownDescription: "iscsi represents an ISCSI Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://examples.k8s.io/volumes/iscsi/README.md",
- Attributes: map[string]schema.Attribute{
- "chap_auth_discovery": schema.BoolAttribute{
- Description: "chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication",
- MarkdownDescription: "chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "pod_affinity": schema.SingleNestedAttribute{
+ Description: "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).",
+ MarkdownDescription: "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).",
+ Attributes: map[string]schema.Attribute{
+ "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
+ MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "pod_affinity_term": schema.SingleNestedAttribute{
+ Description: "Required. A pod affinity term, associated with the corresponding weight.",
+ MarkdownDescription: "Required. A pod affinity term, associated with the corresponding weight.",
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "A label query over a set of resources, in this case pods.",
+ MarkdownDescription: "A label query over a set of resources, in this case pods.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "chap_auth_session": schema.BoolAttribute{
- Description: "chapAuthSession defines whether support iSCSI Session CHAP authentication",
- MarkdownDescription: "chapAuthSession defines whether support iSCSI Session CHAP authentication",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "fs_type": schema.StringAttribute{
- Description: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsiTODO: how do we prevent errors in the filesystem from compromising the machine",
- MarkdownDescription: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsiTODO: how do we prevent errors in the filesystem from compromising the machine",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "initiator_name": schema.StringAttribute{
- Description: "initiatorName is the custom iSCSI Initiator Name.If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface: will be created for the connection.",
- MarkdownDescription: "initiatorName is the custom iSCSI Initiator Name.If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface: will be created for the connection.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "iqn": schema.StringAttribute{
- Description: "iqn is the target iSCSI Qualified Name.",
- MarkdownDescription: "iqn is the target iSCSI Qualified Name.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "namespace_selector": schema.SingleNestedAttribute{
+ Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "iscsi_interface": schema.StringAttribute{
- Description: "iscsiInterface is the interface Name that uses an iSCSI transport.Defaults to 'default' (tcp).",
- MarkdownDescription: "iscsiInterface is the interface Name that uses an iSCSI transport.Defaults to 'default' (tcp).",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "lun": schema.Int64Attribute{
- Description: "lun represents iSCSI Target Lun number.",
- MarkdownDescription: "lun represents iSCSI Target Lun number.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "portals": schema.ListAttribute{
- Description: "portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
- MarkdownDescription: "portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.",
- MarkdownDescription: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "namespaces": schema.ListAttribute{
+ Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "secret_ref": schema.SingleNestedAttribute{
- Description: "secretRef is the CHAP Secret for iSCSI target and initiator authentication",
- MarkdownDescription: "secretRef is the CHAP Secret for iSCSI target and initiator authentication",
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
+ "topology_key": schema.StringAttribute{
+ Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
},
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- "target_portal": schema.StringAttribute{
- Description: "targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
- MarkdownDescription: "targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
- Required: true,
- Optional: false,
- Computed: false,
+ "weight": schema.Int64Attribute{
+ Description: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
+ MarkdownDescription: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
},
},
Required: false,
@@ -11422,179 +15729,247 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "name": schema.StringAttribute{
- Description: "name of the volume.Must be a DNS_LABEL and unique within the pod.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names",
- MarkdownDescription: "name of the volume.Must be a DNS_LABEL and unique within the pod.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "nfs": schema.SingleNestedAttribute{
- Description: "nfs represents an NFS mount on the host that shares a pod's lifetimeMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
- MarkdownDescription: "nfs represents an NFS mount on the host that shares a pod's lifetimeMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
- Attributes: map[string]schema.Attribute{
- "path": schema.StringAttribute{
- Description: "path that is exported by the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
- MarkdownDescription: "path that is exported by the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "required_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
+ MarkdownDescription: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "A label query over a set of resources, in this case pods.",
+ MarkdownDescription: "A label query over a set of resources, in this case pods.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly here will force the NFS export to be mounted with read-only permissions.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
- MarkdownDescription: "readOnly here will force the NFS export to be mounted with read-only permissions.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "server": schema.StringAttribute{
- Description: "server is the hostname or IP address of the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
- MarkdownDescription: "server is the hostname or IP address of the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "persistent_volume_claim": schema.SingleNestedAttribute{
- Description: "persistentVolumeClaimVolumeSource represents a reference to aPersistentVolumeClaim in the same namespace.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
- MarkdownDescription: "persistentVolumeClaimVolumeSource represents a reference to aPersistentVolumeClaim in the same namespace.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
- Attributes: map[string]schema.Attribute{
- "claim_name": schema.StringAttribute{
- Description: "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
- MarkdownDescription: "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly Will force the ReadOnly setting in VolumeMounts.Default false.",
- MarkdownDescription: "readOnly Will force the ReadOnly setting in VolumeMounts.Default false.",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "namespace_selector": schema.SingleNestedAttribute{
+ Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "photon_persistent_disk": schema.SingleNestedAttribute{
- Description: "photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine",
- MarkdownDescription: "photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine",
- Attributes: map[string]schema.Attribute{
- "fs_type": schema.StringAttribute{
- Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
- MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "pd_id": schema.StringAttribute{
- Description: "pdID is the ID that identifies Photon Controller persistent disk",
- MarkdownDescription: "pdID is the ID that identifies Photon Controller persistent disk",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "portworx_volume": schema.SingleNestedAttribute{
- Description: "portworxVolume represents a portworx volume attached and mounted on kubelets host machine",
- MarkdownDescription: "portworxVolume represents a portworx volume attached and mounted on kubelets host machine",
- Attributes: map[string]schema.Attribute{
- "fs_type": schema.StringAttribute{
- Description: "fSType represents the filesystem type to mountMust be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.",
- MarkdownDescription: "fSType represents the filesystem type to mountMust be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "namespaces": schema.ListAttribute{
+ Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "volume_id": schema.StringAttribute{
- Description: "volumeID uniquely identifies a Portworx volume",
- MarkdownDescription: "volumeID uniquely identifies a Portworx volume",
- Required: true,
- Optional: false,
- Computed: false,
+ "topology_key": schema.StringAttribute{
+ Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
},
},
Required: false,
Optional: true,
Computed: false,
},
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "projected": schema.SingleNestedAttribute{
- Description: "projected items for all in one resources secrets, configmaps, and downward API",
- MarkdownDescription: "projected items for all in one resources secrets, configmaps, and downward API",
- Attributes: map[string]schema.Attribute{
- "default_mode": schema.Int64Attribute{
- Description: "defaultMode are the mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "defaultMode are the mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "sources": schema.ListNestedAttribute{
- Description: "sources is the list of volume projections",
- MarkdownDescription: "sources is the list of volume projections",
- NestedObject: schema.NestedAttributeObject{
+ "pod_anti_affinity": schema.SingleNestedAttribute{
+ Description: "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).",
+ MarkdownDescription: "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).",
+ Attributes: map[string]schema.Attribute{
+ "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
+ MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "pod_affinity_term": schema.SingleNestedAttribute{
+ Description: "Required. A pod affinity term, associated with the corresponding weight.",
+ MarkdownDescription: "Required. A pod affinity term, associated with the corresponding weight.",
Attributes: map[string]schema.Attribute{
- "config_map": schema.SingleNestedAttribute{
- Description: "configMap information about the configMap data to project",
- MarkdownDescription: "configMap information about the configMap data to project",
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "A label query over a set of resources, in this case pods.",
+ MarkdownDescription: "A label query over a set of resources, in this case pods.",
Attributes: map[string]schema.Attribute{
- "items": schema.ListNestedAttribute{
- Description: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
NestedObject: schema.NestedAttributeObject{
Attributes: map[string]schema.Attribute{
"key": schema.StringAttribute{
- Description: "key is the key to project.",
- MarkdownDescription: "key is the key to project.",
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
Required: true,
Optional: false,
Computed: false,
},
- "mode": schema.Int64Attribute{
- Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
Required: false,
Optional: true,
Computed: false,
},
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "path": schema.StringAttribute{
- Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "namespace_selector": schema.SingleNestedAttribute{
+ Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
Required: true,
Optional: false,
Computed: false,
},
+
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
},
Required: false,
@@ -11602,20 +15977,94 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
Required: false,
Optional: true,
Computed: false,
},
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "optional": schema.BoolAttribute{
- Description: "optional specify whether the ConfigMap or its keys must be defined",
- MarkdownDescription: "optional specify whether the ConfigMap or its keys must be defined",
- Required: false,
- Optional: true,
- Computed: false,
+ "namespaces": schema.ListAttribute{
+ Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "topology_key": schema.StringAttribute{
+ Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "weight": schema.Int64Attribute{
+ Description: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
+ MarkdownDescription: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "required_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
+ Description: "If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
+ MarkdownDescription: "If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "A label query over a set of resources, in this case pods.",
+ MarkdownDescription: "A label query over a set of resources, in this case pods.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
},
Required: false,
@@ -11623,93 +16072,53 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "downward_api": schema.SingleNestedAttribute{
- Description: "downwardAPI information about the downwardAPI data to project",
- MarkdownDescription: "downwardAPI information about the downwardAPI data to project",
- Attributes: map[string]schema.Attribute{
- "items": schema.ListNestedAttribute{
- Description: "Items is a list of DownwardAPIVolume file",
- MarkdownDescription: "Items is a list of DownwardAPIVolume file",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "field_ref": schema.SingleNestedAttribute{
- Description: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
- MarkdownDescription: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
- Attributes: map[string]schema.Attribute{
- "api_version": schema.StringAttribute{
- Description: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
- MarkdownDescription: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "field_path": schema.StringAttribute{
- Description: "Path of the field to select in the specified API version.",
- MarkdownDescription: "Path of the field to select in the specified API version.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "mode": schema.Int64Attribute{
- Description: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "path": schema.StringAttribute{
- Description: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
- MarkdownDescription: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "resource_field_ref": schema.SingleNestedAttribute{
- Description: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
- MarkdownDescription: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
- Attributes: map[string]schema.Attribute{
- "container_name": schema.StringAttribute{
- Description: "Container name: required for volumes, optional for env vars",
- MarkdownDescription: "Container name: required for volumes, optional for env vars",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "namespace_selector": schema.SingleNestedAttribute{
+ Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "divisor": schema.StringAttribute{
- Description: "Specifies the output format of the exposed resources, defaults to '1'",
- MarkdownDescription: "Specifies the output format of the exposed resources, defaults to '1'",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "resource": schema.StringAttribute{
- Description: "Required: resource to select",
- MarkdownDescription: "Required: resource to select",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
},
Required: false,
@@ -11717,520 +16126,841 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "secret": schema.SingleNestedAttribute{
- Description: "secret information about the secret data to project",
- MarkdownDescription: "secret information about the secret data to project",
- Attributes: map[string]schema.Attribute{
- "items": schema.ListNestedAttribute{
- Description: "items if unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the key to project.",
- MarkdownDescription: "key is the key to project.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "mode": schema.Int64Attribute{
- Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "namespaces": schema.ListAttribute{
+ Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "path": schema.StringAttribute{
- Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "topology_key": schema.StringAttribute{
+ Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "node_name": schema.StringAttribute{
+ Description: "NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.",
+ MarkdownDescription: "NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "node_selector": schema.MapAttribute{
+ Description: "NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/",
+ MarkdownDescription: "NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "scheduler_name": schema.StringAttribute{
+ Description: "If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.",
+ MarkdownDescription: "If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "tolerations": schema.ListNestedAttribute{
+ Description: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.",
+ MarkdownDescription: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "effect": schema.StringAttribute{
+ Description: "Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.",
+ MarkdownDescription: "Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "key": schema.StringAttribute{
+ Description: "Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.",
+ MarkdownDescription: "Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.",
+ MarkdownDescription: "Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "optional": schema.BoolAttribute{
- Description: "optional field specify whether the Secret or its key must be defined",
- MarkdownDescription: "optional field specify whether the Secret or its key must be defined",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "toleration_seconds": schema.Int64Attribute{
+ Description: "TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.",
+ MarkdownDescription: "TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "service_account_token": schema.SingleNestedAttribute{
- Description: "serviceAccountToken is information about the serviceAccountToken data to project",
- MarkdownDescription: "serviceAccountToken is information about the serviceAccountToken data to project",
- Attributes: map[string]schema.Attribute{
- "audience": schema.StringAttribute{
- Description: "audience is the intended audience of the token. A recipient of a tokenmust identify itself with an identifier specified in the audience of thetoken, and otherwise should reject the token. The audience defaults to theidentifier of the apiserver.",
- MarkdownDescription: "audience is the intended audience of the token. A recipient of a tokenmust identify itself with an identifier specified in the audience of thetoken, and otherwise should reject the token. The audience defaults to theidentifier of the apiserver.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "value": schema.StringAttribute{
+ Description: "Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.",
+ MarkdownDescription: "Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "expiration_seconds": schema.Int64Attribute{
- Description: "expirationSeconds is the requested duration of validity of the serviceaccount token. As the token approaches expiration, the kubelet volumeplugin will proactively rotate the service account token. The kubelet willstart trying to rotate the token if the token is older than 80 percent ofits time to live or if the token is older than 24 hours.Defaults to 1 hourand must be at least 10 minutes.",
- MarkdownDescription: "expirationSeconds is the requested duration of validity of the serviceaccount token. As the token approaches expiration, the kubelet volumeplugin will proactively rotate the service account token. The kubelet willstart trying to rotate the token if the token is older than 80 percent ofits time to live or if the token is older than 24 hours.Defaults to 1 hourand must be at least 10 minutes.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "topology_spread_constraints": schema.ListNestedAttribute{
+ Description: "TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed.",
+ MarkdownDescription: "TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "label_selector": schema.SingleNestedAttribute{
+ Description: "LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain.",
+ MarkdownDescription: "LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "path": schema.StringAttribute{
- Description: "path is the path relative to the mount point of the file to project thetoken into.",
- MarkdownDescription: "path is the path relative to the mount point of the file to project thetoken into.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
},
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "quobyte": schema.SingleNestedAttribute{
- Description: "quobyte represents a Quobyte mount on the host that shares a pod's lifetime",
- MarkdownDescription: "quobyte represents a Quobyte mount on the host that shares a pod's lifetime",
- Attributes: map[string]schema.Attribute{
- "group": schema.StringAttribute{
- Description: "group to map volume access toDefault is no group",
- MarkdownDescription: "group to map volume access toDefault is no group",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "match_label_keys": schema.ListAttribute{
+ Description: "MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).",
+ MarkdownDescription: "MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly here will force the Quobyte volume to be mounted with read-only permissions.Defaults to false.",
- MarkdownDescription: "readOnly here will force the Quobyte volume to be mounted with read-only permissions.Defaults to false.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "max_skew": schema.Int64Attribute{
+ Description: "MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.",
+ MarkdownDescription: "MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "min_domains": schema.Int64Attribute{
+ Description: "MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).",
+ MarkdownDescription: "MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "node_affinity_policy": schema.StringAttribute{
+ Description: "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
+ MarkdownDescription: "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "node_taints_policy": schema.StringAttribute{
+ Description: "NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
+ MarkdownDescription: "NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "topology_key": schema.StringAttribute{
+ Description: "TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.",
+ MarkdownDescription: "TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "when_unsatisfiable": schema.StringAttribute{
+ Description: "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.",
+ MarkdownDescription: "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "service_account_name": schema.StringAttribute{
+ Description: "Specifies the name of the ServiceAccount required by the running Component.This ServiceAccount is used to grant necessary permissions for the Component's Pods to interactwith other Kubernetes resources, such as modifying Pod labels or sending events.Defaults:If not specified, KubeBlocks automatically assigns a default ServiceAccount named 'kb-{cluster.name}',bound to a default role installed together with KubeBlocks.Future Changes:Future versions might change the default ServiceAccount creation strategy to one per Component,potentially revising the naming to 'kb-{cluster.name}-{component.name}'.Users can override the automatic ServiceAccount assignment by explicitly setting the name ofan existed ServiceAccount in this field.",
+ MarkdownDescription: "Specifies the name of the ServiceAccount required by the running Component.This ServiceAccount is used to grant necessary permissions for the Component's Pods to interactwith other Kubernetes resources, such as modifying Pod labels or sending events.Defaults:If not specified, KubeBlocks automatically assigns a default ServiceAccount named 'kb-{cluster.name}',bound to a default role installed together with KubeBlocks.Future Changes:Future versions might change the default ServiceAccount creation strategy to one per Component,potentially revising the naming to 'kb-{cluster.name}-{component.name}'.Users can override the automatic ServiceAccount assignment by explicitly setting the name ofan existed ServiceAccount in this field.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "service_refs": schema.ListNestedAttribute{
+ Description: "Defines a list of ServiceRef for a Component, enabling access to both external services andServices provided by other Clusters.Types of services:- External services: Not managed by KubeBlocks or managed by a different KubeBlocks operator; Require a ServiceDescriptor for connection details.- Services provided by a Cluster: Managed by the same KubeBlocks operator; identified using Cluster, Component and Service names.ServiceRefs with identical 'serviceRef.name' in the same Cluster are considered the same.Example:'''yamlserviceRefs: - name: 'redis-sentinel' serviceDescriptor: name: 'external-redis-sentinel' - name: 'postgres-cluster' clusterServiceSelector: cluster: 'my-postgres-cluster' service: component: 'postgresql''''The example above includes ServiceRefs to an external Redis Sentinel service and a PostgreSQL Cluster.",
+ MarkdownDescription: "Defines a list of ServiceRef for a Component, enabling access to both external services andServices provided by other Clusters.Types of services:- External services: Not managed by KubeBlocks or managed by a different KubeBlocks operator; Require a ServiceDescriptor for connection details.- Services provided by a Cluster: Managed by the same KubeBlocks operator; identified using Cluster, Component and Service names.ServiceRefs with identical 'serviceRef.name' in the same Cluster are considered the same.Example:'''yamlserviceRefs: - name: 'redis-sentinel' serviceDescriptor: name: 'external-redis-sentinel' - name: 'postgres-cluster' clusterServiceSelector: cluster: 'my-postgres-cluster' service: component: 'postgresql''''The example above includes ServiceRefs to an external Redis Sentinel service and a PostgreSQL Cluster.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "cluster": schema.StringAttribute{
+ Description: "Specifies the name of the KubeBlocks Cluster being referenced.This is used when services from another KubeBlocks Cluster are consumed.By default, the referenced KubeBlocks Cluster's 'clusterDefinition.spec.connectionCredential'will be utilized to bind to the current Component. This credential should include:'endpoint', 'port', 'username', and 'password'.Note:- The 'ServiceKind' and 'ServiceVersion' specified in the service reference within the ClusterDefinition are not validated when using this approach.- If both 'cluster' and 'serviceDescriptor' are present, 'cluster' will take precedence.Deprecated since v0.9 since 'clusterDefinition.spec.connectionCredential' is deprecated,use 'clusterServiceSelector' instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
+ MarkdownDescription: "Specifies the name of the KubeBlocks Cluster being referenced.This is used when services from another KubeBlocks Cluster are consumed.By default, the referenced KubeBlocks Cluster's 'clusterDefinition.spec.connectionCredential'will be utilized to bind to the current Component. This credential should include:'endpoint', 'port', 'username', and 'password'.Note:- The 'ServiceKind' and 'ServiceVersion' specified in the service reference within the ClusterDefinition are not validated when using this approach.- If both 'cluster' and 'serviceDescriptor' are present, 'cluster' will take precedence.Deprecated since v0.9 since 'clusterDefinition.spec.connectionCredential' is deprecated,use 'clusterServiceSelector' instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "cluster_service_selector": schema.SingleNestedAttribute{
+ Description: "References a service provided by another KubeBlocks Cluster.It specifies the ClusterService and the account credentials needed for access.",
+ MarkdownDescription: "References a service provided by another KubeBlocks Cluster.It specifies the ClusterService and the account credentials needed for access.",
+ Attributes: map[string]schema.Attribute{
+ "cluster": schema.StringAttribute{
+ Description: "The name of the Cluster being referenced.",
+ MarkdownDescription: "The name of the Cluster being referenced.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "credential": schema.SingleNestedAttribute{
+ Description: "Specifies the SystemAccount to authenticate and establish a connection with the referenced Cluster.The SystemAccount should be defined in 'componentDefinition.spec.systemAccounts'of the Component providing the service in the referenced Cluster.",
+ MarkdownDescription: "Specifies the SystemAccount to authenticate and establish a connection with the referenced Cluster.The SystemAccount should be defined in 'componentDefinition.spec.systemAccounts'of the Component providing the service in the referenced Cluster.",
+ Attributes: map[string]schema.Attribute{
+ "component": schema.StringAttribute{
+ Description: "The name of the Component where the credential resides in.",
+ MarkdownDescription: "The name of the Component where the credential resides in.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "registry": schema.StringAttribute{
- Description: "registry represents a single or multiple Quobyte Registry servicesspecified as a string as host:port pair (multiple entries are separated with commas)which acts as the central registry for volumes",
- MarkdownDescription: "registry represents a single or multiple Quobyte Registry servicesspecified as a string as host:port pair (multiple entries are separated with commas)which acts as the central registry for volumes",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "The name of the credential (SystemAccount) to reference.",
+ MarkdownDescription: "The name of the credential (SystemAccount) to reference.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "tenant": schema.StringAttribute{
- Description: "tenant owning the given Quobyte volume in the BackendUsed with dynamically provisioned Quobyte volumes, value is set by the plugin",
- MarkdownDescription: "tenant owning the given Quobyte volume in the BackendUsed with dynamically provisioned Quobyte volumes, value is set by the plugin",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "service": schema.SingleNestedAttribute{
+ Description: "Identifies a ClusterService from the list of Services defined in 'cluster.spec.services' of the referenced Cluster.",
+ MarkdownDescription: "Identifies a ClusterService from the list of Services defined in 'cluster.spec.services' of the referenced Cluster.",
+ Attributes: map[string]schema.Attribute{
+ "component": schema.StringAttribute{
+ Description: "The name of the Component where the Service resides in.It is required when referencing a Component's Service.",
+ MarkdownDescription: "The name of the Component where the Service resides in.It is required when referencing a Component's Service.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "user": schema.StringAttribute{
- Description: "user to map volume access toDefaults to serivceaccount user",
- MarkdownDescription: "user to map volume access toDefaults to serivceaccount user",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "port": schema.StringAttribute{
+ Description: "The port name of the Service to be referenced.If there is a non-zero node-port exist for the matched Service port, the node-port will be selected first.If the referenced Service is of pod-service type (a Service per Pod), there will be multiple Service objects matched,and the resolved value will be presented in the following format: service1.name:port1,service2.name:port2...",
+ MarkdownDescription: "The port name of the Service to be referenced.If there is a non-zero node-port exist for the matched Service port, the node-port will be selected first.If the referenced Service is of pod-service type (a Service per Pod), there will be multiple Service objects matched,and the resolved value will be presented in the following format: service1.name:port1,service2.name:port2...",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "volume": schema.StringAttribute{
- Description: "volume is a string that references an already created Quobyte volume by name.",
- MarkdownDescription: "volume is a string that references an already created Quobyte volume by name.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "service": schema.StringAttribute{
+ Description: "The name of the Service to be referenced.Leave it empty to reference the default Service. Set it to 'headless' to reference the default headless Service.If the referenced Service is of pod-service type (a Service per Pod), there will be multiple Service objects matched,and the resolved value will be presented in the following format: service1.name,service2.name...",
+ MarkdownDescription: "The name of the Service to be referenced.Leave it empty to reference the default Service. Set it to 'headless' to reference the default headless Service.If the referenced Service is of pod-service type (a Service per Pod), there will be multiple Service objects matched,and the resolved value will be presented in the following format: service1.name,service2.name...",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "rbd": schema.SingleNestedAttribute{
- Description: "rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/rbd/README.md",
- MarkdownDescription: "rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/rbd/README.md",
- Attributes: map[string]schema.Attribute{
- "fs_type": schema.StringAttribute{
- Description: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#rbdTODO: how do we prevent errors in the filesystem from compromising the machine",
- MarkdownDescription: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#rbdTODO: how do we prevent errors in the filesystem from compromising the machine",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "Specifies the identifier of the service reference declaration.It corresponds to the serviceRefDeclaration name defined in either:- 'componentDefinition.spec.serviceRefDeclarations[*].name'- 'clusterDefinition.spec.componentDefs[*].serviceRefDeclarations[*].name' (deprecated)",
+ MarkdownDescription: "Specifies the identifier of the service reference declaration.It corresponds to the serviceRefDeclaration name defined in either:- 'componentDefinition.spec.serviceRefDeclarations[*].name'- 'clusterDefinition.spec.componentDefs[*].serviceRefDeclarations[*].name' (deprecated)",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "image": schema.StringAttribute{
- Description: "image is the rados image name.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- MarkdownDescription: "image is the rados image name.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "namespace": schema.StringAttribute{
+ Description: "Specifies the namespace of the referenced Cluster or the namespace of the referenced ServiceDescriptor object.If not provided, the referenced Cluster and ServiceDescriptor will be searched in the namespace of the currentCluster by default.",
+ MarkdownDescription: "Specifies the namespace of the referenced Cluster or the namespace of the referenced ServiceDescriptor object.If not provided, the referenced Cluster and ServiceDescriptor will be searched in the namespace of the currentCluster by default.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "keyring": schema.StringAttribute{
- Description: "keyring is the path to key ring for RBDUser.Default is /etc/ceph/keyring.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- MarkdownDescription: "keyring is the path to key ring for RBDUser.Default is /etc/ceph/keyring.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "service_descriptor": schema.StringAttribute{
+ Description: "Specifies the name of the ServiceDescriptor object that describes a service provided by external sources.When referencing a service provided by external sources, a ServiceDescriptor object is required to establishthe service binding.The 'serviceDescriptor.spec.serviceKind' and 'serviceDescriptor.spec.serviceVersion' should match the serviceKindand serviceVersion declared in the definition.If both 'cluster' and 'serviceDescriptor' are specified, the 'cluster' takes precedence.",
+ MarkdownDescription: "Specifies the name of the ServiceDescriptor object that describes a service provided by external sources.When referencing a service provided by external sources, a ServiceDescriptor object is required to establishthe service binding.The 'serviceDescriptor.spec.serviceKind' and 'serviceDescriptor.spec.serviceVersion' should match the serviceKindand serviceVersion declared in the definition.If both 'cluster' and 'serviceDescriptor' are specified, the 'cluster' takes precedence.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "monitors": schema.ListAttribute{
- Description: "monitors is a collection of Ceph monitors.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- MarkdownDescription: "monitors is a collection of Ceph monitors.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- ElementType: types.StringType,
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "service_version": schema.StringAttribute{
+ Description: "ServiceVersion specifies the version of the Service expected to be provisioned by this Component.The version should follow the syntax and semantics of the 'Semantic Versioning' specification (http://semver.org/).If no version is specified, the latest available version will be used.",
+ MarkdownDescription: "ServiceVersion specifies the version of the Service expected to be provisioned by this Component.The version should follow the syntax and semantics of the 'Semantic Versioning' specification (http://semver.org/).If no version is specified, the latest available version will be used.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.LengthAtMost(32),
+ },
+ },
- "pool": schema.StringAttribute{
- Description: "pool is the rados pool name.Default is rbd.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- MarkdownDescription: "pool is the rados pool name.Default is rbd.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "services": schema.ListNestedAttribute{
+ Description: "Overrides services defined in referenced ComponentDefinition and expose endpoints that can be accessed by clients.",
+ MarkdownDescription: "Overrides services defined in referenced ComponentDefinition and expose endpoints that can be accessed by clients.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "annotations": schema.MapAttribute{
+ Description: "If ServiceType is LoadBalancer, cloud provider related parameters can be put here.More info: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer.",
+ MarkdownDescription: "If ServiceType is LoadBalancer, cloud provider related parameters can be put here.More info: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- MarkdownDescription: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "References the ComponentService name defined in the 'componentDefinition.spec.services[*].name'.",
+ MarkdownDescription: "References the ComponentService name defined in the 'componentDefinition.spec.services[*].name'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.LengthAtMost(25),
+ },
+ },
- "secret_ref": schema.SingleNestedAttribute{
- Description: "secretRef is name of the authentication secret for RBDUser. If providedoverrides keyring.Default is nil.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- MarkdownDescription: "secretRef is name of the authentication secret for RBDUser. If providedoverrides keyring.Default is nil.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "pod_service": schema.BoolAttribute{
+ Description: "Indicates whether to generate individual Services for each Pod.If set to true, a separate Service will be created for each Pod in the Cluster.",
+ MarkdownDescription: "Indicates whether to generate individual Services for each Pod.If set to true, a separate Service will be created for each Pod in the Cluster.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "service_type": schema.StringAttribute{
+ Description: "Determines how the Service is exposed. Valid options are 'ClusterIP', 'NodePort', and 'LoadBalancer'.- 'ClusterIP' allocates a Cluster-internal IP address for load-balancing to endpoints. Endpoints are determined by the selector or if that is not specified, they are determined by manual construction of an Endpoints object or EndpointSlice objects.- 'NodePort' builds on ClusterIP and allocates a port on every node which routes to the same endpoints as the ClusterIP.- 'LoadBalancer' builds on NodePort and creates an external load-balancer (if supported in the current cloud) which routes to the same endpoints as the ClusterIP.Note: although K8s Service type allows the 'ExternalName' type, it is not a valid option for ClusterComponentService.For more info, see:https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types.",
+ MarkdownDescription: "Determines how the Service is exposed. Valid options are 'ClusterIP', 'NodePort', and 'LoadBalancer'.- 'ClusterIP' allocates a Cluster-internal IP address for load-balancing to endpoints. Endpoints are determined by the selector or if that is not specified, they are determined by manual construction of an Endpoints object or EndpointSlice objects.- 'NodePort' builds on ClusterIP and allocates a port on every node which routes to the same endpoints as the ClusterIP.- 'LoadBalancer' builds on NodePort and creates an external load-balancer (if supported in the current cloud) which routes to the same endpoints as the ClusterIP.Note: although K8s Service type allows the 'ExternalName' type, it is not a valid option for ClusterComponentService.For more info, see:https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.OneOf("ClusterIP", "NodePort", "LoadBalancer"),
+ },
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "switch_policy": schema.SingleNestedAttribute{
+ Description: "Defines the strategy for switchover and failover when workloadType is Replication.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
+ MarkdownDescription: "Defines the strategy for switchover and failover when workloadType is Replication.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
+ Attributes: map[string]schema.Attribute{
+ "type": schema.StringAttribute{
+ Description: "Type specifies the type of switch policy to be applied.",
+ MarkdownDescription: "Type specifies the type of switch policy to be applied.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.OneOf("Noop"),
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "system_accounts": schema.ListNestedAttribute{
+ Description: "Overrides system accounts defined in referenced ComponentDefinition.",
+ MarkdownDescription: "Overrides system accounts defined in referenced ComponentDefinition.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "The name of the system account.",
+ MarkdownDescription: "The name of the system account.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "user": schema.StringAttribute{
- Description: "user is the rados user name.Default is admin.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- MarkdownDescription: "user is the rados user name.Default is admin.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ "password_config": schema.SingleNestedAttribute{
+ Description: "Specifies the policy for generating the account's password.This field is immutable once set.",
+ MarkdownDescription: "Specifies the policy for generating the account's password.This field is immutable once set.",
+ Attributes: map[string]schema.Attribute{
+ "length": schema.Int64Attribute{
+ Description: "The length of the password.",
+ MarkdownDescription: "The length of the password.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.Int64{
+ int64validator.AtLeast(8),
+ int64validator.AtMost(32),
},
+ },
- "scale_io": schema.SingleNestedAttribute{
- Description: "scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.",
- MarkdownDescription: "scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.",
- Attributes: map[string]schema.Attribute{
- "fs_type": schema.StringAttribute{
- Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'.Default is 'xfs'.",
- MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'.Default is 'xfs'.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "letter_case": schema.StringAttribute{
+ Description: "The case of the letters in the password.",
+ MarkdownDescription: "The case of the letters in the password.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.OneOf("LowerCases", "UpperCases", "MixedCases"),
+ },
+ },
- "gateway": schema.StringAttribute{
- Description: "gateway is the host address of the ScaleIO API Gateway.",
- MarkdownDescription: "gateway is the host address of the ScaleIO API Gateway.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "num_digits": schema.Int64Attribute{
+ Description: "The number of digits in the password.",
+ MarkdownDescription: "The number of digits in the password.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.Int64{
+ int64validator.AtLeast(0),
+ int64validator.AtMost(8),
+ },
+ },
- "protection_domain": schema.StringAttribute{
- Description: "protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.",
- MarkdownDescription: "protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "num_symbols": schema.Int64Attribute{
+ Description: "The number of symbols in the password.",
+ MarkdownDescription: "The number of symbols in the password.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.Int64{
+ int64validator.AtLeast(0),
+ int64validator.AtMost(8),
+ },
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- MarkdownDescription: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "seed": schema.StringAttribute{
+ Description: "Seed to generate the account's password.Cannot be updated.",
+ MarkdownDescription: "Seed to generate the account's password.Cannot be updated.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "secret_ref": schema.SingleNestedAttribute{
- Description: "secretRef references to the secret for ScaleIO user and othersensitive information. If this is not provided, Login operation will fail.",
- MarkdownDescription: "secretRef references to the secret for ScaleIO user and othersensitive information. If this is not provided, Login operation will fail.",
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "Refers to the secret from which data will be copied to create the new account.This field is immutable once set.",
+ MarkdownDescription: "Refers to the secret from which data will be copied to create the new account.This field is immutable once set.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "The unique identifier of the secret.",
+ MarkdownDescription: "The unique identifier of the secret.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "ssl_enabled": schema.BoolAttribute{
- Description: "sslEnabled Flag enable/disable SSL communication with Gateway, default false",
- MarkdownDescription: "sslEnabled Flag enable/disable SSL communication with Gateway, default false",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "namespace": schema.StringAttribute{
+ Description: "The namespace where the secret is located.",
+ MarkdownDescription: "The namespace where the secret is located.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "storage_mode": schema.StringAttribute{
- Description: "storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.Default is ThinProvisioned.",
- MarkdownDescription: "storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.Default is ThinProvisioned.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "tls": schema.BoolAttribute{
+ Description: "A boolean flag that indicates whether the Component should use Transport Layer Security (TLS)for secure communication.When set to true, the Component will be configured to use TLS encryption for its network connections.This ensures that the data transmitted between the Component and its clients or other Components is encryptedand protected from unauthorized access.If TLS is enabled, the Component may require additional configuration, such as specifying TLS certificates and keys,to properly set up the secure communication channel.",
+ MarkdownDescription: "A boolean flag that indicates whether the Component should use Transport Layer Security (TLS)for secure communication.When set to true, the Component will be configured to use TLS encryption for its network connections.This ensures that the data transmitted between the Component and its clients or other Components is encryptedand protected from unauthorized access.If TLS is enabled, the Component may require additional configuration, such as specifying TLS certificates and keys,to properly set up the secure communication channel.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "storage_pool": schema.StringAttribute{
- Description: "storagePool is the ScaleIO Storage Pool associated with the protection domain.",
- MarkdownDescription: "storagePool is the ScaleIO Storage Pool associated with the protection domain.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "tolerations": schema.MapAttribute{
+ Description: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.Deprecated since v0.10, replaced by the 'schedulingPolicy' field.",
+ MarkdownDescription: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.Deprecated since v0.10, replaced by the 'schedulingPolicy' field.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "system": schema.StringAttribute{
- Description: "system is the name of the storage system as configured in ScaleIO.",
- MarkdownDescription: "system is the name of the storage system as configured in ScaleIO.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "update_strategy": schema.StringAttribute{
+ Description: "Defines the update strategy for the Component.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
+ MarkdownDescription: "Defines the update strategy for the Component.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.OneOf("Serial", "BestEffortParallel", "Parallel"),
+ },
+ },
- "volume_name": schema.StringAttribute{
- Description: "volumeName is the name of a volume already created in the ScaleIO systemthat is associated with this volume source.",
- MarkdownDescription: "volumeName is the name of a volume already created in the ScaleIO systemthat is associated with this volume source.",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "user_resource_refs": schema.SingleNestedAttribute{
+ Description: "Allows users to specify custom ConfigMaps and Secrets to be mounted as volumesin the Cluster's Pods.This is useful in scenarios where users need to provide additional resources to the Cluster, such as:- Mounting custom scripts or configuration files during Cluster startup.- Mounting Secrets as volumes to provide sensitive information, like S3 AK/SK, to the Cluster.",
+ MarkdownDescription: "Allows users to specify custom ConfigMaps and Secrets to be mounted as volumesin the Cluster's Pods.This is useful in scenarios where users need to provide additional resources to the Cluster, such as:- Mounting custom scripts or configuration files during Cluster startup.- Mounting Secrets as volumes to provide sensitive information, like S3 AK/SK, to the Cluster.",
+ Attributes: map[string]schema.Attribute{
+ "config_map_refs": schema.ListNestedAttribute{
+ Description: "ConfigMapRefs defines the user-defined ConfigMaps.",
+ MarkdownDescription: "ConfigMapRefs defines the user-defined ConfigMaps.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "as_volume_from": schema.ListAttribute{
+ Description: "AsVolumeFrom lists the names of containers in which the volume should be mounted.",
+ MarkdownDescription: "AsVolumeFrom lists the names of containers in which the volume should be mounted.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "secret": schema.SingleNestedAttribute{
- Description: "secret represents a secret that should populate this volume.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
- MarkdownDescription: "secret represents a secret that should populate this volume.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
- Attributes: map[string]schema.Attribute{
- "default_mode": schema.Int64Attribute{
- Description: "defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "config_map": schema.SingleNestedAttribute{
+ Description: "ConfigMap specifies the ConfigMap to be mounted as a volume.",
+ MarkdownDescription: "ConfigMap specifies the ConfigMap to be mounted as a volume.",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "items": schema.ListNestedAttribute{
- Description: "items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- MarkdownDescription: "items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the key to project.",
- MarkdownDescription: "key is the key to project.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "items": schema.ListNestedAttribute{
+ Description: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "mode": schema.Int64Attribute{
- Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "path": schema.StringAttribute{
- Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "optional": schema.BoolAttribute{
- Description: "optional field specify whether the Secret or its keys must be defined",
- MarkdownDescription: "optional field specify whether the Secret or its keys must be defined",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "secret_name": schema.StringAttribute{
- Description: "secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
- MarkdownDescription: "secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "optional": schema.BoolAttribute{
+ Description: "optional specify whether the ConfigMap or its keys must be defined",
+ MarkdownDescription: "optional specify whether the ConfigMap or its keys must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "storageos": schema.SingleNestedAttribute{
- Description: "storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.",
- MarkdownDescription: "storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.",
- Attributes: map[string]schema.Attribute{
- "fs_type": schema.StringAttribute{
- Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
- MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "mount_point": schema.StringAttribute{
+ Description: "MountPoint is the filesystem path where the volume will be mounted.",
+ MarkdownDescription: "MountPoint is the filesystem path where the volume will be mounted.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.LengthAtMost(256),
+ stringvalidator.RegexMatches(regexp.MustCompile(`^/[a-z]([a-z0-9\-]*[a-z0-9])?$`), ""),
+ },
+ },
- "read_only": schema.BoolAttribute{
- Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "Name is the name of the referenced ConfigMap or Secret object. It must conform to DNS label standards.",
+ MarkdownDescription: "Name is the name of the referenced ConfigMap or Secret object. It must conform to DNS label standards.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.LengthAtMost(63),
+ stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z0-9]([a-z0-9\.\-]*[a-z0-9])?$`), ""),
+ },
+ },
- "secret_ref": schema.SingleNestedAttribute{
- Description: "secretRef specifies the secret to use for obtaining the StorageOS APIcredentials. If not specified, default values will be attempted.",
- MarkdownDescription: "secretRef specifies the secret to use for obtaining the StorageOS APIcredentials. If not specified, default values will be attempted.",
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "sub_path": schema.StringAttribute{
+ Description: "SubPath specifies a path within the volume from which to mount.",
+ MarkdownDescription: "SubPath specifies a path within the volume from which to mount.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "volume_name": schema.StringAttribute{
- Description: "volumeName is the human-readable name of the StorageOS volume. Volumenames are only unique within a namespace.",
- MarkdownDescription: "volumeName is the human-readable name of the StorageOS volume. Volumenames are only unique within a namespace.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "secret_refs": schema.ListNestedAttribute{
+ Description: "SecretRefs defines the user-defined Secrets.",
+ MarkdownDescription: "SecretRefs defines the user-defined Secrets.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "as_volume_from": schema.ListAttribute{
+ Description: "AsVolumeFrom lists the names of containers in which the volume should be mounted.",
+ MarkdownDescription: "AsVolumeFrom lists the names of containers in which the volume should be mounted.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "volume_namespace": schema.StringAttribute{
- Description: "volumeNamespace specifies the scope of the volume within StorageOS. If nonamespace is specified then the Pod's namespace will be used. This allows theKubernetes name scoping to be mirrored within StorageOS for tighter integration.Set VolumeName to any name to override the default behaviour.Set to 'default' if you are not using namespaces within StorageOS.Namespaces that do not pre-exist within StorageOS will be created.",
- MarkdownDescription: "volumeNamespace specifies the scope of the volume within StorageOS. If nonamespace is specified then the Pod's namespace will be used. This allows theKubernetes name scoping to be mirrored within StorageOS for tighter integration.Set VolumeName to any name to override the default behaviour.Set to 'default' if you are not using namespaces within StorageOS.Namespaces that do not pre-exist within StorageOS will be created.",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ "mount_point": schema.StringAttribute{
+ Description: "MountPoint is the filesystem path where the volume will be mounted.",
+ MarkdownDescription: "MountPoint is the filesystem path where the volume will be mounted.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.LengthAtMost(256),
+ stringvalidator.RegexMatches(regexp.MustCompile(`^/[a-z]([a-z0-9\-]*[a-z0-9])?$`), ""),
},
+ },
- "vsphere_volume": schema.SingleNestedAttribute{
- Description: "vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine",
- MarkdownDescription: "vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine",
- Attributes: map[string]schema.Attribute{
- "fs_type": schema.StringAttribute{
- Description: "fsType is filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
- MarkdownDescription: "fsType is filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "Name is the name of the referenced ConfigMap or Secret object. It must conform to DNS label standards.",
+ MarkdownDescription: "Name is the name of the referenced ConfigMap or Secret object. It must conform to DNS label standards.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ Validators: []validator.String{
+ stringvalidator.LengthAtMost(63),
+ stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z0-9]([a-z0-9\.\-]*[a-z0-9])?$`), ""),
+ },
+ },
+
+ "secret": schema.SingleNestedAttribute{
+ Description: "Secret specifies the Secret to be mounted as a volume.",
+ MarkdownDescription: "Secret specifies the Secret to be mounted as a volume.",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "items": schema.ListNestedAttribute{
+ Description: "items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "storage_policy_id": schema.StringAttribute{
- Description: "storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.",
- MarkdownDescription: "storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.",
- Required: false,
- Optional: true,
- Computed: false,
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "storage_policy_name": schema.StringAttribute{
- Description: "storagePolicyName is the storage Policy Based Management (SPBM) profile name.",
- MarkdownDescription: "storagePolicyName is the storage Policy Based Management (SPBM) profile name.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "optional": schema.BoolAttribute{
+ Description: "optional field specify whether the Secret or its keys must be defined",
+ MarkdownDescription: "optional field specify whether the Secret or its keys must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "volume_path": schema.StringAttribute{
- Description: "volumePath is the path that identifies vSphere volume vmdk",
- MarkdownDescription: "volumePath is the path that identifies vSphere volume vmdk",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "secret_name": schema.StringAttribute{
+ Description: "secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ MarkdownDescription: "secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "sub_path": schema.StringAttribute{
+ Description: "SubPath specifies a path within the volume from which to mount.",
+ MarkdownDescription: "SubPath specifies a path within the volume from which to mount.",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
},
Required: false,
@@ -12238,57 +16968,98 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "issuer": schema.SingleNestedAttribute{
- Description: "Specifies the configuration for the TLS certificates issuer.It allows defining the issuer name and the reference to the secret containing the TLS certificates and key.The secret should contain the CA certificate, TLS certificate, and private key in the specified keys.Required when TLS is enabled.",
- MarkdownDescription: "Specifies the configuration for the TLS certificates issuer.It allows defining the issuer name and the reference to the secret containing the TLS certificates and key.The secret should contain the CA certificate, TLS certificate, and private key in the specified keys.Required when TLS is enabled.",
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "The issuer for TLS certificates.It only allows two enum values: 'KubeBlocks' and 'UserProvided'.- 'KubeBlocks' indicates that the self-signed TLS certificates generated by the KubeBlocks Operator will be used.- 'UserProvided' means that the user is responsible for providing their own CA, Cert, and Key. In this case, the user-provided CA certificate, server certificate, and private key will be used for TLS communication.",
- MarkdownDescription: "The issuer for TLS certificates.It only allows two enum values: 'KubeBlocks' and 'UserProvided'.- 'KubeBlocks' indicates that the self-signed TLS certificates generated by the KubeBlocks Operator will be used.- 'UserProvided' means that the user is responsible for providing their own CA, Cert, and Key. In this case, the user-provided CA certificate, server certificate, and private key will be used for TLS communication.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "volume_claim_templates": schema.ListNestedAttribute{
+ Description: "Specifies a list of PersistentVolumeClaim templates that represent the storage requirements for the Component.Each template specifies the desired characteristics of a persistent volume, such as storage class,size, and access modes.These templates are used to dynamically provision persistent volumes for the Component.",
+ MarkdownDescription: "Specifies a list of PersistentVolumeClaim templates that represent the storage requirements for the Component.Each template specifies the desired characteristics of a persistent volume, such as storage class,size, and access modes.These templates are used to dynamically provision persistent volumes for the Component.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Refers to the name of a volumeMount defined in either:- 'componentDefinition.spec.runtime.containers[*].volumeMounts'- 'clusterDefinition.spec.componentDefs[*].podSpec.containers[*].volumeMounts' (deprecated)The value of 'name' must match the 'name' field of a volumeMount specified in the corresponding 'volumeMounts' array.",
+ MarkdownDescription: "Refers to the name of a volumeMount defined in either:- 'componentDefinition.spec.runtime.containers[*].volumeMounts'- 'clusterDefinition.spec.componentDefs[*].podSpec.containers[*].volumeMounts' (deprecated)The value of 'name' must match the 'name' field of a volumeMount specified in the corresponding 'volumeMounts' array.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "secret_ref": schema.SingleNestedAttribute{
- Description: "SecretRef is the reference to the secret that contains user-provided certificates.It is required when the issuer is set to 'UserProvided'.",
- MarkdownDescription: "SecretRef is the reference to the secret that contains user-provided certificates.It is required when the issuer is set to 'UserProvided'.",
- Attributes: map[string]schema.Attribute{
- "ca": schema.StringAttribute{
- Description: "Key of CA cert in Secret",
- MarkdownDescription: "Key of CA cert in Secret",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "spec": schema.SingleNestedAttribute{
+ Description: "Defines the desired characteristics of a PersistentVolumeClaim that will be created for the volumewith the mount name specified in the 'name' field.When a Pod is created for this ClusterComponent, a new PVC will be created based on the specificationdefined in the 'spec' field. The PVC will be associated with the volume mount specified by the 'name' field.",
+ MarkdownDescription: "Defines the desired characteristics of a PersistentVolumeClaim that will be created for the volumewith the mount name specified in the 'name' field.When a Pod is created for this ClusterComponent, a new PVC will be created based on the specificationdefined in the 'spec' field. The PVC will be associated with the volume mount specified by the 'name' field.",
+ Attributes: map[string]schema.Attribute{
+ "access_modes": schema.MapAttribute{
+ Description: "Contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1.",
+ MarkdownDescription: "Contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "cert": schema.StringAttribute{
- Description: "Key of Cert in Secret",
- MarkdownDescription: "Key of Cert in Secret",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "resources": schema.SingleNestedAttribute{
+ Description: "Represents the minimum resources the volume should have.If the RecoverVolumeExpansionFailure feature is enabled, users are allowed to specify resource requirements thatare lower than the previous value but must still be higher than the capacity recorded in the status field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources.",
+ MarkdownDescription: "Represents the minimum resources the volume should have.If the RecoverVolumeExpansionFailure feature is enabled, users are allowed to specify resource requirements thatare lower than the previous value but must still be higher than the capacity recorded in the status field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources.",
+ Attributes: map[string]schema.Attribute{
+ "claims": schema.ListNestedAttribute{
+ Description: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ MarkdownDescription: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ MarkdownDescription: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "key": schema.StringAttribute{
- Description: "Key of TLS private key in Secret",
- MarkdownDescription: "Key of TLS private key in Secret",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "limits": schema.MapAttribute{
+ Description: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "name": schema.StringAttribute{
- Description: "Name of the Secret that contains user-provided certificates.",
- MarkdownDescription: "Name of the Secret that contains user-provided certificates.",
- Required: true,
- Optional: false,
- Computed: false,
+ "requests": schema.MapAttribute{
+ Description: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "storage_class_name": schema.StringAttribute{
+ Description: "The name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1.",
+ MarkdownDescription: "The name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_mode": schema.StringAttribute{
+ Description: "Defines what type of volume is required by the claim, either Block or Filesystem.",
+ MarkdownDescription: "Defines what type of volume is required by the claim, either Block or Filesystem.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
},
Required: false,
@@ -12296,794 +17067,676 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "monitor": schema.BoolAttribute{
- Description: "Deprecated since v0.9Determines whether metrics exporter information is annotated on the Component's headless Service.If set to true, the following annotations will be patched into the Service:- 'monitor.kubeblocks.io/path'- 'monitor.kubeblocks.io/port'- 'monitor.kubeblocks.io/scheme'These annotations allow the Prometheus installed by KubeBlocks to discover and scrape metrics from the exporter.",
- MarkdownDescription: "Deprecated since v0.9Determines whether metrics exporter information is annotated on the Component's headless Service.If set to true, the following annotations will be patched into the Service:- 'monitor.kubeblocks.io/path'- 'monitor.kubeblocks.io/port'- 'monitor.kubeblocks.io/scheme'These annotations allow the Prometheus installed by KubeBlocks to discover and scrape metrics from the exporter.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "volumes": schema.ListNestedAttribute{
+ Description: "List of volumes to override.",
+ MarkdownDescription: "List of volumes to override.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "aws_elastic_block_store": schema.SingleNestedAttribute{
+ Description: "awsElasticBlockStore represents an AWS Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ MarkdownDescription: "awsElasticBlockStore represents an AWS Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstoreTODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstoreTODO: how do we prevent errors in the filesystem from compromising the machine",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "name": schema.StringAttribute{
- Description: "Specifies the Component's name.It's part of the Service DNS name and must comply with the IANA service naming rule.The name is optional when ClusterComponentSpec is used as a template (e.g., in 'shardingSpec'),but required otherwise.TODO +kubebuilder:validation:XValidation:rule='self == oldSelf',message='name is immutable'",
- MarkdownDescription: "Specifies the Component's name.It's part of the Service DNS name and must comply with the IANA service naming rule.The name is optional when ClusterComponentSpec is used as a template (e.g., in 'shardingSpec'),but required otherwise.TODO +kubebuilder:validation:XValidation:rule='self == oldSelf',message='name is immutable'",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.LengthAtMost(22),
- stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z]([a-z0-9\-]*[a-z0-9])?$`), ""),
- },
- },
+ "partition": schema.Int64Attribute{
+ Description: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).",
+ MarkdownDescription: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "offline_instances": schema.ListAttribute{
- Description: "Specifies the names of instances to be transitioned to offline status.Marking an instance as offline results in the following:1. The associated Pod is stopped, and its PersistentVolumeClaim (PVC) is retained for potential future reuse or data recovery, but it is no longer actively used.2. The ordinal number assigned to this instance is preserved, ensuring it remains unique and avoiding conflicts with new instances.Setting instances to offline allows for a controlled scale-in process, preserving their data and maintainingordinal consistency within the Cluster.Note that offline instances and their associated resources, such as PVCs, are not automatically deleted.The administrator must manually manage the cleanup and removal of these resources when they are no longer needed.",
- MarkdownDescription: "Specifies the names of instances to be transitioned to offline status.Marking an instance as offline results in the following:1. The associated Pod is stopped, and its PersistentVolumeClaim (PVC) is retained for potential future reuse or data recovery, but it is no longer actively used.2. The ordinal number assigned to this instance is preserved, ensuring it remains unique and avoiding conflicts with new instances.Setting instances to offline allows for a controlled scale-in process, preserving their data and maintainingordinal consistency within the Cluster.Note that offline instances and their associated resources, such as PVCs, are not automatically deleted.The administrator must manually manage the cleanup and removal of these resources when they are no longer needed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly value true will force the readOnly setting in VolumeMounts.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ MarkdownDescription: "readOnly value true will force the readOnly setting in VolumeMounts.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "replicas": schema.Int64Attribute{
- Description: "Specifies the desired number of replicas in the Component for enhancing availability and durability, or load balancing.",
- MarkdownDescription: "Specifies the desired number of replicas in the Component for enhancing availability and durability, or load balancing.",
- Required: true,
- Optional: false,
- Computed: false,
- Validators: []validator.Int64{
- int64validator.AtLeast(0),
- },
- },
+ "volume_id": schema.StringAttribute{
+ Description: "volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ MarkdownDescription: "volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "resources": schema.SingleNestedAttribute{
- Description: "Specifies the resources required by the Component.It allows defining the CPU, memory requirements and limits for the Component's containers.",
- MarkdownDescription: "Specifies the resources required by the Component.It allows defining the CPU, memory requirements and limits for the Component's containers.",
- Attributes: map[string]schema.Attribute{
- "claims": schema.ListNestedAttribute{
- Description: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
- MarkdownDescription: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
- NestedObject: schema.NestedAttributeObject{
+ "azure_disk": schema.SingleNestedAttribute{
+ Description: "azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.",
+ MarkdownDescription: "azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.",
Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
- MarkdownDescription: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ "caching_mode": schema.StringAttribute{
+ Description: "cachingMode is the Host Caching mode: None, Read Only, Read Write.",
+ MarkdownDescription: "cachingMode is the Host Caching mode: None, Read Only, Read Write.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "disk_name": schema.StringAttribute{
+ Description: "diskName is the Name of the data disk in the blob storage",
+ MarkdownDescription: "diskName is the Name of the data disk in the blob storage",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "disk_uri": schema.StringAttribute{
+ Description: "diskURI is the URI of data disk in the blob storage",
+ MarkdownDescription: "diskURI is the URI of data disk in the blob storage",
Required: true,
Optional: false,
Computed: false,
},
+
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is Filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fsType is Filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "kind": schema.StringAttribute{
+ Description: "kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared",
+ MarkdownDescription: "kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "limits": schema.MapAttribute{
- Description: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- MarkdownDescription: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- "requests": schema.MapAttribute{
- Description: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- MarkdownDescription: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "azure_file": schema.SingleNestedAttribute{
+ Description: "azureFile represents an Azure File Service mount on the host and bind mount to the pod.",
+ MarkdownDescription: "azureFile represents an Azure File Service mount on the host and bind mount to the pod.",
+ Attributes: map[string]schema.Attribute{
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "scheduling_policy": schema.SingleNestedAttribute{
- Description: "Specifies the scheduling policy for the Component.",
- MarkdownDescription: "Specifies the scheduling policy for the Component.",
- Attributes: map[string]schema.Attribute{
- "affinity": schema.SingleNestedAttribute{
- Description: "Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity.",
- MarkdownDescription: "Specifies a group of affinity scheduling rules of the Cluster, including NodeAffinity, PodAffinity, and PodAntiAffinity.",
- Attributes: map[string]schema.Attribute{
- "node_affinity": schema.SingleNestedAttribute{
- Description: "Describes node affinity scheduling rules for the pod.",
- MarkdownDescription: "Describes node affinity scheduling rules for the pod.",
- Attributes: map[string]schema.Attribute{
- "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred.",
- MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node matches the corresponding matchExpressions; thenode(s) with the highest sum are the most preferred.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "preference": schema.SingleNestedAttribute{
- Description: "A node selector term, associated with the corresponding weight.",
- MarkdownDescription: "A node selector term, associated with the corresponding weight.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "A list of node selector requirements by node's labels.",
- MarkdownDescription: "A list of node selector requirements by node's labels.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The label key that the selector applies to.",
- MarkdownDescription: "The label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "secret_name": schema.StringAttribute{
+ Description: "secretName is the name of secret that contains Azure Storage Account Name and Key",
+ MarkdownDescription: "secretName is the name of secret that contains Azure Storage Account Name and Key",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "share_name": schema.StringAttribute{
+ Description: "shareName is the azure share Name",
+ MarkdownDescription: "shareName is the azure share Name",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "cephfs": schema.SingleNestedAttribute{
+ Description: "cephFS represents a Ceph FS mount on the host that shares a pod's lifetime",
+ MarkdownDescription: "cephFS represents a Ceph FS mount on the host that shares a pod's lifetime",
+ Attributes: map[string]schema.Attribute{
+ "monitors": schema.ListAttribute{
+ Description: "monitors is Required: Monitors is a collection of Ceph monitorsMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "monitors is Required: Monitors is a collection of Ceph monitorsMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ ElementType: types.StringType,
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "match_fields": schema.ListNestedAttribute{
- Description: "A list of node selector requirements by node's fields.",
- MarkdownDescription: "A list of node selector requirements by node's fields.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The label key that the selector applies to.",
- MarkdownDescription: "The label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "path": schema.StringAttribute{
+ Description: "path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /",
+ MarkdownDescription: "path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "secret_file": schema.StringAttribute{
+ Description: "secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secretMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secretMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "weight": schema.Int64Attribute{
- Description: "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.",
- MarkdownDescription: "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "required_during_scheduling_ignored_during_execution": schema.SingleNestedAttribute{
- Description: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node.",
- MarkdownDescription: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to an update), the systemmay or may not try to eventually evict the pod from its node.",
- Attributes: map[string]schema.Attribute{
- "node_selector_terms": schema.ListNestedAttribute{
- Description: "Required. A list of node selector terms. The terms are ORed.",
- MarkdownDescription: "Required. A list of node selector terms. The terms are ORed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "A list of node selector requirements by node's labels.",
- MarkdownDescription: "A list of node selector requirements by node's labels.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The label key that the selector applies to.",
- MarkdownDescription: "The label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "user": schema.StringAttribute{
+ Description: "user is optional: User is the rados user name, default is adminMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "user is optional: User is the rados user name, default is adminMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "cinder": schema.SingleNestedAttribute{
+ Description: "cinder represents a cinder volume attached and mounted on kubelets host machine.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ MarkdownDescription: "cinder represents a cinder volume attached and mounted on kubelets host machine.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is optional: points to a secret object containing parameters used to connectto OpenStack.",
+ MarkdownDescription: "secretRef is optional: points to a secret object containing parameters used to connectto OpenStack.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "volume_id": schema.StringAttribute{
+ Description: "volumeID used to identify the volume in cinder.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ MarkdownDescription: "volumeID used to identify the volume in cinder.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_fields": schema.ListNestedAttribute{
- Description: "A list of node selector requirements by node's fields.",
- MarkdownDescription: "A list of node selector requirements by node's fields.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "The label key that the selector applies to.",
- MarkdownDescription: "The label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "config_map": schema.SingleNestedAttribute{
+ Description: "configMap represents a configMap that should populate this volume",
+ MarkdownDescription: "configMap represents a configMap that should populate this volume",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- MarkdownDescription: "Represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "items": schema.ListNestedAttribute{
+ Description: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- MarkdownDescription: "An array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. If the operator is Gt or Lt, the valuesarray must have a single element, which will be interpreted as an integer.This array is replaced during a strategic merge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: true,
- Optional: false,
- Computed: false,
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- "pod_affinity": schema.SingleNestedAttribute{
- Description: "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).",
- MarkdownDescription: "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).",
- Attributes: map[string]schema.Attribute{
- "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
- MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "pod_affinity_term": schema.SingleNestedAttribute{
- Description: "Required. A pod affinity term, associated with the corresponding weight.",
- MarkdownDescription: "Required. A pod affinity term, associated with the corresponding weight.",
- Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "A label query over a set of resources, in this case pods.",
- MarkdownDescription: "A label query over a set of resources, in this case pods.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "optional": schema.BoolAttribute{
+ Description: "optional specify whether the ConfigMap or its keys must be defined",
+ MarkdownDescription: "optional specify whether the ConfigMap or its keys must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "csi": schema.SingleNestedAttribute{
+ Description: "csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).",
+ MarkdownDescription: "csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).",
+ Attributes: map[string]schema.Attribute{
+ "driver": schema.StringAttribute{
+ Description: "driver is the name of the CSI driver that handles this volume.Consult with your admin for the correct name as registered in the cluster.",
+ MarkdownDescription: "driver is the name of the CSI driver that handles this volume.Consult with your admin for the correct name as registered in the cluster.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "fs_type": schema.StringAttribute{
+ Description: "fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'.If not provided, the empty value is passed to the associated CSI driverwhich will determine the default filesystem to apply.",
+ MarkdownDescription: "fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'.If not provided, the empty value is passed to the associated CSI driverwhich will determine the default filesystem to apply.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "namespace_selector": schema.SingleNestedAttribute{
- Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "node_publish_secret_ref": schema.SingleNestedAttribute{
+ Description: "nodePublishSecretRef is a reference to the secret object containingsensitive information to pass to the CSI driver to complete the CSINodePublishVolume and NodeUnpublishVolume calls.This field is optional, and may be empty if no secret is required. If thesecret object contains more than one secret, all secret references are passed.",
+ MarkdownDescription: "nodePublishSecretRef is a reference to the secret object containingsensitive information to pass to the CSI driver to complete the CSINodePublishVolume and NodeUnpublishVolume calls.This field is optional, and may be empty if no secret is required. If thesecret object contains more than one secret, all secret references are passed.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly specifies a read-only configuration for the volume.Defaults to false (read/write).",
+ MarkdownDescription: "readOnly specifies a read-only configuration for the volume.Defaults to false (read/write).",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "volume_attributes": schema.MapAttribute{
+ Description: "volumeAttributes stores driver-specific properties that are passed to the CSIdriver. Consult your driver's documentation for supported values.",
+ MarkdownDescription: "volumeAttributes stores driver-specific properties that are passed to the CSIdriver. Consult your driver's documentation for supported values.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "downward_api": schema.SingleNestedAttribute{
+ Description: "downwardAPI represents downward API about the pod that should populate this volume",
+ MarkdownDescription: "downwardAPI represents downward API about the pod that should populate this volume",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "Optional: mode bits to use on created files by default. Must be aOptional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "Optional: mode bits to use on created files by default. Must be aOptional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "namespaces": schema.ListAttribute{
- Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "items": schema.ListNestedAttribute{
+ Description: "Items is a list of downward API volume file",
+ MarkdownDescription: "Items is a list of downward API volume file",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "field_ref": schema.SingleNestedAttribute{
+ Description: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
+ MarkdownDescription: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
+ Attributes: map[string]schema.Attribute{
+ "api_version": schema.StringAttribute{
+ Description: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ MarkdownDescription: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "topology_key": schema.StringAttribute{
- Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "field_path": schema.StringAttribute{
+ Description: "Path of the field to select in the specified API version.",
+ MarkdownDescription: "Path of the field to select in the specified API version.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- Required: true,
- Optional: false,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "weight": schema.Int64Attribute{
- Description: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
- MarkdownDescription: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "mode": schema.Int64Attribute{
+ Description: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- "required_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
- MarkdownDescription: "If the affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "A label query over a set of resources, in this case pods.",
- MarkdownDescription: "A label query over a set of resources, in this case pods.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "path": schema.StringAttribute{
+ Description: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
+ MarkdownDescription: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "resource_field_ref": schema.SingleNestedAttribute{
+ Description: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
+ MarkdownDescription: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
+ Attributes: map[string]schema.Attribute{
+ "container_name": schema.StringAttribute{
+ Description: "Container name: required for volumes, optional for env vars",
+ MarkdownDescription: "Container name: required for volumes, optional for env vars",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "divisor": schema.StringAttribute{
+ Description: "Specifies the output format of the exposed resources, defaults to '1'",
+ MarkdownDescription: "Specifies the output format of the exposed resources, defaults to '1'",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "resource": schema.StringAttribute{
+ Description: "Required: resource to select",
+ MarkdownDescription: "Required: resource to select",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "namespace_selector": schema.SingleNestedAttribute{
- Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "empty_dir": schema.SingleNestedAttribute{
+ Description: "emptyDir represents a temporary directory that shares a pod's lifetime.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ MarkdownDescription: "emptyDir represents a temporary directory that shares a pod's lifetime.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ Attributes: map[string]schema.Attribute{
+ "medium": schema.StringAttribute{
+ Description: "medium represents what type of storage medium should back this directory.The default is '' which means to use the node's default medium.Must be an empty string (default) or Memory.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ MarkdownDescription: "medium represents what type of storage medium should back this directory.The default is '' which means to use the node's default medium.Must be an empty string (default) or Memory.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "size_limit": schema.StringAttribute{
+ Description: "sizeLimit is the total amount of local storage required for this EmptyDir volume.The size limit is also applicable for memory medium.The maximum usage on memory medium EmptyDir would be the minimum value betweenthe SizeLimit specified here and the sum of memory limits of all containers in a pod.The default is nil which means that the limit is undefined.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ MarkdownDescription: "sizeLimit is the total amount of local storage required for this EmptyDir volume.The size limit is also applicable for memory medium.The maximum usage on memory medium EmptyDir would be the minimum value betweenthe SizeLimit specified here and the sum of memory limits of all containers in a pod.The default is nil which means that the limit is undefined.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "ephemeral": schema.SingleNestedAttribute{
+ Description: "ephemeral represents a volume that is handled by a cluster storage driver.The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,and deleted when the pod is removed.Use this if:a) the volume is only needed while the pod runs,b) features of normal volumes like restoring from snapshot or capacity tracking are needed,c) the storage driver is specified through a storage class, andd) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim).Use PersistentVolumeClaim or one of the vendor-specificAPIs for volumes that persist for longer than the lifecycleof an individual pod.Use CSI for light-weight local ephemeral volumes if the CSI driver is meant tobe used that way - see the documentation of the driver formore information.A pod can use both types of ephemeral volumes andpersistent volumes at the same time.",
+ MarkdownDescription: "ephemeral represents a volume that is handled by a cluster storage driver.The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,and deleted when the pod is removed.Use this if:a) the volume is only needed while the pod runs,b) features of normal volumes like restoring from snapshot or capacity tracking are needed,c) the storage driver is specified through a storage class, andd) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim).Use PersistentVolumeClaim or one of the vendor-specificAPIs for volumes that persist for longer than the lifecycleof an individual pod.Use CSI for light-weight local ephemeral volumes if the CSI driver is meant tobe used that way - see the documentation of the driver formore information.A pod can use both types of ephemeral volumes andpersistent volumes at the same time.",
+ Attributes: map[string]schema.Attribute{
+ "volume_claim_template": schema.SingleNestedAttribute{
+ Description: "Will be used to create a stand-alone PVC to provision the volume.The pod in which this EphemeralVolumeSource is embedded will be theowner of the PVC, i.e. the PVC will be deleted together with thepod. The name of the PVC will be '-' where'' is the name from the 'PodSpec.Volumes' arrayentry. Pod validation will reject the pod if the concatenated nameis not valid for a PVC (for example, too long).An existing PVC with that name that is not owned by the podwill *not* be used for the pod to avoid using an unrelatedvolume by mistake. Starting the pod is then blocked untilthe unrelated PVC is removed. If such a pre-created PVC ismeant to be used by the pod, the PVC has to updated with anowner reference to the pod once the pod exists. Normallythis should not be necessary, but it may be useful whenmanually reconstructing a broken cluster.This field is read-only and no changes will be made by Kubernetesto the PVC after it has been created.Required, must not be nil.",
+ MarkdownDescription: "Will be used to create a stand-alone PVC to provision the volume.The pod in which this EphemeralVolumeSource is embedded will be theowner of the PVC, i.e. the PVC will be deleted together with thepod. The name of the PVC will be '-' where'' is the name from the 'PodSpec.Volumes' arrayentry. Pod validation will reject the pod if the concatenated nameis not valid for a PVC (for example, too long).An existing PVC with that name that is not owned by the podwill *not* be used for the pod to avoid using an unrelatedvolume by mistake. Starting the pod is then blocked untilthe unrelated PVC is removed. If such a pre-created PVC ismeant to be used by the pod, the PVC has to updated with anowner reference to the pod once the pod exists. Normallythis should not be necessary, but it may be useful whenmanually reconstructing a broken cluster.This field is read-only and no changes will be made by Kubernetesto the PVC after it has been created.Required, must not be nil.",
+ Attributes: map[string]schema.Attribute{
+ "metadata": schema.SingleNestedAttribute{
+ Description: "May contain labels and annotations that will be copied into the PVCwhen creating it. No other fields are allowed and will be rejected duringvalidation.",
+ MarkdownDescription: "May contain labels and annotations that will be copied into the PVCwhen creating it. No other fields are allowed and will be rejected duringvalidation.",
+ Attributes: map[string]schema.Attribute{
+ "annotations": schema.MapAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ "finalizers": schema.ListAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- "namespaces": schema.ListAttribute{
- Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
+ "labels": schema.MapAttribute{
+ Description: "",
+ MarkdownDescription: "",
ElementType: types.StringType,
Required: false,
Optional: true,
Computed: false,
},
- "topology_key": schema.StringAttribute{
- Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- Required: true,
- Optional: false,
+ "name": schema.StringAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "namespace": schema.StringAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ Required: false,
+ Optional: true,
Computed: false,
},
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- "pod_anti_affinity": schema.SingleNestedAttribute{
- Description: "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).",
- MarkdownDescription: "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).",
- Attributes: map[string]schema.Attribute{
- "preferred_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
- MarkdownDescription: "The scheduler will prefer to schedule pods to nodes that satisfythe anti-affinity expressions specified by this field, but it may choosea node that violates one or more of the expressions. The node that ismost preferred is the one with the greatest sum of weights, i.e.for each node that meets all of the scheduling requirements (resourcerequest, requiredDuringScheduling anti-affinity expressions, etc.),compute a sum by iterating through the elements of this field and adding'weight' to the sum if the node has pods which matches the corresponding podAffinityTerm; thenode(s) with the highest sum are the most preferred.",
- NestedObject: schema.NestedAttributeObject{
+ "spec": schema.SingleNestedAttribute{
+ Description: "The specification for the PersistentVolumeClaim. The entire content iscopied unchanged into the PVC that gets created from thistemplate. The same fields as in a PersistentVolumeClaimare also valid here.",
+ MarkdownDescription: "The specification for the PersistentVolumeClaim. The entire content iscopied unchanged into the PVC that gets created from thistemplate. The same fields as in a PersistentVolumeClaimare also valid here.",
Attributes: map[string]schema.Attribute{
- "pod_affinity_term": schema.SingleNestedAttribute{
- Description: "Required. A pod affinity term, associated with the corresponding weight.",
- MarkdownDescription: "Required. A pod affinity term, associated with the corresponding weight.",
- Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "A label query over a set of resources, in this case pods.",
- MarkdownDescription: "A label query over a set of resources, in this case pods.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "access_modes": schema.ListAttribute{
+ Description: "accessModes contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1",
+ MarkdownDescription: "accessModes contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ "data_source": schema.SingleNestedAttribute{
+ Description: "dataSource field can be used to specify either:* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)* An existing PVC (PersistentVolumeClaim)If the provisioner or an external controller can support the specified data source,it will create a new volume based on the contents of the specified data source.When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.If the namespace is specified, then dataSourceRef will not be copied to dataSource.",
+ MarkdownDescription: "dataSource field can be used to specify either:* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)* An existing PVC (PersistentVolumeClaim)If the provisioner or an external controller can support the specified data source,it will create a new volume based on the contents of the specified data source.When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.If the namespace is specified, then dataSourceRef will not be copied to dataSource.",
+ Attributes: map[string]schema.Attribute{
+ "api_group": schema.StringAttribute{
+ Description: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
+ MarkdownDescription: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- "namespace_selector": schema.SingleNestedAttribute{
- Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "kind": schema.StringAttribute{
+ Description: "Kind is the type of resource being referenced",
+ MarkdownDescription: "Kind is the type of resource being referenced",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
+ "name": schema.StringAttribute{
+ Description: "Name is the name of resource being referenced",
+ MarkdownDescription: "Name is the name of resource being referenced",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "namespaces": schema.ListAttribute{
- Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- ElementType: types.StringType,
+ "data_source_ref": schema.SingleNestedAttribute{
+ Description: "dataSourceRef specifies the object from which to populate the volume with data, if a non-emptyvolume is desired. This may be any object from a non-empty API group (noncore object) or a PersistentVolumeClaim object.When this field is specified, volume binding will only succeed if the type ofthe specified object matches some installed volume populator or dynamicprovisioner.This field will replace the functionality of the dataSource field and as suchif both fields are non-empty, they must have the same value. For backwardscompatibility, when namespace isn't specified in dataSourceRef,both fields (dataSource and dataSourceRef) will be set to the samevalue automatically if one of them is empty and the other is non-empty.When namespace is specified in dataSourceRef,dataSource isn't set to the same value and must be empty.There are three important differences between dataSource and dataSourceRef:* While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects.* While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified.* While dataSource only allows local objects, dataSourceRef allows objects in any namespaces.(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
+ MarkdownDescription: "dataSourceRef specifies the object from which to populate the volume with data, if a non-emptyvolume is desired. This may be any object from a non-empty API group (noncore object) or a PersistentVolumeClaim object.When this field is specified, volume binding will only succeed if the type ofthe specified object matches some installed volume populator or dynamicprovisioner.This field will replace the functionality of the dataSource field and as suchif both fields are non-empty, they must have the same value. For backwardscompatibility, when namespace isn't specified in dataSourceRef,both fields (dataSource and dataSourceRef) will be set to the samevalue automatically if one of them is empty and the other is non-empty.When namespace is specified in dataSourceRef,dataSource isn't set to the same value and must be empty.There are three important differences between dataSource and dataSourceRef:* While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects.* While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified.* While dataSource only allows local objects, dataSourceRef allows objects in any namespaces.(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
+ Attributes: map[string]schema.Attribute{
+ "api_group": schema.StringAttribute{
+ Description: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
+ MarkdownDescription: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
Required: false,
Optional: true,
Computed: false,
},
- "topology_key": schema.StringAttribute{
- Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
+ "kind": schema.StringAttribute{
+ Description: "Kind is the type of resource being referenced",
+ MarkdownDescription: "Kind is the type of resource being referenced",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name is the name of resource being referenced",
+ MarkdownDescription: "Name is the name of resource being referenced",
Required: true,
Optional: false,
Computed: false,
},
+
+ "namespace": schema.StringAttribute{
+ Description: "Namespace is the namespace of resource being referencedNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
+ MarkdownDescription: "Namespace is the namespace of resource being referencedNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
- Required: true,
- Optional: false,
+ Required: false,
+ Optional: true,
Computed: false,
},
- "weight": schema.Int64Attribute{
- Description: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
- MarkdownDescription: "weight associated with matching the corresponding podAffinityTerm,in the range 1-100.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "required_during_scheduling_ignored_during_execution": schema.ListNestedAttribute{
- Description: "If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
- MarkdownDescription: "If the anti-affinity requirements specified by this field are not met atscheduling time, the pod will not be scheduled onto the node.If the anti-affinity requirements specified by this field cease to be metat some point during pod execution (e.g. due to a pod label update), thesystem may or may not try to eventually evict the pod from its node.When there are multiple elements, the lists of nodes corresponding to eachpodAffinityTerm are intersected, i.e. all terms must be satisfied.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "A label query over a set of resources, in this case pods.",
- MarkdownDescription: "A label query over a set of resources, in this case pods.",
+ "resources": schema.SingleNestedAttribute{
+ Description: "resources represents the minimum resources the volume should have.If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirementsthat are lower than previous value but must still be higher than capacity recorded in thestatus field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources",
+ MarkdownDescription: "resources represents the minimum resources the volume should have.If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirementsthat are lower than previous value but must still be higher than capacity recorded in thestatus field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources",
Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ "claims": schema.ListNestedAttribute{
+ Description: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ MarkdownDescription: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
NestedObject: schema.NestedAttributeObject{
Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ "name": schema.StringAttribute{
+ Description: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ MarkdownDescription: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
Required: true,
Optional: false,
Computed: false,
},
-
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
},
},
Required: false,
@@ -13091,9 +17744,18 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ "limits": schema.MapAttribute{
+ Description: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "requests": schema.MapAttribute{
+ Description: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
ElementType: types.StringType,
Required: false,
Optional: true,
@@ -13105,9 +17767,9 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "namespace_selector": schema.SingleNestedAttribute{
- Description: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
- MarkdownDescription: "A label query over the set of namespaces that the term applies to.The term is applied to the union of the namespaces selected by this fieldand the ones listed in the namespaces field.null selector and null or empty namespaces list means 'this pod's namespace'.An empty selector ({}) matches all namespaces.",
+ "selector": schema.SingleNestedAttribute{
+ Description: "selector is a label query over volumes to consider for binding.",
+ MarkdownDescription: "selector is a label query over volumes to consider for binding.",
Attributes: map[string]schema.Attribute{
"match_expressions": schema.ListNestedAttribute{
Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
@@ -13159,164 +17821,396 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "namespaces": schema.ListAttribute{
- Description: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- MarkdownDescription: "namespaces specifies a static list of namespace names that the term applies to.The term is applied to the union of the namespaces listed in this fieldand the ones selected by namespaceSelector.null or empty namespaces list and null namespaceSelector means 'this pod's namespace'.",
- ElementType: types.StringType,
+ "storage_class_name": schema.StringAttribute{
+ Description: "storageClassName is the name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1",
+ MarkdownDescription: "storageClassName is the name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1",
Required: false,
Optional: true,
Computed: false,
},
- "topology_key": schema.StringAttribute{
- Description: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- MarkdownDescription: "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matchingthe labelSelector in the specified namespaces, where co-located is defined as running on a nodewhose value of the label with key topologyKey matches that of any node on which any of theselected pods is running.Empty topologyKey is not allowed.",
- Required: true,
- Optional: false,
+ "volume_mode": schema.StringAttribute{
+ Description: "volumeMode defines what type of volume is required by the claim.Value of Filesystem is implied when not included in claim spec.",
+ MarkdownDescription: "volumeMode defines what type of volume is required by the claim.Value of Filesystem is implied when not included in claim spec.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_name": schema.StringAttribute{
+ Description: "volumeName is the binding reference to the PersistentVolume backing this claim.",
+ MarkdownDescription: "volumeName is the binding reference to the PersistentVolume backing this claim.",
+ Required: false,
+ Optional: true,
Computed: false,
},
},
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
},
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- "node_name": schema.StringAttribute{
- Description: "NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.",
- MarkdownDescription: "NodeName is a request to schedule this Pod onto a specific node. If it is non-empty,the scheduler simply schedules this Pod onto that node, assuming that it fits resourcerequirements.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "fc": schema.SingleNestedAttribute{
+ Description: "fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.",
+ MarkdownDescription: "fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.TODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.TODO: how do we prevent errors in the filesystem from compromising the machine",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "node_selector": schema.MapAttribute{
- Description: "NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/",
- MarkdownDescription: "NodeSelector is a selector which must be true for the Pod to fit on a node.Selector which must match a node's labels for the Pod to be scheduled on that node.More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "lun": schema.Int64Attribute{
+ Description: "lun is Optional: FC target lun number",
+ MarkdownDescription: "lun is Optional: FC target lun number",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "scheduler_name": schema.StringAttribute{
- Description: "If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.",
- MarkdownDescription: "If specified, the Pod will be dispatched by specified scheduler.If not specified, the Pod will be dispatched by default scheduler.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "tolerations": schema.ListNestedAttribute{
- Description: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.",
- MarkdownDescription: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.",
- NestedObject: schema.NestedAttributeObject{
+ "target_ww_ns": schema.ListAttribute{
+ Description: "targetWWNs is Optional: FC target worldwide names (WWNs)",
+ MarkdownDescription: "targetWWNs is Optional: FC target worldwide names (WWNs)",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "wwids": schema.ListAttribute{
+ Description: "wwids Optional: FC volume world wide identifiers (wwids)Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.",
+ MarkdownDescription: "wwids Optional: FC volume world wide identifiers (wwids)Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "flex_volume": schema.SingleNestedAttribute{
+ Description: "flexVolume represents a generic volume resource that isprovisioned/attached using an exec based plugin.",
+ MarkdownDescription: "flexVolume represents a generic volume resource that isprovisioned/attached using an exec based plugin.",
Attributes: map[string]schema.Attribute{
- "effect": schema.StringAttribute{
- Description: "Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.",
- MarkdownDescription: "Effect indicates the taint effect to match. Empty means match all taint effects.When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.",
+ "driver": schema.StringAttribute{
+ Description: "driver is the name of the driver to use for this volume.",
+ MarkdownDescription: "driver is the name of the driver to use for this volume.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "options": schema.MapAttribute{
+ Description: "options is Optional: this field holds extra command options if any.",
+ MarkdownDescription: "options is Optional: this field holds extra command options if any.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly is Optional: defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly is Optional: defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is Optional: secretRef is reference to the secret object containingsensitive information to pass to the plugin scripts. This may beempty if no secret object is specified. If the secret objectcontains more than one secret, all secrets are passed to the pluginscripts.",
+ MarkdownDescription: "secretRef is Optional: secretRef is reference to the secret object containingsensitive information to pass to the plugin scripts. This may beempty if no secret object is specified. If the secret objectcontains more than one secret, all secrets are passed to the pluginscripts.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "flocker": schema.SingleNestedAttribute{
+ Description: "flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running",
+ MarkdownDescription: "flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running",
+ Attributes: map[string]schema.Attribute{
+ "dataset_name": schema.StringAttribute{
+ Description: "datasetName is Name of the dataset stored as metadata -> name on the dataset for Flockershould be considered as deprecated",
+ MarkdownDescription: "datasetName is Name of the dataset stored as metadata -> name on the dataset for Flockershould be considered as deprecated",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "dataset_uuid": schema.StringAttribute{
+ Description: "datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset",
+ MarkdownDescription: "datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "gce_persistent_disk": schema.SingleNestedAttribute{
+ Description: "gcePersistentDisk represents a GCE Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ MarkdownDescription: "gcePersistentDisk represents a GCE Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskTODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskTODO: how do we prevent errors in the filesystem from compromising the machine",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "partition": schema.Int64Attribute{
+ Description: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ MarkdownDescription: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "pd_name": schema.StringAttribute{
+ Description: "pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ MarkdownDescription: "pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ MarkdownDescription: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "git_repo": schema.SingleNestedAttribute{
+ Description: "gitRepo represents a git repository at a particular revision.DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount anEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDirinto the Pod's container.",
+ MarkdownDescription: "gitRepo represents a git repository at a particular revision.DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount anEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDirinto the Pod's container.",
+ Attributes: map[string]schema.Attribute{
+ "directory": schema.StringAttribute{
+ Description: "directory is the target directory name.Must not contain or start with '..'. If '.' is supplied, the volume directory will be thegit repository. Otherwise, if specified, the volume will contain the git repository inthe subdirectory with the given name.",
+ MarkdownDescription: "directory is the target directory name.Must not contain or start with '..'. If '.' is supplied, the volume directory will be thegit repository. Otherwise, if specified, the volume will contain the git repository inthe subdirectory with the given name.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "repository": schema.StringAttribute{
+ Description: "repository is the URL",
+ MarkdownDescription: "repository is the URL",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "revision": schema.StringAttribute{
+ Description: "revision is the commit hash for the specified revision.",
+ MarkdownDescription: "revision is the commit hash for the specified revision.",
Required: false,
Optional: true,
Computed: false,
},
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "glusterfs": schema.SingleNestedAttribute{
+ Description: "glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/glusterfs/README.md",
+ MarkdownDescription: "glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/glusterfs/README.md",
+ Attributes: map[string]schema.Attribute{
+ "endpoints": schema.StringAttribute{
+ Description: "endpoints is the endpoint name that details Glusterfs topology.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ MarkdownDescription: "endpoints is the endpoint name that details Glusterfs topology.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is the Glusterfs volume path.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ MarkdownDescription: "path is the Glusterfs volume path.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the Glusterfs volume to be mounted with read-only permissions.Defaults to false.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ MarkdownDescription: "readOnly here will force the Glusterfs volume to be mounted with read-only permissions.Defaults to false.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "host_path": schema.SingleNestedAttribute{
+ Description: "hostPath represents a pre-existing file or directory on the hostmachine that is directly exposed to the container. This is generallyused for system agents or other privileged things that are allowedto see the host machine. Most containers will NOT need this.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath---TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can notmount host directories as read/write.",
+ MarkdownDescription: "hostPath represents a pre-existing file or directory on the hostmachine that is directly exposed to the container. This is generallyused for system agents or other privileged things that are allowedto see the host machine. Most containers will NOT need this.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath---TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can notmount host directories as read/write.",
+ Attributes: map[string]schema.Attribute{
+ "path": schema.StringAttribute{
+ Description: "path of the directory on the host.If the path is a symlink, it will follow the link to the real path.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
+ MarkdownDescription: "path of the directory on the host.If the path is a symlink, it will follow the link to the real path.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "type": schema.StringAttribute{
+ Description: "type for HostPath VolumeDefaults to ''More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
+ MarkdownDescription: "type for HostPath VolumeDefaults to ''More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "iscsi": schema.SingleNestedAttribute{
+ Description: "iscsi represents an ISCSI Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://examples.k8s.io/volumes/iscsi/README.md",
+ MarkdownDescription: "iscsi represents an ISCSI Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://examples.k8s.io/volumes/iscsi/README.md",
+ Attributes: map[string]schema.Attribute{
+ "chap_auth_discovery": schema.BoolAttribute{
+ Description: "chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication",
+ MarkdownDescription: "chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "chap_auth_session": schema.BoolAttribute{
+ Description: "chapAuthSession defines whether support iSCSI Session CHAP authentication",
+ MarkdownDescription: "chapAuthSession defines whether support iSCSI Session CHAP authentication",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsiTODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsiTODO: how do we prevent errors in the filesystem from compromising the machine",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "initiator_name": schema.StringAttribute{
+ Description: "initiatorName is the custom iSCSI Initiator Name.If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface: will be created for the connection.",
+ MarkdownDescription: "initiatorName is the custom iSCSI Initiator Name.If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface: will be created for the connection.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "iqn": schema.StringAttribute{
+ Description: "iqn is the target iSCSI Qualified Name.",
+ MarkdownDescription: "iqn is the target iSCSI Qualified Name.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "key": schema.StringAttribute{
- Description: "Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.",
- MarkdownDescription: "Key is the taint key that the toleration applies to. Empty means match all taint keys.If the key is empty, operator must be Exists; this combination means to match all values and all keys.",
+ "iscsi_interface": schema.StringAttribute{
+ Description: "iscsiInterface is the interface Name that uses an iSCSI transport.Defaults to 'default' (tcp).",
+ MarkdownDescription: "iscsiInterface is the interface Name that uses an iSCSI transport.Defaults to 'default' (tcp).",
Required: false,
Optional: true,
Computed: false,
},
- "operator": schema.StringAttribute{
- Description: "Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.",
- MarkdownDescription: "Operator represents a key's relationship to the value.Valid operators are Exists and Equal. Defaults to Equal.Exists is equivalent to wildcard for value, so that a pod cantolerate all taints of a particular category.",
- Required: false,
- Optional: true,
+ "lun": schema.Int64Attribute{
+ Description: "lun represents iSCSI Target Lun number.",
+ MarkdownDescription: "lun represents iSCSI Target Lun number.",
+ Required: true,
+ Optional: false,
Computed: false,
},
- "toleration_seconds": schema.Int64Attribute{
- Description: "TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.",
- MarkdownDescription: "TolerationSeconds represents the period of time the toleration (which must beof effect NoExecute, otherwise this field is ignored) tolerates the taint. By default,it is not set, which means tolerate the taint forever (do not evict). Zero andnegative values will be treated as 0 (evict immediately) by the system.",
+ "portals": schema.ListAttribute{
+ Description: "portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
+ MarkdownDescription: "portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
+ ElementType: types.StringType,
Required: false,
Optional: true,
Computed: false,
},
- "value": schema.StringAttribute{
- Description: "Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.",
- MarkdownDescription: "Value is the taint value the toleration matches to.If the operator is Exists, the value should be empty, otherwise just a regular string.",
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.",
+ MarkdownDescription: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.",
Required: false,
Optional: true,
Computed: false,
},
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- "topology_spread_constraints": schema.ListNestedAttribute{
- Description: "TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed.",
- MarkdownDescription: "TopologySpreadConstraints describes how a group of Pods ought to spread across topologydomains. Scheduler will schedule Pods in a way which abides by the constraints.All topologySpreadConstraints are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "label_selector": schema.SingleNestedAttribute{
- Description: "LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain.",
- MarkdownDescription: "LabelSelector is used to find matching pods.Pods that match this label selector are counted to determine the number of podsin their corresponding topology domain.",
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is the CHAP Secret for iSCSI target and initiator authentication",
+ MarkdownDescription: "secretRef is the CHAP Secret for iSCSI target and initiator authentication",
Attributes: map[string]schema.Attribute{
- "match_expressions": schema.ListNestedAttribute{
- Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the label key that the selector applies to.",
- MarkdownDescription: "key is the label key that the selector applies to.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "operator": schema.StringAttribute{
- Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "values": schema.ListAttribute{
- Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "match_labels": schema.MapAttribute{
- Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
- ElementType: types.StringType,
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
Required: false,
Optional: true,
Computed: false,
@@ -13327,482 +18221,598 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "match_label_keys": schema.ListAttribute{
- Description: "MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).",
- MarkdownDescription: "MatchLabelKeys is a set of pod label keys to select the pods over whichspreading will be calculated. The keys are used to lookup values from theincoming pod labels, those key-value labels are ANDed with labelSelectorto select the group of existing pods over which spreading will be calculatedfor the incoming pod. The same key is forbidden to exist in both MatchLabelKeys and LabelSelector.MatchLabelKeys cannot be set when LabelSelector isn't set.Keys that don't exist in the incoming pod labels willbe ignored. A null or empty list means only match against labelSelector.This is a beta field and requires the MatchLabelKeysInPodTopologySpread feature gate to be enabled (enabled by default).",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
+ "target_portal": schema.StringAttribute{
+ Description: "targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
+ MarkdownDescription: "targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
+ Required: true,
+ Optional: false,
Computed: false,
},
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "max_skew": schema.Int64Attribute{
- Description: "MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.",
- MarkdownDescription: "MaxSkew describes the degree to which pods may be unevenly distributed.When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted differencebetween the number of matching pods in the target topology and the global minimum.The global minimum is the minimum number of matching pods in an eligible domainor zero if the number of eligible domains is less than MinDomains.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 2/2/1:In this case, the global minimum is 1.| zone1 | zone2 | zone3 || P P | P P | P |- if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2;scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2)violate MaxSkew(1).- if MaxSkew is 2, incoming pod can be scheduled onto any zone.When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedenceto topologies that satisfy it.It's a required field. Default value is 1 and 0 is not allowed.",
+ "name": schema.StringAttribute{
+ Description: "name of the volume.Must be a DNS_LABEL and unique within the pod.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names",
+ MarkdownDescription: "name of the volume.Must be a DNS_LABEL and unique within the pod.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "nfs": schema.SingleNestedAttribute{
+ Description: "nfs represents an NFS mount on the host that shares a pod's lifetimeMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ MarkdownDescription: "nfs represents an NFS mount on the host that shares a pod's lifetimeMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ Attributes: map[string]schema.Attribute{
+ "path": schema.StringAttribute{
+ Description: "path that is exported by the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ MarkdownDescription: "path that is exported by the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
Required: true,
Optional: false,
Computed: false,
},
- "min_domains": schema.Int64Attribute{
- Description: "MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).",
- MarkdownDescription: "MinDomains indicates a minimum number of eligible domains.When the number of eligible domains with matching topology keys is less than minDomains,Pod Topology Spread treats 'global minimum' as 0, and then the calculation of Skew is performed.And when the number of eligible domains with matching topology keys equals or greater than minDomains,this value has no effect on scheduling.As a result, when the number of eligible domains is less than minDomains,scheduler won't schedule more than maxSkew Pods to those domains.If value is nil, the constraint behaves as if MinDomains is equal to 1.Valid values are integers greater than 0.When value is not nil, WhenUnsatisfiable must be DoNotSchedule.For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the samelabelSelector spread as 2/2/2:| zone1 | zone2 | zone3 || P P | P P | P P |The number of domains is less than 5(MinDomains), so 'global minimum' is treated as 0.In this situation, new pod with the same labelSelector cannot be scheduled,because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones,it will violate MaxSkew.This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).",
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the NFS export to be mounted with read-only permissions.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ MarkdownDescription: "readOnly here will force the NFS export to be mounted with read-only permissions.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
Required: false,
Optional: true,
Computed: false,
},
- "node_affinity_policy": schema.StringAttribute{
- Description: "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
- MarkdownDescription: "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelectorwhen calculating pod topology spread skew. Options are:- Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations.- Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations.If this value is nil, the behavior is equivalent to the Honor policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
+ "server": schema.StringAttribute{
+ Description: "server is the hostname or IP address of the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ MarkdownDescription: "server is the hostname or IP address of the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "persistent_volume_claim": schema.SingleNestedAttribute{
+ Description: "persistentVolumeClaimVolumeSource represents a reference to aPersistentVolumeClaim in the same namespace.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
+ MarkdownDescription: "persistentVolumeClaimVolumeSource represents a reference to aPersistentVolumeClaim in the same namespace.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
+ Attributes: map[string]schema.Attribute{
+ "claim_name": schema.StringAttribute{
+ Description: "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
+ MarkdownDescription: "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly Will force the ReadOnly setting in VolumeMounts.Default false.",
+ MarkdownDescription: "readOnly Will force the ReadOnly setting in VolumeMounts.Default false.",
Required: false,
Optional: true,
Computed: false,
},
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "node_taints_policy": schema.StringAttribute{
- Description: "NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
- MarkdownDescription: "NodeTaintsPolicy indicates how we will treat node taints when calculatingpod topology spread skew. Options are:- Honor: nodes without taints, along with tainted nodes for which the incoming podhas a toleration, are included.- Ignore: node taints are ignored. All nodes are included.If this value is nil, the behavior is equivalent to the Ignore policy.This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.",
+ "photon_persistent_disk": schema.SingleNestedAttribute{
+ Description: "photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine",
+ MarkdownDescription: "photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
Required: false,
Optional: true,
Computed: false,
},
- "topology_key": schema.StringAttribute{
- Description: "TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.",
- MarkdownDescription: "TopologyKey is the key of node labels. Nodes that have a label with this keyand identical values are considered to be in the same topology.We consider each as a 'bucket', and try to put balanced numberof pods into each bucket.We define a domain as a particular instance of a topology.Also, we define an eligible domain as a domain whose nodes meet the requirements ofnodeAffinityPolicy and nodeTaintsPolicy.e.g. If TopologyKey is 'kubernetes.io/hostname', each Node is a domain of that topology.And, if TopologyKey is 'topology.kubernetes.io/zone', each zone is a domain of that topology.It's a required field.",
+ "pd_id": schema.StringAttribute{
+ Description: "pdID is the ID that identifies Photon Controller persistent disk",
+ MarkdownDescription: "pdID is the ID that identifies Photon Controller persistent disk",
Required: true,
Optional: false,
Computed: false,
},
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "when_unsatisfiable": schema.StringAttribute{
- Description: "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.",
- MarkdownDescription: "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfythe spread constraint.- DoNotSchedule (default) tells the scheduler not to schedule it.- ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew.A constraint is considered 'Unsatisfiable' for an incoming podif and only if every possible node assignment for that pod would violate'MaxSkew' on some topology.For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the samelabelSelector spread as 3/1/1:| zone1 | zone2 | zone3 || P P P | P | P |If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduledto zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfiesMaxSkew(1). In other words, the cluster can still be imbalanced, but schedulerwon't make it *more* imbalanced.It's a required field.",
+ "portworx_volume": schema.SingleNestedAttribute{
+ Description: "portworxVolume represents a portworx volume attached and mounted on kubelets host machine",
+ MarkdownDescription: "portworxVolume represents a portworx volume attached and mounted on kubelets host machine",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fSType represents the filesystem type to mountMust be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fSType represents the filesystem type to mountMust be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_id": schema.StringAttribute{
+ Description: "volumeID uniquely identifies a Portworx volume",
+ MarkdownDescription: "volumeID uniquely identifies a Portworx volume",
Required: true,
Optional: false,
Computed: false,
},
},
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "service_account_name": schema.StringAttribute{
- Description: "Specifies the name of the ServiceAccount required by the running Component.This ServiceAccount is used to grant necessary permissions for the Component's Pods to interactwith other Kubernetes resources, such as modifying Pod labels or sending events.Defaults:If not specified, KubeBlocks automatically assigns a default ServiceAccount named 'kb-{cluster.name}',bound to a default role installed together with KubeBlocks.Future Changes:Future versions might change the default ServiceAccount creation strategy to one per Component,potentially revising the naming to 'kb-{cluster.name}-{component.name}'.Users can override the automatic ServiceAccount assignment by explicitly setting the name ofan existed ServiceAccount in this field.",
- MarkdownDescription: "Specifies the name of the ServiceAccount required by the running Component.This ServiceAccount is used to grant necessary permissions for the Component's Pods to interactwith other Kubernetes resources, such as modifying Pod labels or sending events.Defaults:If not specified, KubeBlocks automatically assigns a default ServiceAccount named 'kb-{cluster.name}',bound to a default role installed together with KubeBlocks.Future Changes:Future versions might change the default ServiceAccount creation strategy to one per Component,potentially revising the naming to 'kb-{cluster.name}-{component.name}'.Users can override the automatic ServiceAccount assignment by explicitly setting the name ofan existed ServiceAccount in this field.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "service_refs": schema.ListNestedAttribute{
- Description: "Defines a list of ServiceRef for a Component, enabling access to both external services andServices provided by other Clusters.Types of services:- External services: Not managed by KubeBlocks or managed by a different KubeBlocks operator; Require a ServiceDescriptor for connection details.- Services provided by a Cluster: Managed by the same KubeBlocks operator; identified using Cluster, Component and Service names.ServiceRefs with identical 'serviceRef.name' in the same Cluster are considered the same.Example:'''yamlserviceRefs: - name: 'redis-sentinel' serviceDescriptor: name: 'external-redis-sentinel' - name: 'postgres-cluster' clusterServiceSelector: cluster: 'my-postgres-cluster' service: component: 'postgresql''''The example above includes ServiceRefs to an external Redis Sentinel service and a PostgreSQL Cluster.",
- MarkdownDescription: "Defines a list of ServiceRef for a Component, enabling access to both external services andServices provided by other Clusters.Types of services:- External services: Not managed by KubeBlocks or managed by a different KubeBlocks operator; Require a ServiceDescriptor for connection details.- Services provided by a Cluster: Managed by the same KubeBlocks operator; identified using Cluster, Component and Service names.ServiceRefs with identical 'serviceRef.name' in the same Cluster are considered the same.Example:'''yamlserviceRefs: - name: 'redis-sentinel' serviceDescriptor: name: 'external-redis-sentinel' - name: 'postgres-cluster' clusterServiceSelector: cluster: 'my-postgres-cluster' service: component: 'postgresql''''The example above includes ServiceRefs to an external Redis Sentinel service and a PostgreSQL Cluster.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "cluster": schema.StringAttribute{
- Description: "Specifies the name of the KubeBlocks Cluster being referenced.This is used when services from another KubeBlocks Cluster are consumed.By default, the referenced KubeBlocks Cluster's 'clusterDefinition.spec.connectionCredential'will be utilized to bind to the current Component. This credential should include:'endpoint', 'port', 'username', and 'password'.Note:- The 'ServiceKind' and 'ServiceVersion' specified in the service reference within the ClusterDefinition are not validated when using this approach.- If both 'cluster' and 'serviceDescriptor' are present, 'cluster' will take precedence.Deprecated since v0.9 since 'clusterDefinition.spec.connectionCredential' is deprecated,use 'clusterServiceSelector' instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
- MarkdownDescription: "Specifies the name of the KubeBlocks Cluster being referenced.This is used when services from another KubeBlocks Cluster are consumed.By default, the referenced KubeBlocks Cluster's 'clusterDefinition.spec.connectionCredential'will be utilized to bind to the current Component. This credential should include:'endpoint', 'port', 'username', and 'password'.Note:- The 'ServiceKind' and 'ServiceVersion' specified in the service reference within the ClusterDefinition are not validated when using this approach.- If both 'cluster' and 'serviceDescriptor' are present, 'cluster' will take precedence.Deprecated since v0.9 since 'clusterDefinition.spec.connectionCredential' is deprecated,use 'clusterServiceSelector' instead.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
- Required: false,
- Optional: true,
- Computed: false,
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- "cluster_service_selector": schema.SingleNestedAttribute{
- Description: "References a service provided by another KubeBlocks Cluster.It specifies the ClusterService and the account credentials needed for access.",
- MarkdownDescription: "References a service provided by another KubeBlocks Cluster.It specifies the ClusterService and the account credentials needed for access.",
+ "projected": schema.SingleNestedAttribute{
+ Description: "projected items for all in one resources secrets, configmaps, and downward API",
+ MarkdownDescription: "projected items for all in one resources secrets, configmaps, and downward API",
Attributes: map[string]schema.Attribute{
- "cluster": schema.StringAttribute{
- Description: "The name of the Cluster being referenced.",
- MarkdownDescription: "The name of the Cluster being referenced.",
- Required: true,
- Optional: false,
+ "default_mode": schema.Int64Attribute{
+ Description: "defaultMode are the mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "defaultMode are the mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
Computed: false,
},
- "credential": schema.SingleNestedAttribute{
- Description: "Specifies the SystemAccount to authenticate and establish a connection with the referenced Cluster.The SystemAccount should be defined in 'componentDefinition.spec.systemAccounts'of the Component providing the service in the referenced Cluster.",
- MarkdownDescription: "Specifies the SystemAccount to authenticate and establish a connection with the referenced Cluster.The SystemAccount should be defined in 'componentDefinition.spec.systemAccounts'of the Component providing the service in the referenced Cluster.",
- Attributes: map[string]schema.Attribute{
- "component": schema.StringAttribute{
- Description: "The name of the Component where the credential resides in.",
- MarkdownDescription: "The name of the Component where the credential resides in.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "sources": schema.ListNestedAttribute{
+ Description: "sources is the list of volume projections",
+ MarkdownDescription: "sources is the list of volume projections",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "config_map": schema.SingleNestedAttribute{
+ Description: "configMap information about the configMap data to project",
+ MarkdownDescription: "configMap information about the configMap data to project",
+ Attributes: map[string]schema.Attribute{
+ "items": schema.ListNestedAttribute{
+ Description: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "name": schema.StringAttribute{
- Description: "The name of the credential (SystemAccount) to reference.",
- MarkdownDescription: "The name of the credential (SystemAccount) to reference.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "optional": schema.BoolAttribute{
+ Description: "optional specify whether the ConfigMap or its keys must be defined",
+ MarkdownDescription: "optional specify whether the ConfigMap or its keys must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "service": schema.SingleNestedAttribute{
- Description: "Identifies a ClusterService from the list of Services defined in 'cluster.spec.services' of the referenced Cluster.",
- MarkdownDescription: "Identifies a ClusterService from the list of Services defined in 'cluster.spec.services' of the referenced Cluster.",
- Attributes: map[string]schema.Attribute{
- "component": schema.StringAttribute{
- Description: "The name of the Component where the Service resides in.It is required when referencing a Component's Service.",
- MarkdownDescription: "The name of the Component where the Service resides in.It is required when referencing a Component's Service.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "downward_api": schema.SingleNestedAttribute{
+ Description: "downwardAPI information about the downwardAPI data to project",
+ MarkdownDescription: "downwardAPI information about the downwardAPI data to project",
+ Attributes: map[string]schema.Attribute{
+ "items": schema.ListNestedAttribute{
+ Description: "Items is a list of DownwardAPIVolume file",
+ MarkdownDescription: "Items is a list of DownwardAPIVolume file",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "field_ref": schema.SingleNestedAttribute{
+ Description: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
+ MarkdownDescription: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
+ Attributes: map[string]schema.Attribute{
+ "api_version": schema.StringAttribute{
+ Description: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ MarkdownDescription: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "port": schema.StringAttribute{
- Description: "The port name of the Service to be referenced.If there is a non-zero node-port exist for the matched Service port, the node-port will be selected first.If the referenced Service is of pod-service type (a Service per Pod), there will be multiple Service objects matched,and the resolved value will be presented in the following format: service1.name:port1,service2.name:port2...",
- MarkdownDescription: "The port name of the Service to be referenced.If there is a non-zero node-port exist for the matched Service port, the node-port will be selected first.If the referenced Service is of pod-service type (a Service per Pod), there will be multiple Service objects matched,and the resolved value will be presented in the following format: service1.name:port1,service2.name:port2...",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "field_path": schema.StringAttribute{
+ Description: "Path of the field to select in the specified API version.",
+ MarkdownDescription: "Path of the field to select in the specified API version.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "service": schema.StringAttribute{
- Description: "The name of the Service to be referenced.Leave it empty to reference the default Service. Set it to 'headless' to reference the default headless Service.If the referenced Service is of pod-service type (a Service per Pod), there will be multiple Service objects matched,and the resolved value will be presented in the following format: service1.name,service2.name...",
- MarkdownDescription: "The name of the Service to be referenced.Leave it empty to reference the default Service. Set it to 'headless' to reference the default headless Service.If the referenced Service is of pod-service type (a Service per Pod), there will be multiple Service objects matched,and the resolved value will be presented in the following format: service1.name,service2.name...",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "mode": schema.Int64Attribute{
+ Description: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "name": schema.StringAttribute{
- Description: "Specifies the identifier of the service reference declaration.It corresponds to the serviceRefDeclaration name defined in either:- 'componentDefinition.spec.serviceRefDeclarations[*].name'- 'clusterDefinition.spec.componentDefs[*].serviceRefDeclarations[*].name' (deprecated)",
- MarkdownDescription: "Specifies the identifier of the service reference declaration.It corresponds to the serviceRefDeclaration name defined in either:- 'componentDefinition.spec.serviceRefDeclarations[*].name'- 'clusterDefinition.spec.componentDefs[*].serviceRefDeclarations[*].name' (deprecated)",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "path": schema.StringAttribute{
+ Description: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
+ MarkdownDescription: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "namespace": schema.StringAttribute{
- Description: "Specifies the namespace of the referenced Cluster or the namespace of the referenced ServiceDescriptor object.If not provided, the referenced Cluster and ServiceDescriptor will be searched in the namespace of the currentCluster by default.",
- MarkdownDescription: "Specifies the namespace of the referenced Cluster or the namespace of the referenced ServiceDescriptor object.If not provided, the referenced Cluster and ServiceDescriptor will be searched in the namespace of the currentCluster by default.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "resource_field_ref": schema.SingleNestedAttribute{
+ Description: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
+ MarkdownDescription: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
+ Attributes: map[string]schema.Attribute{
+ "container_name": schema.StringAttribute{
+ Description: "Container name: required for volumes, optional for env vars",
+ MarkdownDescription: "Container name: required for volumes, optional for env vars",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "service_descriptor": schema.StringAttribute{
- Description: "Specifies the name of the ServiceDescriptor object that describes a service provided by external sources.When referencing a service provided by external sources, a ServiceDescriptor object is required to establishthe service binding.The 'serviceDescriptor.spec.serviceKind' and 'serviceDescriptor.spec.serviceVersion' should match the serviceKindand serviceVersion declared in the definition.If both 'cluster' and 'serviceDescriptor' are specified, the 'cluster' takes precedence.",
- MarkdownDescription: "Specifies the name of the ServiceDescriptor object that describes a service provided by external sources.When referencing a service provided by external sources, a ServiceDescriptor object is required to establishthe service binding.The 'serviceDescriptor.spec.serviceKind' and 'serviceDescriptor.spec.serviceVersion' should match the serviceKindand serviceVersion declared in the definition.If both 'cluster' and 'serviceDescriptor' are specified, the 'cluster' takes precedence.",
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "divisor": schema.StringAttribute{
+ Description: "Specifies the output format of the exposed resources, defaults to '1'",
+ MarkdownDescription: "Specifies the output format of the exposed resources, defaults to '1'",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "service_version": schema.StringAttribute{
- Description: "ServiceVersion specifies the version of the Service expected to be provisioned by this Component.The version should follow the syntax and semantics of the 'Semantic Versioning' specification (http://semver.org/).If no version is specified, the latest available version will be used.",
- MarkdownDescription: "ServiceVersion specifies the version of the Service expected to be provisioned by this Component.The version should follow the syntax and semantics of the 'Semantic Versioning' specification (http://semver.org/).If no version is specified, the latest available version will be used.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.LengthAtMost(32),
- },
- },
+ "resource": schema.StringAttribute{
+ Description: "Required: resource to select",
+ MarkdownDescription: "Required: resource to select",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "services": schema.ListNestedAttribute{
- Description: "Overrides services defined in referenced ComponentDefinition and expose endpoints that can be accessed by clients.",
- MarkdownDescription: "Overrides services defined in referenced ComponentDefinition and expose endpoints that can be accessed by clients.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "annotations": schema.MapAttribute{
- Description: "If ServiceType is LoadBalancer, cloud provider related parameters can be put here.More info: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer.",
- MarkdownDescription: "If ServiceType is LoadBalancer, cloud provider related parameters can be put here.More info: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "secret": schema.SingleNestedAttribute{
+ Description: "secret information about the secret data to project",
+ MarkdownDescription: "secret information about the secret data to project",
+ Attributes: map[string]schema.Attribute{
+ "items": schema.ListNestedAttribute{
+ Description: "items if unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "name": schema.StringAttribute{
- Description: "References the ComponentService name defined in the 'componentDefinition.spec.services[*].name'.",
- MarkdownDescription: "References the ComponentService name defined in the 'componentDefinition.spec.services[*].name'.",
- Required: true,
- Optional: false,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.LengthAtMost(25),
- },
- },
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "pod_service": schema.BoolAttribute{
- Description: "Indicates whether to generate individual Services for each Pod.If set to true, a separate Service will be created for each Pod in the Cluster.",
- MarkdownDescription: "Indicates whether to generate individual Services for each Pod.If set to true, a separate Service will be created for each Pod in the Cluster.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "service_type": schema.StringAttribute{
- Description: "Determines how the Service is exposed. Valid options are 'ClusterIP', 'NodePort', and 'LoadBalancer'.- 'ClusterIP' allocates a Cluster-internal IP address for load-balancing to endpoints. Endpoints are determined by the selector or if that is not specified, they are determined by manual construction of an Endpoints object or EndpointSlice objects.- 'NodePort' builds on ClusterIP and allocates a port on every node which routes to the same endpoints as the ClusterIP.- 'LoadBalancer' builds on NodePort and creates an external load-balancer (if supported in the current cloud) which routes to the same endpoints as the ClusterIP.Note: although K8s Service type allows the 'ExternalName' type, it is not a valid option for ClusterComponentService.For more info, see:https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types.",
- MarkdownDescription: "Determines how the Service is exposed. Valid options are 'ClusterIP', 'NodePort', and 'LoadBalancer'.- 'ClusterIP' allocates a Cluster-internal IP address for load-balancing to endpoints. Endpoints are determined by the selector or if that is not specified, they are determined by manual construction of an Endpoints object or EndpointSlice objects.- 'NodePort' builds on ClusterIP and allocates a port on every node which routes to the same endpoints as the ClusterIP.- 'LoadBalancer' builds on NodePort and creates an external load-balancer (if supported in the current cloud) which routes to the same endpoints as the ClusterIP.Note: although K8s Service type allows the 'ExternalName' type, it is not a valid option for ClusterComponentService.For more info, see:https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.OneOf("ClusterIP", "NodePort", "LoadBalancer"),
- },
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "switch_policy": schema.SingleNestedAttribute{
- Description: "Defines the strategy for switchover and failover when workloadType is Replication.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
- MarkdownDescription: "Defines the strategy for switchover and failover when workloadType is Replication.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
- Attributes: map[string]schema.Attribute{
- "type": schema.StringAttribute{
- Description: "Type specifies the type of switch policy to be applied.",
- MarkdownDescription: "Type specifies the type of switch policy to be applied.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.OneOf("Noop"),
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "optional": schema.BoolAttribute{
+ Description: "optional field specify whether the Secret or its key must be defined",
+ MarkdownDescription: "optional field specify whether the Secret or its key must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "system_accounts": schema.ListNestedAttribute{
- Description: "Overrides system accounts defined in referenced ComponentDefinition.",
- MarkdownDescription: "Overrides system accounts defined in referenced ComponentDefinition.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "The name of the system account.",
- MarkdownDescription: "The name of the system account.",
- Required: true,
- Optional: false,
- Computed: false,
+ "service_account_token": schema.SingleNestedAttribute{
+ Description: "serviceAccountToken is information about the serviceAccountToken data to project",
+ MarkdownDescription: "serviceAccountToken is information about the serviceAccountToken data to project",
+ Attributes: map[string]schema.Attribute{
+ "audience": schema.StringAttribute{
+ Description: "audience is the intended audience of the token. A recipient of a tokenmust identify itself with an identifier specified in the audience of thetoken, and otherwise should reject the token. The audience defaults to theidentifier of the apiserver.",
+ MarkdownDescription: "audience is the intended audience of the token. A recipient of a tokenmust identify itself with an identifier specified in the audience of thetoken, and otherwise should reject the token. The audience defaults to theidentifier of the apiserver.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "expiration_seconds": schema.Int64Attribute{
+ Description: "expirationSeconds is the requested duration of validity of the serviceaccount token. As the token approaches expiration, the kubelet volumeplugin will proactively rotate the service account token. The kubelet willstart trying to rotate the token if the token is older than 80 percent ofits time to live or if the token is older than 24 hours.Defaults to 1 hourand must be at least 10 minutes.",
+ MarkdownDescription: "expirationSeconds is the requested duration of validity of the serviceaccount token. As the token approaches expiration, the kubelet volumeplugin will proactively rotate the service account token. The kubelet willstart trying to rotate the token if the token is older than 80 percent ofits time to live or if the token is older than 24 hours.Defaults to 1 hourand must be at least 10 minutes.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is the path relative to the mount point of the file to project thetoken into.",
+ MarkdownDescription: "path is the path relative to the mount point of the file to project thetoken into.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- "password_config": schema.SingleNestedAttribute{
- Description: "Specifies the policy for generating the account's password.This field is immutable once set.",
- MarkdownDescription: "Specifies the policy for generating the account's password.This field is immutable once set.",
+ "quobyte": schema.SingleNestedAttribute{
+ Description: "quobyte represents a Quobyte mount on the host that shares a pod's lifetime",
+ MarkdownDescription: "quobyte represents a Quobyte mount on the host that shares a pod's lifetime",
Attributes: map[string]schema.Attribute{
- "length": schema.Int64Attribute{
- Description: "The length of the password.",
- MarkdownDescription: "The length of the password.",
+ "group": schema.StringAttribute{
+ Description: "group to map volume access toDefault is no group",
+ MarkdownDescription: "group to map volume access toDefault is no group",
Required: false,
Optional: true,
Computed: false,
- Validators: []validator.Int64{
- int64validator.AtLeast(8),
- int64validator.AtMost(32),
- },
},
- "letter_case": schema.StringAttribute{
- Description: "The case of the letters in the password.",
- MarkdownDescription: "The case of the letters in the password.",
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the Quobyte volume to be mounted with read-only permissions.Defaults to false.",
+ MarkdownDescription: "readOnly here will force the Quobyte volume to be mounted with read-only permissions.Defaults to false.",
Required: false,
Optional: true,
Computed: false,
- Validators: []validator.String{
- stringvalidator.OneOf("LowerCases", "UpperCases", "MixedCases"),
- },
},
- "num_digits": schema.Int64Attribute{
- Description: "The number of digits in the password.",
- MarkdownDescription: "The number of digits in the password.",
- Required: false,
- Optional: true,
+ "registry": schema.StringAttribute{
+ Description: "registry represents a single or multiple Quobyte Registry servicesspecified as a string as host:port pair (multiple entries are separated with commas)which acts as the central registry for volumes",
+ MarkdownDescription: "registry represents a single or multiple Quobyte Registry servicesspecified as a string as host:port pair (multiple entries are separated with commas)which acts as the central registry for volumes",
+ Required: true,
+ Optional: false,
Computed: false,
- Validators: []validator.Int64{
- int64validator.AtLeast(0),
- int64validator.AtMost(8),
- },
},
- "num_symbols": schema.Int64Attribute{
- Description: "The number of symbols in the password.",
- MarkdownDescription: "The number of symbols in the password.",
+ "tenant": schema.StringAttribute{
+ Description: "tenant owning the given Quobyte volume in the BackendUsed with dynamically provisioned Quobyte volumes, value is set by the plugin",
+ MarkdownDescription: "tenant owning the given Quobyte volume in the BackendUsed with dynamically provisioned Quobyte volumes, value is set by the plugin",
Required: false,
Optional: true,
Computed: false,
- Validators: []validator.Int64{
- int64validator.AtLeast(0),
- int64validator.AtMost(8),
- },
},
- "seed": schema.StringAttribute{
- Description: "Seed to generate the account's password.Cannot be updated.",
- MarkdownDescription: "Seed to generate the account's password.Cannot be updated.",
+ "user": schema.StringAttribute{
+ Description: "user to map volume access toDefaults to serivceaccount user",
+ MarkdownDescription: "user to map volume access toDefaults to serivceaccount user",
Required: false,
Optional: true,
Computed: false,
},
+
+ "volume": schema.StringAttribute{
+ Description: "volume is a string that references an already created Quobyte volume by name.",
+ MarkdownDescription: "volume is a string that references an already created Quobyte volume by name.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
},
Required: false,
Optional: true,
Computed: false,
},
- "secret_ref": schema.SingleNestedAttribute{
- Description: "Refers to the secret from which data will be copied to create the new account.This field is immutable once set.",
- MarkdownDescription: "Refers to the secret from which data will be copied to create the new account.This field is immutable once set.",
+ "rbd": schema.SingleNestedAttribute{
+ Description: "rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/rbd/README.md",
+ MarkdownDescription: "rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/rbd/README.md",
Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "The unique identifier of the secret.",
- MarkdownDescription: "The unique identifier of the secret.",
- Required: true,
- Optional: false,
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#rbdTODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#rbdTODO: how do we prevent errors in the filesystem from compromising the machine",
+ Required: false,
+ Optional: true,
Computed: false,
},
- "namespace": schema.StringAttribute{
- Description: "The namespace where the secret is located.",
- MarkdownDescription: "The namespace where the secret is located.",
+ "image": schema.StringAttribute{
+ Description: "image is the rados image name.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "image is the rados image name.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
Required: true,
Optional: false,
Computed: false,
},
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- "tls": schema.BoolAttribute{
- Description: "A boolean flag that indicates whether the Component should use Transport Layer Security (TLS)for secure communication.When set to true, the Component will be configured to use TLS encryption for its network connections.This ensures that the data transmitted between the Component and its clients or other Components is encryptedand protected from unauthorized access.If TLS is enabled, the Component may require additional configuration, such as specifying TLS certificates and keys,to properly set up the secure communication channel.",
- MarkdownDescription: "A boolean flag that indicates whether the Component should use Transport Layer Security (TLS)for secure communication.When set to true, the Component will be configured to use TLS encryption for its network connections.This ensures that the data transmitted between the Component and its clients or other Components is encryptedand protected from unauthorized access.If TLS is enabled, the Component may require additional configuration, such as specifying TLS certificates and keys,to properly set up the secure communication channel.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "keyring": schema.StringAttribute{
+ Description: "keyring is the path to key ring for RBDUser.Default is /etc/ceph/keyring.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "keyring is the path to key ring for RBDUser.Default is /etc/ceph/keyring.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "tolerations": schema.MapAttribute{
- Description: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.Deprecated since v0.10, replaced by the 'schedulingPolicy' field.",
- MarkdownDescription: "Allows Pods to be scheduled onto nodes with matching taints.Each toleration in the array allows the Pod to tolerate node taints based onspecified 'key', 'value', 'effect', and 'operator'.- The 'key', 'value', and 'effect' identify the taint that the toleration matches.- The 'operator' determines how the toleration matches the taint.Pods with matching tolerations are allowed to be scheduled on tainted nodes, typically reserved for specific purposes.Deprecated since v0.10, replaced by the 'schedulingPolicy' field.",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "monitors": schema.ListAttribute{
+ Description: "monitors is a collection of Ceph monitors.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "monitors is a collection of Ceph monitors.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ ElementType: types.StringType,
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
- "update_strategy": schema.StringAttribute{
- Description: "Defines the update strategy for the Component.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
- MarkdownDescription: "Defines the update strategy for the Component.Deprecated since v0.9.This field is maintained for backward compatibility and its use is discouraged.Existing usage should be updated to the current preferred approach to avoid compatibility issues in future releases.",
- Required: false,
- Optional: true,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.OneOf("Serial", "BestEffortParallel", "Parallel"),
- },
- },
+ "pool": schema.StringAttribute{
+ Description: "pool is the rados pool name.Default is rbd.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "pool is the rados pool name.Default is rbd.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "user_resource_refs": schema.SingleNestedAttribute{
- Description: "Allows users to specify custom ConfigMaps and Secrets to be mounted as volumesin the Cluster's Pods.This is useful in scenarios where users need to provide additional resources to the Cluster, such as:- Mounting custom scripts or configuration files during Cluster startup.- Mounting Secrets as volumes to provide sensitive information, like S3 AK/SK, to the Cluster.",
- MarkdownDescription: "Allows users to specify custom ConfigMaps and Secrets to be mounted as volumesin the Cluster's Pods.This is useful in scenarios where users need to provide additional resources to the Cluster, such as:- Mounting custom scripts or configuration files during Cluster startup.- Mounting Secrets as volumes to provide sensitive information, like S3 AK/SK, to the Cluster.",
- Attributes: map[string]schema.Attribute{
- "config_map_refs": schema.ListNestedAttribute{
- Description: "ConfigMapRefs defines the user-defined ConfigMaps.",
- MarkdownDescription: "ConfigMapRefs defines the user-defined ConfigMaps.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "as_volume_from": schema.ListAttribute{
- Description: "AsVolumeFrom lists the names of containers in which the volume should be mounted.",
- MarkdownDescription: "AsVolumeFrom lists the names of containers in which the volume should be mounted.",
- ElementType: types.StringType,
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
Required: false,
Optional: true,
Computed: false,
},
- "config_map": schema.SingleNestedAttribute{
- Description: "ConfigMap specifies the ConfigMap to be mounted as a volume.",
- MarkdownDescription: "ConfigMap specifies the ConfigMap to be mounted as a volume.",
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is name of the authentication secret for RBDUser. If providedoverrides keyring.Default is nil.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "secretRef is name of the authentication secret for RBDUser. If providedoverrides keyring.Default is nil.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
Attributes: map[string]schema.Attribute{
- "default_mode": schema.Int64Attribute{
- Description: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
Required: false,
Optional: true,
Computed: false,
},
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "items": schema.ListNestedAttribute{
- Description: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the key to project.",
- MarkdownDescription: "key is the key to project.",
- Required: true,
- Optional: false,
- Computed: false,
- },
+ "user": schema.StringAttribute{
+ Description: "user is the rados user name.Default is admin.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "user is the rados user name.Default is admin.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "mode": schema.Int64Attribute{
- Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "scale_io": schema.SingleNestedAttribute{
+ Description: "scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.",
+ MarkdownDescription: "scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'.Default is 'xfs'.",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'.Default is 'xfs'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "path": schema.StringAttribute{
- Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "gateway": schema.StringAttribute{
+ Description: "gateway is the host address of the ScaleIO API Gateway.",
+ MarkdownDescription: "gateway is the host address of the ScaleIO API Gateway.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "protection_domain": schema.StringAttribute{
+ Description: "protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.",
+ MarkdownDescription: "protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef references to the secret for ScaleIO user and othersensitive information. If this is not provided, Login operation will fail.",
+ MarkdownDescription: "secretRef references to the secret for ScaleIO user and othersensitive information. If this is not provided, Login operation will fail.",
+ Attributes: map[string]schema.Attribute{
"name": schema.StringAttribute{
Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
@@ -13810,245 +18820,152 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Optional: true,
Computed: false,
},
-
- "optional": schema.BoolAttribute{
- Description: "optional specify whether the ConfigMap or its keys must be defined",
- MarkdownDescription: "optional specify whether the ConfigMap or its keys must be defined",
- Required: false,
- Optional: true,
- Computed: false,
- },
},
Required: true,
Optional: false,
Computed: false,
},
- "mount_point": schema.StringAttribute{
- Description: "MountPoint is the filesystem path where the volume will be mounted.",
- MarkdownDescription: "MountPoint is the filesystem path where the volume will be mounted.",
- Required: true,
- Optional: false,
- Computed: false,
- Validators: []validator.String{
- stringvalidator.LengthAtMost(256),
- stringvalidator.RegexMatches(regexp.MustCompile(`^/[a-z]([a-z0-9\-]*[a-z0-9])?$`), ""),
- },
- },
-
- "name": schema.StringAttribute{
- Description: "Name is the name of the referenced ConfigMap or Secret object. It must conform to DNS label standards.",
- MarkdownDescription: "Name is the name of the referenced ConfigMap or Secret object. It must conform to DNS label standards.",
- Required: true,
- Optional: false,
+ "ssl_enabled": schema.BoolAttribute{
+ Description: "sslEnabled Flag enable/disable SSL communication with Gateway, default false",
+ MarkdownDescription: "sslEnabled Flag enable/disable SSL communication with Gateway, default false",
+ Required: false,
+ Optional: true,
Computed: false,
- Validators: []validator.String{
- stringvalidator.LengthAtMost(63),
- stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z0-9]([a-z0-9\.\-]*[a-z0-9])?$`), ""),
- },
- },
-
- "sub_path": schema.StringAttribute{
- Description: "SubPath specifies a path within the volume from which to mount.",
- MarkdownDescription: "SubPath specifies a path within the volume from which to mount.",
+ },
+
+ "storage_mode": schema.StringAttribute{
+ Description: "storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.Default is ThinProvisioned.",
+ MarkdownDescription: "storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.Default is ThinProvisioned.",
Required: false,
Optional: true,
Computed: false,
},
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- "secret_refs": schema.ListNestedAttribute{
- Description: "SecretRefs defines the user-defined Secrets.",
- MarkdownDescription: "SecretRefs defines the user-defined Secrets.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "as_volume_from": schema.ListAttribute{
- Description: "AsVolumeFrom lists the names of containers in which the volume should be mounted.",
- MarkdownDescription: "AsVolumeFrom lists the names of containers in which the volume should be mounted.",
- ElementType: types.StringType,
+ "storage_pool": schema.StringAttribute{
+ Description: "storagePool is the ScaleIO Storage Pool associated with the protection domain.",
+ MarkdownDescription: "storagePool is the ScaleIO Storage Pool associated with the protection domain.",
Required: false,
Optional: true,
Computed: false,
},
- "mount_point": schema.StringAttribute{
- Description: "MountPoint is the filesystem path where the volume will be mounted.",
- MarkdownDescription: "MountPoint is the filesystem path where the volume will be mounted.",
+ "system": schema.StringAttribute{
+ Description: "system is the name of the storage system as configured in ScaleIO.",
+ MarkdownDescription: "system is the name of the storage system as configured in ScaleIO.",
Required: true,
Optional: false,
Computed: false,
- Validators: []validator.String{
- stringvalidator.LengthAtMost(256),
- stringvalidator.RegexMatches(regexp.MustCompile(`^/[a-z]([a-z0-9\-]*[a-z0-9])?$`), ""),
- },
},
- "name": schema.StringAttribute{
- Description: "Name is the name of the referenced ConfigMap or Secret object. It must conform to DNS label standards.",
- MarkdownDescription: "Name is the name of the referenced ConfigMap or Secret object. It must conform to DNS label standards.",
- Required: true,
- Optional: false,
+ "volume_name": schema.StringAttribute{
+ Description: "volumeName is the name of a volume already created in the ScaleIO systemthat is associated with this volume source.",
+ MarkdownDescription: "volumeName is the name of a volume already created in the ScaleIO systemthat is associated with this volume source.",
+ Required: false,
+ Optional: true,
Computed: false,
- Validators: []validator.String{
- stringvalidator.LengthAtMost(63),
- stringvalidator.RegexMatches(regexp.MustCompile(`^[a-z0-9]([a-z0-9\.\-]*[a-z0-9])?$`), ""),
- },
},
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "secret": schema.SingleNestedAttribute{
- Description: "Secret specifies the Secret to be mounted as a volume.",
- MarkdownDescription: "Secret specifies the Secret to be mounted as a volume.",
- Attributes: map[string]schema.Attribute{
- "default_mode": schema.Int64Attribute{
- Description: "defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "items": schema.ListNestedAttribute{
- Description: "items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- MarkdownDescription: "items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "key": schema.StringAttribute{
- Description: "key is the key to project.",
- MarkdownDescription: "key is the key to project.",
- Required: true,
- Optional: false,
- Computed: false,
- },
-
- "mode": schema.Int64Attribute{
- Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "secret": schema.SingleNestedAttribute{
+ Description: "secret represents a secret that should populate this volume.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ MarkdownDescription: "secret represents a secret that should populate this volume.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "path": schema.StringAttribute{
- Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
+ "items": schema.ListNestedAttribute{
+ Description: "items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
},
- Required: false,
- Optional: true,
- Computed: false,
- },
- "optional": schema.BoolAttribute{
- Description: "optional field specify whether the Secret or its keys must be defined",
- MarkdownDescription: "optional field specify whether the Secret or its keys must be defined",
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "secret_name": schema.StringAttribute{
- Description: "secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
- MarkdownDescription: "secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
- Required: false,
- Optional: true,
- Computed: false,
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
},
},
- Required: true,
- Optional: false,
+ Required: false,
+ Optional: true,
Computed: false,
},
- "sub_path": schema.StringAttribute{
- Description: "SubPath specifies a path within the volume from which to mount.",
- MarkdownDescription: "SubPath specifies a path within the volume from which to mount.",
+ "optional": schema.BoolAttribute{
+ Description: "optional field specify whether the Secret or its keys must be defined",
+ MarkdownDescription: "optional field specify whether the Secret or its keys must be defined",
Required: false,
Optional: true,
Computed: false,
},
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
- "volume_claim_templates": schema.ListNestedAttribute{
- Description: "Specifies a list of PersistentVolumeClaim templates that represent the storage requirements for the Component.Each template specifies the desired characteristics of a persistent volume, such as storage class,size, and access modes.These templates are used to dynamically provision persistent volumes for the Component.",
- MarkdownDescription: "Specifies a list of PersistentVolumeClaim templates that represent the storage requirements for the Component.Each template specifies the desired characteristics of a persistent volume, such as storage class,size, and access modes.These templates are used to dynamically provision persistent volumes for the Component.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Refers to the name of a volumeMount defined in either:- 'componentDefinition.spec.runtime.containers[*].volumeMounts'- 'clusterDefinition.spec.componentDefs[*].podSpec.containers[*].volumeMounts' (deprecated)The value of 'name' must match the 'name' field of a volumeMount specified in the corresponding 'volumeMounts' array.",
- MarkdownDescription: "Refers to the name of a volumeMount defined in either:- 'componentDefinition.spec.runtime.containers[*].volumeMounts'- 'clusterDefinition.spec.componentDefs[*].podSpec.containers[*].volumeMounts' (deprecated)The value of 'name' must match the 'name' field of a volumeMount specified in the corresponding 'volumeMounts' array.",
- Required: true,
- Optional: false,
- Computed: false,
+ "secret_name": schema.StringAttribute{
+ Description: "secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ MarkdownDescription: "secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
},
- "spec": schema.SingleNestedAttribute{
- Description: "Defines the desired characteristics of a PersistentVolumeClaim that will be created for the volumewith the mount name specified in the 'name' field.When a Pod is created for this ClusterComponent, a new PVC will be created based on the specificationdefined in the 'spec' field. The PVC will be associated with the volume mount specified by the 'name' field.",
- MarkdownDescription: "Defines the desired characteristics of a PersistentVolumeClaim that will be created for the volumewith the mount name specified in the 'name' field.When a Pod is created for this ClusterComponent, a new PVC will be created based on the specificationdefined in the 'spec' field. The PVC will be associated with the volume mount specified by the 'name' field.",
+ "storageos": schema.SingleNestedAttribute{
+ Description: "storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.",
+ MarkdownDescription: "storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.",
Attributes: map[string]schema.Attribute{
- "access_modes": schema.MapAttribute{
- Description: "Contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1.",
- MarkdownDescription: "Contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1.",
- ElementType: types.StringType,
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
Required: false,
Optional: true,
Computed: false,
},
- "resources": schema.SingleNestedAttribute{
- Description: "Represents the minimum resources the volume should have.If the RecoverVolumeExpansionFailure feature is enabled, users are allowed to specify resource requirements thatare lower than the previous value but must still be higher than the capacity recorded in the status field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources.",
- MarkdownDescription: "Represents the minimum resources the volume should have.If the RecoverVolumeExpansionFailure feature is enabled, users are allowed to specify resource requirements thatare lower than the previous value but must still be higher than the capacity recorded in the status field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources.",
- Attributes: map[string]schema.Attribute{
- "claims": schema.ListNestedAttribute{
- Description: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
- MarkdownDescription: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
- NestedObject: schema.NestedAttributeObject{
- Attributes: map[string]schema.Attribute{
- "name": schema.StringAttribute{
- Description: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
- MarkdownDescription: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
- Required: true,
- Optional: false,
- Computed: false,
- },
- },
- },
- Required: false,
- Optional: true,
- Computed: false,
- },
-
- "limits": schema.MapAttribute{
- Description: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- MarkdownDescription: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- ElementType: types.StringType,
- Required: false,
- Optional: true,
- Computed: false,
- },
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
- "requests": schema.MapAttribute{
- Description: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- MarkdownDescription: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
- ElementType: types.StringType,
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef specifies the secret to use for obtaining the StorageOS APIcredentials. If not specified, default values will be attempted.",
+ MarkdownDescription: "secretRef specifies the secret to use for obtaining the StorageOS APIcredentials. If not specified, default values will be attempted.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
Required: false,
Optional: true,
Computed: false,
@@ -14059,21 +18976,62 @@ func (r *AppsKubeblocksIoClusterV1Alpha1Manifest) Schema(_ context.Context, _ da
Computed: false,
},
- "storage_class_name": schema.StringAttribute{
- Description: "The name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1.",
- MarkdownDescription: "The name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1.",
+ "volume_name": schema.StringAttribute{
+ Description: "volumeName is the human-readable name of the StorageOS volume. Volumenames are only unique within a namespace.",
+ MarkdownDescription: "volumeName is the human-readable name of the StorageOS volume. Volumenames are only unique within a namespace.",
Required: false,
Optional: true,
Computed: false,
},
- "volume_mode": schema.StringAttribute{
- Description: "Defines what type of volume is required by the claim, either Block or Filesystem.",
- MarkdownDescription: "Defines what type of volume is required by the claim, either Block or Filesystem.",
+ "volume_namespace": schema.StringAttribute{
+ Description: "volumeNamespace specifies the scope of the volume within StorageOS. If nonamespace is specified then the Pod's namespace will be used. This allows theKubernetes name scoping to be mirrored within StorageOS for tighter integration.Set VolumeName to any name to override the default behaviour.Set to 'default' if you are not using namespaces within StorageOS.Namespaces that do not pre-exist within StorageOS will be created.",
+ MarkdownDescription: "volumeNamespace specifies the scope of the volume within StorageOS. If nonamespace is specified then the Pod's namespace will be used. This allows theKubernetes name scoping to be mirrored within StorageOS for tighter integration.Set VolumeName to any name to override the default behaviour.Set to 'default' if you are not using namespaces within StorageOS.Namespaces that do not pre-exist within StorageOS will be created.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "vsphere_volume": schema.SingleNestedAttribute{
+ Description: "vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine",
+ MarkdownDescription: "vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fsType is filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "storage_policy_id": schema.StringAttribute{
+ Description: "storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.",
+ MarkdownDescription: "storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "storage_policy_name": schema.StringAttribute{
+ Description: "storagePolicyName is the storage Policy Based Management (SPBM) profile name.",
+ MarkdownDescription: "storagePolicyName is the storage Policy Based Management (SPBM) profile name.",
Required: false,
Optional: true,
Computed: false,
},
+
+ "volume_path": schema.StringAttribute{
+ Description: "volumePath is the path that identifies vSphere volume vmdk",
+ MarkdownDescription: "volumePath is the path that identifies vSphere volume vmdk",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
},
Required: false,
Optional: true,
diff --git a/internal/provider/apps_kubeblocks_io_v1alpha1/apps_kubeblocks_io_component_definition_v1alpha1_manifest.go b/internal/provider/apps_kubeblocks_io_v1alpha1/apps_kubeblocks_io_component_definition_v1alpha1_manifest.go
index cd76b0eea..f6392eb64 100644
--- a/internal/provider/apps_kubeblocks_io_v1alpha1/apps_kubeblocks_io_component_definition_v1alpha1_manifest.go
+++ b/internal/provider/apps_kubeblocks_io_v1alpha1/apps_kubeblocks_io_component_definition_v1alpha1_manifest.go
@@ -807,7 +807,8 @@ type AppsKubeblocksIoComponentDefinitionV1Alpha1ManifestData struct {
ScrapePort *string `tfsdk:"scrape_port" json:"scrapePort,omitempty"`
} `tfsdk:"exporter_config" json:"exporterConfig,omitempty"`
} `tfsdk:"monitor" json:"monitor,omitempty"`
- PolicyRules *[]struct {
+ PodManagementPolicy *string `tfsdk:"pod_management_policy" json:"podManagementPolicy,omitempty"`
+ PolicyRules *[]struct {
ApiGroups *[]string `tfsdk:"api_groups" json:"apiGroups,omitempty"`
NonResourceURLs *[]string `tfsdk:"non_resource_urls" json:"nonResourceURLs,omitempty"`
ResourceNames *[]string `tfsdk:"resource_names" json:"resourceNames,omitempty"`
@@ -7465,6 +7466,14 @@ func (r *AppsKubeblocksIoComponentDefinitionV1Alpha1Manifest) Schema(_ context.C
Computed: false,
},
+ "pod_management_policy": schema.StringAttribute{
+ Description: "InstanceSet controls the creation of pods during initial scale up, replacement of pods on nodes, and scaling down.- 'OrderedReady': Creates pods in increasing order (pod-0, then pod-1, etc). The controller waits until each podis ready before continuing. Pods are removed in reverse order when scaling down.- 'Parallel': Creates pods in parallel to match the desired scale without waiting. All pods are deleted at oncewhen scaling down.",
+ MarkdownDescription: "InstanceSet controls the creation of pods during initial scale up, replacement of pods on nodes, and scaling down.- 'OrderedReady': Creates pods in increasing order (pod-0, then pod-1, etc). The controller waits until each podis ready before continuing. Pods are removed in reverse order when scaling down.- 'Parallel': Creates pods in parallel to match the desired scale without waiting. All pods are deleted at oncewhen scaling down.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
"policy_rules": schema.ListNestedAttribute{
Description: "Defines the namespaced policy rules required by the Component.The 'policyRules' field is an array of 'rbacv1.PolicyRule' objects that define the policy rulesneeded by the Component to operate within a namespace.These policy rules determine the permissions and verbs the Component is allowed to perform onKubernetes resources within the namespace.The purpose of this field is to automatically generate the necessary RBAC rolesfor the Component based on the specified policy rules.This ensures that the Pods in the Component has appropriate permissions to function.Note: This field is currently non-functional and is reserved for future implementation.This field is immutable.",
MarkdownDescription: "Defines the namespaced policy rules required by the Component.The 'policyRules' field is an array of 'rbacv1.PolicyRule' objects that define the policy rulesneeded by the Component to operate within a namespace.These policy rules determine the permissions and verbs the Component is allowed to perform onKubernetes resources within the namespace.The purpose of this field is to automatically generate the necessary RBAC rolesfor the Component based on the specified policy rules.This ensures that the Pods in the Component has appropriate permissions to function.Note: This field is currently non-functional and is reserved for future implementation.This field is immutable.",
@@ -16339,8 +16348,8 @@ func (r *AppsKubeblocksIoComponentDefinitionV1Alpha1Manifest) Schema(_ context.C
NestedObject: schema.NestedAttributeObject{
Attributes: map[string]schema.Attribute{
"init_account": schema.BoolAttribute{
- Description: "Indicates if this account is the unique system initialization account (e.g., MySQL root).Only one system initialization account is permitted.This field is immutable once set.",
- MarkdownDescription: "Indicates if this account is the unique system initialization account (e.g., MySQL root).Only one system initialization account is permitted.This field is immutable once set.",
+ Description: "Indicates if this account is a system initialization account (e.g., MySQL root).This field is immutable once set.",
+ MarkdownDescription: "Indicates if this account is a system initialization account (e.g., MySQL root).This field is immutable once set.",
Required: false,
Optional: true,
Computed: false,
diff --git a/internal/provider/apps_kubeblocks_io_v1alpha1/apps_kubeblocks_io_component_v1alpha1_manifest.go b/internal/provider/apps_kubeblocks_io_v1alpha1/apps_kubeblocks_io_component_v1alpha1_manifest.go
index 1e7b3ef36..413b75005 100644
--- a/internal/provider/apps_kubeblocks_io_v1alpha1/apps_kubeblocks_io_component_v1alpha1_manifest.go
+++ b/internal/provider/apps_kubeblocks_io_v1alpha1/apps_kubeblocks_io_component_v1alpha1_manifest.go
@@ -51,8 +51,9 @@ type AppsKubeblocksIoComponentV1Alpha1ManifestData struct {
Tenancy *string `tfsdk:"tenancy" json:"tenancy,omitempty"`
TopologyKeys *[]string `tfsdk:"topology_keys" json:"topologyKeys,omitempty"`
} `tfsdk:"affinity" json:"affinity,omitempty"`
- CompDef *string `tfsdk:"comp_def" json:"compDef,omitempty"`
- Configs *[]struct {
+ Annotations *map[string]string `tfsdk:"annotations" json:"annotations,omitempty"`
+ CompDef *string `tfsdk:"comp_def" json:"compDef,omitempty"`
+ Configs *[]struct {
ConfigMap *struct {
DefaultMode *int64 `tfsdk:"default_mode" json:"defaultMode,omitempty"`
Items *[]struct {
@@ -67,7 +68,32 @@ type AppsKubeblocksIoComponentV1Alpha1ManifestData struct {
} `tfsdk:"configs" json:"configs,omitempty"`
DisableExporter *bool `tfsdk:"disable_exporter" json:"disableExporter,omitempty"`
EnabledLogs *[]string `tfsdk:"enabled_logs" json:"enabledLogs,omitempty"`
- Instances *[]struct {
+ Env *[]struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Value *string `tfsdk:"value" json:"value,omitempty"`
+ ValueFrom *struct {
+ ConfigMapKeyRef *struct {
+ Key *string `tfsdk:"key" json:"key,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Optional *bool `tfsdk:"optional" json:"optional,omitempty"`
+ } `tfsdk:"config_map_key_ref" json:"configMapKeyRef,omitempty"`
+ FieldRef *struct {
+ ApiVersion *string `tfsdk:"api_version" json:"apiVersion,omitempty"`
+ FieldPath *string `tfsdk:"field_path" json:"fieldPath,omitempty"`
+ } `tfsdk:"field_ref" json:"fieldRef,omitempty"`
+ ResourceFieldRef *struct {
+ ContainerName *string `tfsdk:"container_name" json:"containerName,omitempty"`
+ Divisor *string `tfsdk:"divisor" json:"divisor,omitempty"`
+ Resource *string `tfsdk:"resource" json:"resource,omitempty"`
+ } `tfsdk:"resource_field_ref" json:"resourceFieldRef,omitempty"`
+ SecretKeyRef *struct {
+ Key *string `tfsdk:"key" json:"key,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Optional *bool `tfsdk:"optional" json:"optional,omitempty"`
+ } `tfsdk:"secret_key_ref" json:"secretKeyRef,omitempty"`
+ } `tfsdk:"value_from" json:"valueFrom,omitempty"`
+ } `tfsdk:"env" json:"env,omitempty"`
+ Instances *[]struct {
Annotations *map[string]string `tfsdk:"annotations" json:"annotations,omitempty"`
Env *[]struct {
Name *string `tfsdk:"name" json:"name,omitempty"`
@@ -578,8 +604,9 @@ type AppsKubeblocksIoComponentV1Alpha1ManifestData struct {
} `tfsdk:"vsphere_volume" json:"vsphereVolume,omitempty"`
} `tfsdk:"volumes" json:"volumes,omitempty"`
} `tfsdk:"instances" json:"instances,omitempty"`
- OfflineInstances *[]string `tfsdk:"offline_instances" json:"offlineInstances,omitempty"`
- Replicas *int64 `tfsdk:"replicas" json:"replicas,omitempty"`
+ Labels *map[string]string `tfsdk:"labels" json:"labels,omitempty"`
+ OfflineInstances *[]string `tfsdk:"offline_instances" json:"offlineInstances,omitempty"`
+ Replicas *int64 `tfsdk:"replicas" json:"replicas,omitempty"`
Resources *struct {
Claims *[]struct {
Name *string `tfsdk:"name" json:"name,omitempty"`
@@ -848,6 +875,303 @@ type AppsKubeblocksIoComponentV1Alpha1ManifestData struct {
VolumeMode *string `tfsdk:"volume_mode" json:"volumeMode,omitempty"`
} `tfsdk:"spec" json:"spec,omitempty"`
} `tfsdk:"volume_claim_templates" json:"volumeClaimTemplates,omitempty"`
+ Volumes *[]struct {
+ AwsElasticBlockStore *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ Partition *int64 `tfsdk:"partition" json:"partition,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ VolumeID *string `tfsdk:"volume_id" json:"volumeID,omitempty"`
+ } `tfsdk:"aws_elastic_block_store" json:"awsElasticBlockStore,omitempty"`
+ AzureDisk *struct {
+ CachingMode *string `tfsdk:"caching_mode" json:"cachingMode,omitempty"`
+ DiskName *string `tfsdk:"disk_name" json:"diskName,omitempty"`
+ DiskURI *string `tfsdk:"disk_uri" json:"diskURI,omitempty"`
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ Kind *string `tfsdk:"kind" json:"kind,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ } `tfsdk:"azure_disk" json:"azureDisk,omitempty"`
+ AzureFile *struct {
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretName *string `tfsdk:"secret_name" json:"secretName,omitempty"`
+ ShareName *string `tfsdk:"share_name" json:"shareName,omitempty"`
+ } `tfsdk:"azure_file" json:"azureFile,omitempty"`
+ Cephfs *struct {
+ Monitors *[]string `tfsdk:"monitors" json:"monitors,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretFile *string `tfsdk:"secret_file" json:"secretFile,omitempty"`
+ SecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"secret_ref" json:"secretRef,omitempty"`
+ User *string `tfsdk:"user" json:"user,omitempty"`
+ } `tfsdk:"cephfs" json:"cephfs,omitempty"`
+ Cinder *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"secret_ref" json:"secretRef,omitempty"`
+ VolumeID *string `tfsdk:"volume_id" json:"volumeID,omitempty"`
+ } `tfsdk:"cinder" json:"cinder,omitempty"`
+ ConfigMap *struct {
+ DefaultMode *int64 `tfsdk:"default_mode" json:"defaultMode,omitempty"`
+ Items *[]struct {
+ Key *string `tfsdk:"key" json:"key,omitempty"`
+ Mode *int64 `tfsdk:"mode" json:"mode,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ } `tfsdk:"items" json:"items,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Optional *bool `tfsdk:"optional" json:"optional,omitempty"`
+ } `tfsdk:"config_map" json:"configMap,omitempty"`
+ Csi *struct {
+ Driver *string `tfsdk:"driver" json:"driver,omitempty"`
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ NodePublishSecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"node_publish_secret_ref" json:"nodePublishSecretRef,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ VolumeAttributes *map[string]string `tfsdk:"volume_attributes" json:"volumeAttributes,omitempty"`
+ } `tfsdk:"csi" json:"csi,omitempty"`
+ DownwardAPI *struct {
+ DefaultMode *int64 `tfsdk:"default_mode" json:"defaultMode,omitempty"`
+ Items *[]struct {
+ FieldRef *struct {
+ ApiVersion *string `tfsdk:"api_version" json:"apiVersion,omitempty"`
+ FieldPath *string `tfsdk:"field_path" json:"fieldPath,omitempty"`
+ } `tfsdk:"field_ref" json:"fieldRef,omitempty"`
+ Mode *int64 `tfsdk:"mode" json:"mode,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ ResourceFieldRef *struct {
+ ContainerName *string `tfsdk:"container_name" json:"containerName,omitempty"`
+ Divisor *string `tfsdk:"divisor" json:"divisor,omitempty"`
+ Resource *string `tfsdk:"resource" json:"resource,omitempty"`
+ } `tfsdk:"resource_field_ref" json:"resourceFieldRef,omitempty"`
+ } `tfsdk:"items" json:"items,omitempty"`
+ } `tfsdk:"downward_api" json:"downwardAPI,omitempty"`
+ EmptyDir *struct {
+ Medium *string `tfsdk:"medium" json:"medium,omitempty"`
+ SizeLimit *string `tfsdk:"size_limit" json:"sizeLimit,omitempty"`
+ } `tfsdk:"empty_dir" json:"emptyDir,omitempty"`
+ Ephemeral *struct {
+ VolumeClaimTemplate *struct {
+ Metadata *struct {
+ Annotations *map[string]string `tfsdk:"annotations" json:"annotations,omitempty"`
+ Finalizers *[]string `tfsdk:"finalizers" json:"finalizers,omitempty"`
+ Labels *map[string]string `tfsdk:"labels" json:"labels,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Namespace *string `tfsdk:"namespace" json:"namespace,omitempty"`
+ } `tfsdk:"metadata" json:"metadata,omitempty"`
+ Spec *struct {
+ AccessModes *[]string `tfsdk:"access_modes" json:"accessModes,omitempty"`
+ DataSource *struct {
+ ApiGroup *string `tfsdk:"api_group" json:"apiGroup,omitempty"`
+ Kind *string `tfsdk:"kind" json:"kind,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"data_source" json:"dataSource,omitempty"`
+ DataSourceRef *struct {
+ ApiGroup *string `tfsdk:"api_group" json:"apiGroup,omitempty"`
+ Kind *string `tfsdk:"kind" json:"kind,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Namespace *string `tfsdk:"namespace" json:"namespace,omitempty"`
+ } `tfsdk:"data_source_ref" json:"dataSourceRef,omitempty"`
+ Resources *struct {
+ Claims *[]struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"claims" json:"claims,omitempty"`
+ Limits *map[string]string `tfsdk:"limits" json:"limits,omitempty"`
+ Requests *map[string]string `tfsdk:"requests" json:"requests,omitempty"`
+ } `tfsdk:"resources" json:"resources,omitempty"`
+ Selector *struct {
+ MatchExpressions *[]struct {
+ Key *string `tfsdk:"key" json:"key,omitempty"`
+ Operator *string `tfsdk:"operator" json:"operator,omitempty"`
+ Values *[]string `tfsdk:"values" json:"values,omitempty"`
+ } `tfsdk:"match_expressions" json:"matchExpressions,omitempty"`
+ MatchLabels *map[string]string `tfsdk:"match_labels" json:"matchLabels,omitempty"`
+ } `tfsdk:"selector" json:"selector,omitempty"`
+ StorageClassName *string `tfsdk:"storage_class_name" json:"storageClassName,omitempty"`
+ VolumeMode *string `tfsdk:"volume_mode" json:"volumeMode,omitempty"`
+ VolumeName *string `tfsdk:"volume_name" json:"volumeName,omitempty"`
+ } `tfsdk:"spec" json:"spec,omitempty"`
+ } `tfsdk:"volume_claim_template" json:"volumeClaimTemplate,omitempty"`
+ } `tfsdk:"ephemeral" json:"ephemeral,omitempty"`
+ Fc *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ Lun *int64 `tfsdk:"lun" json:"lun,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ TargetWWNs *[]string `tfsdk:"target_ww_ns" json:"targetWWNs,omitempty"`
+ Wwids *[]string `tfsdk:"wwids" json:"wwids,omitempty"`
+ } `tfsdk:"fc" json:"fc,omitempty"`
+ FlexVolume *struct {
+ Driver *string `tfsdk:"driver" json:"driver,omitempty"`
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ Options *map[string]string `tfsdk:"options" json:"options,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"secret_ref" json:"secretRef,omitempty"`
+ } `tfsdk:"flex_volume" json:"flexVolume,omitempty"`
+ Flocker *struct {
+ DatasetName *string `tfsdk:"dataset_name" json:"datasetName,omitempty"`
+ DatasetUUID *string `tfsdk:"dataset_uuid" json:"datasetUUID,omitempty"`
+ } `tfsdk:"flocker" json:"flocker,omitempty"`
+ GcePersistentDisk *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ Partition *int64 `tfsdk:"partition" json:"partition,omitempty"`
+ PdName *string `tfsdk:"pd_name" json:"pdName,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ } `tfsdk:"gce_persistent_disk" json:"gcePersistentDisk,omitempty"`
+ GitRepo *struct {
+ Directory *string `tfsdk:"directory" json:"directory,omitempty"`
+ Repository *string `tfsdk:"repository" json:"repository,omitempty"`
+ Revision *string `tfsdk:"revision" json:"revision,omitempty"`
+ } `tfsdk:"git_repo" json:"gitRepo,omitempty"`
+ Glusterfs *struct {
+ Endpoints *string `tfsdk:"endpoints" json:"endpoints,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ } `tfsdk:"glusterfs" json:"glusterfs,omitempty"`
+ HostPath *struct {
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ Type *string `tfsdk:"type" json:"type,omitempty"`
+ } `tfsdk:"host_path" json:"hostPath,omitempty"`
+ Iscsi *struct {
+ ChapAuthDiscovery *bool `tfsdk:"chap_auth_discovery" json:"chapAuthDiscovery,omitempty"`
+ ChapAuthSession *bool `tfsdk:"chap_auth_session" json:"chapAuthSession,omitempty"`
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ InitiatorName *string `tfsdk:"initiator_name" json:"initiatorName,omitempty"`
+ Iqn *string `tfsdk:"iqn" json:"iqn,omitempty"`
+ IscsiInterface *string `tfsdk:"iscsi_interface" json:"iscsiInterface,omitempty"`
+ Lun *int64 `tfsdk:"lun" json:"lun,omitempty"`
+ Portals *[]string `tfsdk:"portals" json:"portals,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"secret_ref" json:"secretRef,omitempty"`
+ TargetPortal *string `tfsdk:"target_portal" json:"targetPortal,omitempty"`
+ } `tfsdk:"iscsi" json:"iscsi,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Nfs *struct {
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ Server *string `tfsdk:"server" json:"server,omitempty"`
+ } `tfsdk:"nfs" json:"nfs,omitempty"`
+ PersistentVolumeClaim *struct {
+ ClaimName *string `tfsdk:"claim_name" json:"claimName,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ } `tfsdk:"persistent_volume_claim" json:"persistentVolumeClaim,omitempty"`
+ PhotonPersistentDisk *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ PdID *string `tfsdk:"pd_id" json:"pdID,omitempty"`
+ } `tfsdk:"photon_persistent_disk" json:"photonPersistentDisk,omitempty"`
+ PortworxVolume *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ VolumeID *string `tfsdk:"volume_id" json:"volumeID,omitempty"`
+ } `tfsdk:"portworx_volume" json:"portworxVolume,omitempty"`
+ Projected *struct {
+ DefaultMode *int64 `tfsdk:"default_mode" json:"defaultMode,omitempty"`
+ Sources *[]struct {
+ ConfigMap *struct {
+ Items *[]struct {
+ Key *string `tfsdk:"key" json:"key,omitempty"`
+ Mode *int64 `tfsdk:"mode" json:"mode,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ } `tfsdk:"items" json:"items,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Optional *bool `tfsdk:"optional" json:"optional,omitempty"`
+ } `tfsdk:"config_map" json:"configMap,omitempty"`
+ DownwardAPI *struct {
+ Items *[]struct {
+ FieldRef *struct {
+ ApiVersion *string `tfsdk:"api_version" json:"apiVersion,omitempty"`
+ FieldPath *string `tfsdk:"field_path" json:"fieldPath,omitempty"`
+ } `tfsdk:"field_ref" json:"fieldRef,omitempty"`
+ Mode *int64 `tfsdk:"mode" json:"mode,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ ResourceFieldRef *struct {
+ ContainerName *string `tfsdk:"container_name" json:"containerName,omitempty"`
+ Divisor *string `tfsdk:"divisor" json:"divisor,omitempty"`
+ Resource *string `tfsdk:"resource" json:"resource,omitempty"`
+ } `tfsdk:"resource_field_ref" json:"resourceFieldRef,omitempty"`
+ } `tfsdk:"items" json:"items,omitempty"`
+ } `tfsdk:"downward_api" json:"downwardAPI,omitempty"`
+ Secret *struct {
+ Items *[]struct {
+ Key *string `tfsdk:"key" json:"key,omitempty"`
+ Mode *int64 `tfsdk:"mode" json:"mode,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ } `tfsdk:"items" json:"items,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Optional *bool `tfsdk:"optional" json:"optional,omitempty"`
+ } `tfsdk:"secret" json:"secret,omitempty"`
+ ServiceAccountToken *struct {
+ Audience *string `tfsdk:"audience" json:"audience,omitempty"`
+ ExpirationSeconds *int64 `tfsdk:"expiration_seconds" json:"expirationSeconds,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ } `tfsdk:"service_account_token" json:"serviceAccountToken,omitempty"`
+ } `tfsdk:"sources" json:"sources,omitempty"`
+ } `tfsdk:"projected" json:"projected,omitempty"`
+ Quobyte *struct {
+ Group *string `tfsdk:"group" json:"group,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ Registry *string `tfsdk:"registry" json:"registry,omitempty"`
+ Tenant *string `tfsdk:"tenant" json:"tenant,omitempty"`
+ User *string `tfsdk:"user" json:"user,omitempty"`
+ Volume *string `tfsdk:"volume" json:"volume,omitempty"`
+ } `tfsdk:"quobyte" json:"quobyte,omitempty"`
+ Rbd *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ Image *string `tfsdk:"image" json:"image,omitempty"`
+ Keyring *string `tfsdk:"keyring" json:"keyring,omitempty"`
+ Monitors *[]string `tfsdk:"monitors" json:"monitors,omitempty"`
+ Pool *string `tfsdk:"pool" json:"pool,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"secret_ref" json:"secretRef,omitempty"`
+ User *string `tfsdk:"user" json:"user,omitempty"`
+ } `tfsdk:"rbd" json:"rbd,omitempty"`
+ ScaleIO *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ Gateway *string `tfsdk:"gateway" json:"gateway,omitempty"`
+ ProtectionDomain *string `tfsdk:"protection_domain" json:"protectionDomain,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"secret_ref" json:"secretRef,omitempty"`
+ SslEnabled *bool `tfsdk:"ssl_enabled" json:"sslEnabled,omitempty"`
+ StorageMode *string `tfsdk:"storage_mode" json:"storageMode,omitempty"`
+ StoragePool *string `tfsdk:"storage_pool" json:"storagePool,omitempty"`
+ System *string `tfsdk:"system" json:"system,omitempty"`
+ VolumeName *string `tfsdk:"volume_name" json:"volumeName,omitempty"`
+ } `tfsdk:"scale_io" json:"scaleIO,omitempty"`
+ Secret *struct {
+ DefaultMode *int64 `tfsdk:"default_mode" json:"defaultMode,omitempty"`
+ Items *[]struct {
+ Key *string `tfsdk:"key" json:"key,omitempty"`
+ Mode *int64 `tfsdk:"mode" json:"mode,omitempty"`
+ Path *string `tfsdk:"path" json:"path,omitempty"`
+ } `tfsdk:"items" json:"items,omitempty"`
+ Optional *bool `tfsdk:"optional" json:"optional,omitempty"`
+ SecretName *string `tfsdk:"secret_name" json:"secretName,omitempty"`
+ } `tfsdk:"secret" json:"secret,omitempty"`
+ Storageos *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ ReadOnly *bool `tfsdk:"read_only" json:"readOnly,omitempty"`
+ SecretRef *struct {
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ } `tfsdk:"secret_ref" json:"secretRef,omitempty"`
+ VolumeName *string `tfsdk:"volume_name" json:"volumeName,omitempty"`
+ VolumeNamespace *string `tfsdk:"volume_namespace" json:"volumeNamespace,omitempty"`
+ } `tfsdk:"storageos" json:"storageos,omitempty"`
+ VsphereVolume *struct {
+ FsType *string `tfsdk:"fs_type" json:"fsType,omitempty"`
+ StoragePolicyID *string `tfsdk:"storage_policy_id" json:"storagePolicyID,omitempty"`
+ StoragePolicyName *string `tfsdk:"storage_policy_name" json:"storagePolicyName,omitempty"`
+ VolumePath *string `tfsdk:"volume_path" json:"volumePath,omitempty"`
+ } `tfsdk:"vsphere_volume" json:"vsphereVolume,omitempty"`
+ } `tfsdk:"volumes" json:"volumes,omitempty"`
} `tfsdk:"spec" json:"spec,omitempty"`
}
@@ -977,6 +1301,15 @@ func (r *AppsKubeblocksIoComponentV1Alpha1Manifest) Schema(_ context.Context, _
Computed: false,
},
+ "annotations": schema.MapAttribute{
+ Description: "Specifies Annotations to override or add for underlying Pods.",
+ MarkdownDescription: "Specifies Annotations to override or add for underlying Pods.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
"comp_def": schema.StringAttribute{
Description: "Specifies the name of the referenced ComponentDefinition.",
MarkdownDescription: "Specifies the name of the referenced ComponentDefinition.",
@@ -989,8 +1322,8 @@ func (r *AppsKubeblocksIoComponentV1Alpha1Manifest) Schema(_ context.Context, _
},
"configs": schema.ListNestedAttribute{
- Description: "",
- MarkdownDescription: "",
+ Description: "Specifies the configuration content of a config template.",
+ MarkdownDescription: "Specifies the configuration content of a config template.",
NestedObject: schema.NestedAttributeObject{
Attributes: map[string]schema.Attribute{
"config_map": schema.SingleNestedAttribute{
@@ -1092,6 +1425,166 @@ func (r *AppsKubeblocksIoComponentV1Alpha1Manifest) Schema(_ context.Context, _
Computed: false,
},
+ "env": schema.ListNestedAttribute{
+ Description: "List of environment variables to add.",
+ MarkdownDescription: "List of environment variables to add.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the environment variable. Must be a C_IDENTIFIER.",
+ MarkdownDescription: "Name of the environment variable. Must be a C_IDENTIFIER.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "value": schema.StringAttribute{
+ Description: "Variable references $(VAR_NAME) are expandedusing the previously defined environment variables in the container andany service environment variables. If a variable cannot be resolved,the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.'$$(VAR_NAME)' will produce the string literal '$(VAR_NAME)'.Escaped references will never be expanded, regardless of whether the variableexists or not.Defaults to ''.",
+ MarkdownDescription: "Variable references $(VAR_NAME) are expandedusing the previously defined environment variables in the container andany service environment variables. If a variable cannot be resolved,the reference in the input string will be unchanged. Double $$ are reducedto a single $, which allows for escaping the $(VAR_NAME) syntax: i.e.'$$(VAR_NAME)' will produce the string literal '$(VAR_NAME)'.Escaped references will never be expanded, regardless of whether the variableexists or not.Defaults to ''.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "value_from": schema.SingleNestedAttribute{
+ Description: "Source for the environment variable's value. Cannot be used if value is not empty.",
+ MarkdownDescription: "Source for the environment variable's value. Cannot be used if value is not empty.",
+ Attributes: map[string]schema.Attribute{
+ "config_map_key_ref": schema.SingleNestedAttribute{
+ Description: "Selects a key of a ConfigMap.",
+ MarkdownDescription: "Selects a key of a ConfigMap.",
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The key to select.",
+ MarkdownDescription: "The key to select.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "optional": schema.BoolAttribute{
+ Description: "Specify whether the ConfigMap or its key must be defined",
+ MarkdownDescription: "Specify whether the ConfigMap or its key must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "field_ref": schema.SingleNestedAttribute{
+ Description: "Selects a field of the pod: supports metadata.name, metadata.namespace, 'metadata.labels['']', 'metadata.annotations['']',spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.",
+ MarkdownDescription: "Selects a field of the pod: supports metadata.name, metadata.namespace, 'metadata.labels['']', 'metadata.annotations['']',spec.nodeName, spec.serviceAccountName, status.hostIP, status.podIP, status.podIPs.",
+ Attributes: map[string]schema.Attribute{
+ "api_version": schema.StringAttribute{
+ Description: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ MarkdownDescription: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "field_path": schema.StringAttribute{
+ Description: "Path of the field to select in the specified API version.",
+ MarkdownDescription: "Path of the field to select in the specified API version.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "resource_field_ref": schema.SingleNestedAttribute{
+ Description: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.",
+ MarkdownDescription: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, limits.ephemeral-storage, requests.cpu, requests.memory and requests.ephemeral-storage) are currently supported.",
+ Attributes: map[string]schema.Attribute{
+ "container_name": schema.StringAttribute{
+ Description: "Container name: required for volumes, optional for env vars",
+ MarkdownDescription: "Container name: required for volumes, optional for env vars",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "divisor": schema.StringAttribute{
+ Description: "Specifies the output format of the exposed resources, defaults to '1'",
+ MarkdownDescription: "Specifies the output format of the exposed resources, defaults to '1'",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "resource": schema.StringAttribute{
+ Description: "Required: resource to select",
+ MarkdownDescription: "Required: resource to select",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_key_ref": schema.SingleNestedAttribute{
+ Description: "Selects a key of a secret in the pod's namespace",
+ MarkdownDescription: "Selects a key of a secret in the pod's namespace",
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "The key of the secret to select from. Must be a valid secret key.",
+ MarkdownDescription: "The key of the secret to select from. Must be a valid secret key.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "optional": schema.BoolAttribute{
+ Description: "Specify whether the Secret or its key must be defined",
+ MarkdownDescription: "Specify whether the Secret or its key must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
"instances": schema.ListNestedAttribute{
Description: "Allows for the customization of configuration values for each instance within a Component.An Instance represent a single replica (Pod and associated K8s resources like PVCs, Services, and ConfigMaps).While instances typically share a common configuration as defined in the ClusterComponentSpec,they can require unique settings in various scenarios:For example:- A database Component might require different resource allocations for primary and secondary instances, with primaries needing more resources.- During a rolling upgrade, a Component may first update the image for one or a few instances, and then update the remaining instances after verifying that the updated instances are functioning correctly.InstanceTemplate allows for specifying these unique configurations per instance.Each instance's name is constructed using the pattern: $(component.name)-$(template.name)-$(ordinal),starting with an ordinal of 0.It is crucial to maintain unique names for each InstanceTemplate to avoid conflicts.The sum of replicas across all InstanceTemplates should not exceed the total number of Replicas specified for the Component.Any remaining replicas will be generated using the default template and will follow the default naming rules.",
MarkdownDescription: "Allows for the customization of configuration values for each instance within a Component.An Instance represent a single replica (Pod and associated K8s resources like PVCs, Services, and ConfigMaps).While instances typically share a common configuration as defined in the ClusterComponentSpec,they can require unique settings in various scenarios:For example:- A database Component might require different resource allocations for primary and secondary instances, with primaries needing more resources.- During a rolling upgrade, a Component may first update the image for one or a few instances, and then update the remaining instances after verifying that the updated instances are functioning correctly.InstanceTemplate allows for specifying these unique configurations per instance.Each instance's name is constructed using the pattern: $(component.name)-$(template.name)-$(ordinal),starting with an ordinal of 0.It is crucial to maintain unique names for each InstanceTemplate to avoid conflicts.The sum of replicas across all InstanceTemplates should not exceed the total number of Replicas specified for the Component.Any remaining replicas will be generated using the default template and will follow the default naming rules.",
@@ -4506,6 +4999,15 @@ func (r *AppsKubeblocksIoComponentV1Alpha1Manifest) Schema(_ context.Context, _
Computed: false,
},
+ "labels": schema.MapAttribute{
+ Description: "Specifies Labels to override or add for underlying Pods.",
+ MarkdownDescription: "Specifies Labels to override or add for underlying Pods.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
"offline_instances": schema.ListAttribute{
Description: "Specifies the names of instances to be transitioned to offline status.Marking an instance as offline results in the following:1. The associated Pod is stopped, and its PersistentVolumeClaim (PVC) is retained for potential future reuse or data recovery, but it is no longer actively used.2. The ordinal number assigned to this instance is preserved, ensuring it remains unique and avoiding conflicts with new instances.Setting instances to offline allows for a controlled scale-in process, preserving their data and maintainingordinal consistency within the Cluster.Note that offline instances and their associated resources, such as PVCs, are not automatically deleted.The administrator must manually manage the cleanup and removal of these resources when they are no longer needed.",
MarkdownDescription: "Specifies the names of instances to be transitioned to offline status.Marking an instance as offline results in the following:1. The associated Pod is stopped, and its PersistentVolumeClaim (PVC) is retained for potential future reuse or data recovery, but it is no longer actively used.2. The ordinal number assigned to this instance is preserved, ensuring it remains unique and avoiding conflicts with new instances.Setting instances to offline allows for a controlled scale-in process, preserving their data and maintainingordinal consistency within the Cluster.Note that offline instances and their associated resources, such as PVCs, are not automatically deleted.The administrator must manually manage the cleanup and removal of these resources when they are no longer needed.",
@@ -6364,6 +6866,1983 @@ func (r *AppsKubeblocksIoComponentV1Alpha1Manifest) Schema(_ context.Context, _
Optional: true,
Computed: false,
},
+
+ "volumes": schema.ListNestedAttribute{
+ Description: "List of volumes to override.",
+ MarkdownDescription: "List of volumes to override.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "aws_elastic_block_store": schema.SingleNestedAttribute{
+ Description: "awsElasticBlockStore represents an AWS Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ MarkdownDescription: "awsElasticBlockStore represents an AWS Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstoreTODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstoreTODO: how do we prevent errors in the filesystem from compromising the machine",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "partition": schema.Int64Attribute{
+ Description: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).",
+ MarkdownDescription: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly value true will force the readOnly setting in VolumeMounts.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ MarkdownDescription: "readOnly value true will force the readOnly setting in VolumeMounts.More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_id": schema.StringAttribute{
+ Description: "volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ MarkdownDescription: "volumeID is unique ID of the persistent disk resource in AWS (Amazon EBS volume).More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "azure_disk": schema.SingleNestedAttribute{
+ Description: "azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.",
+ MarkdownDescription: "azureDisk represents an Azure Data Disk mount on the host and bind mount to the pod.",
+ Attributes: map[string]schema.Attribute{
+ "caching_mode": schema.StringAttribute{
+ Description: "cachingMode is the Host Caching mode: None, Read Only, Read Write.",
+ MarkdownDescription: "cachingMode is the Host Caching mode: None, Read Only, Read Write.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "disk_name": schema.StringAttribute{
+ Description: "diskName is the Name of the data disk in the blob storage",
+ MarkdownDescription: "diskName is the Name of the data disk in the blob storage",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "disk_uri": schema.StringAttribute{
+ Description: "diskURI is the URI of data disk in the blob storage",
+ MarkdownDescription: "diskURI is the URI of data disk in the blob storage",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is Filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fsType is Filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "kind": schema.StringAttribute{
+ Description: "kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared",
+ MarkdownDescription: "kind expected values are Shared: multiple blob disks per storage account Dedicated: single blob disk per storage account Managed: azure managed data disk (only in managed availability set). defaults to shared",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "azure_file": schema.SingleNestedAttribute{
+ Description: "azureFile represents an Azure File Service mount on the host and bind mount to the pod.",
+ MarkdownDescription: "azureFile represents an Azure File Service mount on the host and bind mount to the pod.",
+ Attributes: map[string]schema.Attribute{
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_name": schema.StringAttribute{
+ Description: "secretName is the name of secret that contains Azure Storage Account Name and Key",
+ MarkdownDescription: "secretName is the name of secret that contains Azure Storage Account Name and Key",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "share_name": schema.StringAttribute{
+ Description: "shareName is the azure share Name",
+ MarkdownDescription: "shareName is the azure share Name",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "cephfs": schema.SingleNestedAttribute{
+ Description: "cephFS represents a Ceph FS mount on the host that shares a pod's lifetime",
+ MarkdownDescription: "cephFS represents a Ceph FS mount on the host that shares a pod's lifetime",
+ Attributes: map[string]schema.Attribute{
+ "monitors": schema.ListAttribute{
+ Description: "monitors is Required: Monitors is a collection of Ceph monitorsMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "monitors is Required: Monitors is a collection of Ceph monitorsMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ ElementType: types.StringType,
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /",
+ MarkdownDescription: "path is Optional: Used as the mounted root, rather than the full Ceph tree, default is /",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_file": schema.StringAttribute{
+ Description: "secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secretMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "secretFile is Optional: SecretFile is the path to key ring for User, default is /etc/ceph/user.secretMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "secretRef is Optional: SecretRef is reference to the authentication secret for User, default is empty.More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "user": schema.StringAttribute{
+ Description: "user is optional: User is the rados user name, default is adminMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ MarkdownDescription: "user is optional: User is the rados user name, default is adminMore info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "cinder": schema.SingleNestedAttribute{
+ Description: "cinder represents a cinder volume attached and mounted on kubelets host machine.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ MarkdownDescription: "cinder represents a cinder volume attached and mounted on kubelets host machine.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is optional: points to a secret object containing parameters used to connectto OpenStack.",
+ MarkdownDescription: "secretRef is optional: points to a secret object containing parameters used to connectto OpenStack.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_id": schema.StringAttribute{
+ Description: "volumeID used to identify the volume in cinder.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ MarkdownDescription: "volumeID used to identify the volume in cinder.More info: https://examples.k8s.io/mysql-cinder-pd/README.md",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "config_map": schema.SingleNestedAttribute{
+ Description: "configMap represents a configMap that should populate this volume",
+ MarkdownDescription: "configMap represents a configMap that should populate this volume",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "defaultMode is optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "items": schema.ListNestedAttribute{
+ Description: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "optional": schema.BoolAttribute{
+ Description: "optional specify whether the ConfigMap or its keys must be defined",
+ MarkdownDescription: "optional specify whether the ConfigMap or its keys must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "csi": schema.SingleNestedAttribute{
+ Description: "csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).",
+ MarkdownDescription: "csi (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers (Beta feature).",
+ Attributes: map[string]schema.Attribute{
+ "driver": schema.StringAttribute{
+ Description: "driver is the name of the CSI driver that handles this volume.Consult with your admin for the correct name as registered in the cluster.",
+ MarkdownDescription: "driver is the name of the CSI driver that handles this volume.Consult with your admin for the correct name as registered in the cluster.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "fs_type": schema.StringAttribute{
+ Description: "fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'.If not provided, the empty value is passed to the associated CSI driverwhich will determine the default filesystem to apply.",
+ MarkdownDescription: "fsType to mount. Ex. 'ext4', 'xfs', 'ntfs'.If not provided, the empty value is passed to the associated CSI driverwhich will determine the default filesystem to apply.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "node_publish_secret_ref": schema.SingleNestedAttribute{
+ Description: "nodePublishSecretRef is a reference to the secret object containingsensitive information to pass to the CSI driver to complete the CSINodePublishVolume and NodeUnpublishVolume calls.This field is optional, and may be empty if no secret is required. If thesecret object contains more than one secret, all secret references are passed.",
+ MarkdownDescription: "nodePublishSecretRef is a reference to the secret object containingsensitive information to pass to the CSI driver to complete the CSINodePublishVolume and NodeUnpublishVolume calls.This field is optional, and may be empty if no secret is required. If thesecret object contains more than one secret, all secret references are passed.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly specifies a read-only configuration for the volume.Defaults to false (read/write).",
+ MarkdownDescription: "readOnly specifies a read-only configuration for the volume.Defaults to false (read/write).",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_attributes": schema.MapAttribute{
+ Description: "volumeAttributes stores driver-specific properties that are passed to the CSIdriver. Consult your driver's documentation for supported values.",
+ MarkdownDescription: "volumeAttributes stores driver-specific properties that are passed to the CSIdriver. Consult your driver's documentation for supported values.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "downward_api": schema.SingleNestedAttribute{
+ Description: "downwardAPI represents downward API about the pod that should populate this volume",
+ MarkdownDescription: "downwardAPI represents downward API about the pod that should populate this volume",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "Optional: mode bits to use on created files by default. Must be aOptional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "Optional: mode bits to use on created files by default. Must be aOptional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "items": schema.ListNestedAttribute{
+ Description: "Items is a list of downward API volume file",
+ MarkdownDescription: "Items is a list of downward API volume file",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "field_ref": schema.SingleNestedAttribute{
+ Description: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
+ MarkdownDescription: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
+ Attributes: map[string]schema.Attribute{
+ "api_version": schema.StringAttribute{
+ Description: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ MarkdownDescription: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "field_path": schema.StringAttribute{
+ Description: "Path of the field to select in the specified API version.",
+ MarkdownDescription: "Path of the field to select in the specified API version.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "mode": schema.Int64Attribute{
+ Description: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
+ MarkdownDescription: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "resource_field_ref": schema.SingleNestedAttribute{
+ Description: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
+ MarkdownDescription: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
+ Attributes: map[string]schema.Attribute{
+ "container_name": schema.StringAttribute{
+ Description: "Container name: required for volumes, optional for env vars",
+ MarkdownDescription: "Container name: required for volumes, optional for env vars",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "divisor": schema.StringAttribute{
+ Description: "Specifies the output format of the exposed resources, defaults to '1'",
+ MarkdownDescription: "Specifies the output format of the exposed resources, defaults to '1'",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "resource": schema.StringAttribute{
+ Description: "Required: resource to select",
+ MarkdownDescription: "Required: resource to select",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "empty_dir": schema.SingleNestedAttribute{
+ Description: "emptyDir represents a temporary directory that shares a pod's lifetime.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ MarkdownDescription: "emptyDir represents a temporary directory that shares a pod's lifetime.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ Attributes: map[string]schema.Attribute{
+ "medium": schema.StringAttribute{
+ Description: "medium represents what type of storage medium should back this directory.The default is '' which means to use the node's default medium.Must be an empty string (default) or Memory.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ MarkdownDescription: "medium represents what type of storage medium should back this directory.The default is '' which means to use the node's default medium.Must be an empty string (default) or Memory.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "size_limit": schema.StringAttribute{
+ Description: "sizeLimit is the total amount of local storage required for this EmptyDir volume.The size limit is also applicable for memory medium.The maximum usage on memory medium EmptyDir would be the minimum value betweenthe SizeLimit specified here and the sum of memory limits of all containers in a pod.The default is nil which means that the limit is undefined.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ MarkdownDescription: "sizeLimit is the total amount of local storage required for this EmptyDir volume.The size limit is also applicable for memory medium.The maximum usage on memory medium EmptyDir would be the minimum value betweenthe SizeLimit specified here and the sum of memory limits of all containers in a pod.The default is nil which means that the limit is undefined.More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "ephemeral": schema.SingleNestedAttribute{
+ Description: "ephemeral represents a volume that is handled by a cluster storage driver.The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,and deleted when the pod is removed.Use this if:a) the volume is only needed while the pod runs,b) features of normal volumes like restoring from snapshot or capacity tracking are needed,c) the storage driver is specified through a storage class, andd) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim).Use PersistentVolumeClaim or one of the vendor-specificAPIs for volumes that persist for longer than the lifecycleof an individual pod.Use CSI for light-weight local ephemeral volumes if the CSI driver is meant tobe used that way - see the documentation of the driver formore information.A pod can use both types of ephemeral volumes andpersistent volumes at the same time.",
+ MarkdownDescription: "ephemeral represents a volume that is handled by a cluster storage driver.The volume's lifecycle is tied to the pod that defines it - it will be created before the pod starts,and deleted when the pod is removed.Use this if:a) the volume is only needed while the pod runs,b) features of normal volumes like restoring from snapshot or capacity tracking are needed,c) the storage driver is specified through a storage class, andd) the storage driver supports dynamic volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource for more information on the connection between this volume type and PersistentVolumeClaim).Use PersistentVolumeClaim or one of the vendor-specificAPIs for volumes that persist for longer than the lifecycleof an individual pod.Use CSI for light-weight local ephemeral volumes if the CSI driver is meant tobe used that way - see the documentation of the driver formore information.A pod can use both types of ephemeral volumes andpersistent volumes at the same time.",
+ Attributes: map[string]schema.Attribute{
+ "volume_claim_template": schema.SingleNestedAttribute{
+ Description: "Will be used to create a stand-alone PVC to provision the volume.The pod in which this EphemeralVolumeSource is embedded will be theowner of the PVC, i.e. the PVC will be deleted together with thepod. The name of the PVC will be '-' where'' is the name from the 'PodSpec.Volumes' arrayentry. Pod validation will reject the pod if the concatenated nameis not valid for a PVC (for example, too long).An existing PVC with that name that is not owned by the podwill *not* be used for the pod to avoid using an unrelatedvolume by mistake. Starting the pod is then blocked untilthe unrelated PVC is removed. If such a pre-created PVC ismeant to be used by the pod, the PVC has to updated with anowner reference to the pod once the pod exists. Normallythis should not be necessary, but it may be useful whenmanually reconstructing a broken cluster.This field is read-only and no changes will be made by Kubernetesto the PVC after it has been created.Required, must not be nil.",
+ MarkdownDescription: "Will be used to create a stand-alone PVC to provision the volume.The pod in which this EphemeralVolumeSource is embedded will be theowner of the PVC, i.e. the PVC will be deleted together with thepod. The name of the PVC will be '-' where'' is the name from the 'PodSpec.Volumes' arrayentry. Pod validation will reject the pod if the concatenated nameis not valid for a PVC (for example, too long).An existing PVC with that name that is not owned by the podwill *not* be used for the pod to avoid using an unrelatedvolume by mistake. Starting the pod is then blocked untilthe unrelated PVC is removed. If such a pre-created PVC ismeant to be used by the pod, the PVC has to updated with anowner reference to the pod once the pod exists. Normallythis should not be necessary, but it may be useful whenmanually reconstructing a broken cluster.This field is read-only and no changes will be made by Kubernetesto the PVC after it has been created.Required, must not be nil.",
+ Attributes: map[string]schema.Attribute{
+ "metadata": schema.SingleNestedAttribute{
+ Description: "May contain labels and annotations that will be copied into the PVCwhen creating it. No other fields are allowed and will be rejected duringvalidation.",
+ MarkdownDescription: "May contain labels and annotations that will be copied into the PVCwhen creating it. No other fields are allowed and will be rejected duringvalidation.",
+ Attributes: map[string]schema.Attribute{
+ "annotations": schema.MapAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "finalizers": schema.ListAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "labels": schema.MapAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "namespace": schema.StringAttribute{
+ Description: "",
+ MarkdownDescription: "",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "spec": schema.SingleNestedAttribute{
+ Description: "The specification for the PersistentVolumeClaim. The entire content iscopied unchanged into the PVC that gets created from thistemplate. The same fields as in a PersistentVolumeClaimare also valid here.",
+ MarkdownDescription: "The specification for the PersistentVolumeClaim. The entire content iscopied unchanged into the PVC that gets created from thistemplate. The same fields as in a PersistentVolumeClaimare also valid here.",
+ Attributes: map[string]schema.Attribute{
+ "access_modes": schema.ListAttribute{
+ Description: "accessModes contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1",
+ MarkdownDescription: "accessModes contains the desired access modes the volume should have.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "data_source": schema.SingleNestedAttribute{
+ Description: "dataSource field can be used to specify either:* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)* An existing PVC (PersistentVolumeClaim)If the provisioner or an external controller can support the specified data source,it will create a new volume based on the contents of the specified data source.When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.If the namespace is specified, then dataSourceRef will not be copied to dataSource.",
+ MarkdownDescription: "dataSource field can be used to specify either:* An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)* An existing PVC (PersistentVolumeClaim)If the provisioner or an external controller can support the specified data source,it will create a new volume based on the contents of the specified data source.When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef,and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified.If the namespace is specified, then dataSourceRef will not be copied to dataSource.",
+ Attributes: map[string]schema.Attribute{
+ "api_group": schema.StringAttribute{
+ Description: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
+ MarkdownDescription: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "kind": schema.StringAttribute{
+ Description: "Kind is the type of resource being referenced",
+ MarkdownDescription: "Kind is the type of resource being referenced",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name is the name of resource being referenced",
+ MarkdownDescription: "Name is the name of resource being referenced",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "data_source_ref": schema.SingleNestedAttribute{
+ Description: "dataSourceRef specifies the object from which to populate the volume with data, if a non-emptyvolume is desired. This may be any object from a non-empty API group (noncore object) or a PersistentVolumeClaim object.When this field is specified, volume binding will only succeed if the type ofthe specified object matches some installed volume populator or dynamicprovisioner.This field will replace the functionality of the dataSource field and as suchif both fields are non-empty, they must have the same value. For backwardscompatibility, when namespace isn't specified in dataSourceRef,both fields (dataSource and dataSourceRef) will be set to the samevalue automatically if one of them is empty and the other is non-empty.When namespace is specified in dataSourceRef,dataSource isn't set to the same value and must be empty.There are three important differences between dataSource and dataSourceRef:* While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects.* While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified.* While dataSource only allows local objects, dataSourceRef allows objects in any namespaces.(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
+ MarkdownDescription: "dataSourceRef specifies the object from which to populate the volume with data, if a non-emptyvolume is desired. This may be any object from a non-empty API group (noncore object) or a PersistentVolumeClaim object.When this field is specified, volume binding will only succeed if the type ofthe specified object matches some installed volume populator or dynamicprovisioner.This field will replace the functionality of the dataSource field and as suchif both fields are non-empty, they must have the same value. For backwardscompatibility, when namespace isn't specified in dataSourceRef,both fields (dataSource and dataSourceRef) will be set to the samevalue automatically if one of them is empty and the other is non-empty.When namespace is specified in dataSourceRef,dataSource isn't set to the same value and must be empty.There are three important differences between dataSource and dataSourceRef:* While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects.* While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified.* While dataSource only allows local objects, dataSourceRef allows objects in any namespaces.(Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.(Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
+ Attributes: map[string]schema.Attribute{
+ "api_group": schema.StringAttribute{
+ Description: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
+ MarkdownDescription: "APIGroup is the group for the resource being referenced.If APIGroup is not specified, the specified Kind must be in the core API group.For any other third-party types, APIGroup is required.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "kind": schema.StringAttribute{
+ Description: "Kind is the type of resource being referenced",
+ MarkdownDescription: "Kind is the type of resource being referenced",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name is the name of resource being referenced",
+ MarkdownDescription: "Name is the name of resource being referenced",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "namespace": schema.StringAttribute{
+ Description: "Namespace is the namespace of resource being referencedNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
+ MarkdownDescription: "Namespace is the namespace of resource being referencedNote that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details.(Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "resources": schema.SingleNestedAttribute{
+ Description: "resources represents the minimum resources the volume should have.If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirementsthat are lower than previous value but must still be higher than capacity recorded in thestatus field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources",
+ MarkdownDescription: "resources represents the minimum resources the volume should have.If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirementsthat are lower than previous value but must still be higher than capacity recorded in thestatus field of the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources",
+ Attributes: map[string]schema.Attribute{
+ "claims": schema.ListNestedAttribute{
+ Description: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ MarkdownDescription: "Claims lists the names of resources, defined in spec.resourceClaims,that are used by this container.This is an alpha field and requires enabling theDynamicResourceAllocation feature gate.This field is immutable. It can only be set for containers.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ MarkdownDescription: "Name must match the name of one entry in pod.spec.resourceClaims ofthe Pod where this field is used. It makes that resource availableinside a container.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "limits": schema.MapAttribute{
+ Description: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Limits describes the maximum amount of compute resources allowed.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "requests": schema.MapAttribute{
+ Description: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ MarkdownDescription: "Requests describes the minimum amount of compute resources required.If Requests is omitted for a container, it defaults to Limits if that is explicitly specified,otherwise to an implementation-defined value. Requests cannot exceed Limits.More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "selector": schema.SingleNestedAttribute{
+ Description: "selector is a label query over volumes to consider for binding.",
+ MarkdownDescription: "selector is a label query over volumes to consider for binding.",
+ Attributes: map[string]schema.Attribute{
+ "match_expressions": schema.ListNestedAttribute{
+ Description: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ MarkdownDescription: "matchExpressions is a list of label selector requirements. The requirements are ANDed.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the label key that the selector applies to.",
+ MarkdownDescription: "key is the label key that the selector applies to.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "operator": schema.StringAttribute{
+ Description: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ MarkdownDescription: "operator represents a key's relationship to a set of values.Valid operators are In, NotIn, Exists and DoesNotExist.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "values": schema.ListAttribute{
+ Description: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ MarkdownDescription: "values is an array of string values. If the operator is In or NotIn,the values array must be non-empty. If the operator is Exists or DoesNotExist,the values array must be empty. This array is replaced during a strategicmerge patch.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "match_labels": schema.MapAttribute{
+ Description: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ MarkdownDescription: "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabelsmap is equivalent to an element of matchExpressions, whose key field is 'key', theoperator is 'In', and the values array contains only 'value'. The requirements are ANDed.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "storage_class_name": schema.StringAttribute{
+ Description: "storageClassName is the name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1",
+ MarkdownDescription: "storageClassName is the name of the StorageClass required by the claim.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_mode": schema.StringAttribute{
+ Description: "volumeMode defines what type of volume is required by the claim.Value of Filesystem is implied when not included in claim spec.",
+ MarkdownDescription: "volumeMode defines what type of volume is required by the claim.Value of Filesystem is implied when not included in claim spec.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_name": schema.StringAttribute{
+ Description: "volumeName is the binding reference to the PersistentVolume backing this claim.",
+ MarkdownDescription: "volumeName is the binding reference to the PersistentVolume backing this claim.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "fc": schema.SingleNestedAttribute{
+ Description: "fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.",
+ MarkdownDescription: "fc represents a Fibre Channel resource that is attached to a kubelet's host machine and then exposed to the pod.",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.TODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.TODO: how do we prevent errors in the filesystem from compromising the machine",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "lun": schema.Int64Attribute{
+ Description: "lun is Optional: FC target lun number",
+ MarkdownDescription: "lun is Optional: FC target lun number",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly is Optional: Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "target_ww_ns": schema.ListAttribute{
+ Description: "targetWWNs is Optional: FC target worldwide names (WWNs)",
+ MarkdownDescription: "targetWWNs is Optional: FC target worldwide names (WWNs)",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "wwids": schema.ListAttribute{
+ Description: "wwids Optional: FC volume world wide identifiers (wwids)Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.",
+ MarkdownDescription: "wwids Optional: FC volume world wide identifiers (wwids)Either wwids or combination of targetWWNs and lun must be set, but not both simultaneously.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "flex_volume": schema.SingleNestedAttribute{
+ Description: "flexVolume represents a generic volume resource that isprovisioned/attached using an exec based plugin.",
+ MarkdownDescription: "flexVolume represents a generic volume resource that isprovisioned/attached using an exec based plugin.",
+ Attributes: map[string]schema.Attribute{
+ "driver": schema.StringAttribute{
+ Description: "driver is the name of the driver to use for this volume.",
+ MarkdownDescription: "driver is the name of the driver to use for this volume.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. The default filesystem depends on FlexVolume script.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "options": schema.MapAttribute{
+ Description: "options is Optional: this field holds extra command options if any.",
+ MarkdownDescription: "options is Optional: this field holds extra command options if any.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly is Optional: defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly is Optional: defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is Optional: secretRef is reference to the secret object containingsensitive information to pass to the plugin scripts. This may beempty if no secret object is specified. If the secret objectcontains more than one secret, all secrets are passed to the pluginscripts.",
+ MarkdownDescription: "secretRef is Optional: secretRef is reference to the secret object containingsensitive information to pass to the plugin scripts. This may beempty if no secret object is specified. If the secret objectcontains more than one secret, all secrets are passed to the pluginscripts.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "flocker": schema.SingleNestedAttribute{
+ Description: "flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running",
+ MarkdownDescription: "flocker represents a Flocker volume attached to a kubelet's host machine. This depends on the Flocker control service being running",
+ Attributes: map[string]schema.Attribute{
+ "dataset_name": schema.StringAttribute{
+ Description: "datasetName is Name of the dataset stored as metadata -> name on the dataset for Flockershould be considered as deprecated",
+ MarkdownDescription: "datasetName is Name of the dataset stored as metadata -> name on the dataset for Flockershould be considered as deprecated",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "dataset_uuid": schema.StringAttribute{
+ Description: "datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset",
+ MarkdownDescription: "datasetUUID is the UUID of the dataset. This is unique identifier of a Flocker dataset",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "gce_persistent_disk": schema.SingleNestedAttribute{
+ Description: "gcePersistentDisk represents a GCE Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ MarkdownDescription: "gcePersistentDisk represents a GCE Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskTODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskTODO: how do we prevent errors in the filesystem from compromising the machine",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "partition": schema.Int64Attribute{
+ Description: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ MarkdownDescription: "partition is the partition in the volume that you want to mount.If omitted, the default is to mount by volume name.Examples: For volume /dev/sda1, you specify the partition as '1'.Similarly, the volume partition for /dev/sda is '0' (or you can leave the property empty).More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "pd_name": schema.StringAttribute{
+ Description: "pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ MarkdownDescription: "pdName is unique name of the PD resource in GCE. Used to identify the disk in GCE.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ MarkdownDescription: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "git_repo": schema.SingleNestedAttribute{
+ Description: "gitRepo represents a git repository at a particular revision.DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount anEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDirinto the Pod's container.",
+ MarkdownDescription: "gitRepo represents a git repository at a particular revision.DEPRECATED: GitRepo is deprecated. To provision a container with a git repo, mount anEmptyDir into an InitContainer that clones the repo using git, then mount the EmptyDirinto the Pod's container.",
+ Attributes: map[string]schema.Attribute{
+ "directory": schema.StringAttribute{
+ Description: "directory is the target directory name.Must not contain or start with '..'. If '.' is supplied, the volume directory will be thegit repository. Otherwise, if specified, the volume will contain the git repository inthe subdirectory with the given name.",
+ MarkdownDescription: "directory is the target directory name.Must not contain or start with '..'. If '.' is supplied, the volume directory will be thegit repository. Otherwise, if specified, the volume will contain the git repository inthe subdirectory with the given name.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "repository": schema.StringAttribute{
+ Description: "repository is the URL",
+ MarkdownDescription: "repository is the URL",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "revision": schema.StringAttribute{
+ Description: "revision is the commit hash for the specified revision.",
+ MarkdownDescription: "revision is the commit hash for the specified revision.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "glusterfs": schema.SingleNestedAttribute{
+ Description: "glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/glusterfs/README.md",
+ MarkdownDescription: "glusterfs represents a Glusterfs mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/glusterfs/README.md",
+ Attributes: map[string]schema.Attribute{
+ "endpoints": schema.StringAttribute{
+ Description: "endpoints is the endpoint name that details Glusterfs topology.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ MarkdownDescription: "endpoints is the endpoint name that details Glusterfs topology.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is the Glusterfs volume path.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ MarkdownDescription: "path is the Glusterfs volume path.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the Glusterfs volume to be mounted with read-only permissions.Defaults to false.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ MarkdownDescription: "readOnly here will force the Glusterfs volume to be mounted with read-only permissions.Defaults to false.More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "host_path": schema.SingleNestedAttribute{
+ Description: "hostPath represents a pre-existing file or directory on the hostmachine that is directly exposed to the container. This is generallyused for system agents or other privileged things that are allowedto see the host machine. Most containers will NOT need this.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath---TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can notmount host directories as read/write.",
+ MarkdownDescription: "hostPath represents a pre-existing file or directory on the hostmachine that is directly exposed to the container. This is generallyused for system agents or other privileged things that are allowedto see the host machine. Most containers will NOT need this.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath---TODO(jonesdl) We need to restrict who can use host directory mounts and who can/can notmount host directories as read/write.",
+ Attributes: map[string]schema.Attribute{
+ "path": schema.StringAttribute{
+ Description: "path of the directory on the host.If the path is a symlink, it will follow the link to the real path.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
+ MarkdownDescription: "path of the directory on the host.If the path is a symlink, it will follow the link to the real path.More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "type": schema.StringAttribute{
+ Description: "type for HostPath VolumeDefaults to ''More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
+ MarkdownDescription: "type for HostPath VolumeDefaults to ''More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "iscsi": schema.SingleNestedAttribute{
+ Description: "iscsi represents an ISCSI Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://examples.k8s.io/volumes/iscsi/README.md",
+ MarkdownDescription: "iscsi represents an ISCSI Disk resource that is attached to akubelet's host machine and then exposed to the pod.More info: https://examples.k8s.io/volumes/iscsi/README.md",
+ Attributes: map[string]schema.Attribute{
+ "chap_auth_discovery": schema.BoolAttribute{
+ Description: "chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication",
+ MarkdownDescription: "chapAuthDiscovery defines whether support iSCSI Discovery CHAP authentication",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "chap_auth_session": schema.BoolAttribute{
+ Description: "chapAuthSession defines whether support iSCSI Session CHAP authentication",
+ MarkdownDescription: "chapAuthSession defines whether support iSCSI Session CHAP authentication",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsiTODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsiTODO: how do we prevent errors in the filesystem from compromising the machine",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "initiator_name": schema.StringAttribute{
+ Description: "initiatorName is the custom iSCSI Initiator Name.If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface: will be created for the connection.",
+ MarkdownDescription: "initiatorName is the custom iSCSI Initiator Name.If initiatorName is specified with iscsiInterface simultaneously, new iSCSI interface: will be created for the connection.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "iqn": schema.StringAttribute{
+ Description: "iqn is the target iSCSI Qualified Name.",
+ MarkdownDescription: "iqn is the target iSCSI Qualified Name.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "iscsi_interface": schema.StringAttribute{
+ Description: "iscsiInterface is the interface Name that uses an iSCSI transport.Defaults to 'default' (tcp).",
+ MarkdownDescription: "iscsiInterface is the interface Name that uses an iSCSI transport.Defaults to 'default' (tcp).",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "lun": schema.Int64Attribute{
+ Description: "lun represents iSCSI Target Lun number.",
+ MarkdownDescription: "lun represents iSCSI Target Lun number.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "portals": schema.ListAttribute{
+ Description: "portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
+ MarkdownDescription: "portals is the iSCSI Target Portal List. The portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.",
+ MarkdownDescription: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is the CHAP Secret for iSCSI target and initiator authentication",
+ MarkdownDescription: "secretRef is the CHAP Secret for iSCSI target and initiator authentication",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "target_portal": schema.StringAttribute{
+ Description: "targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
+ MarkdownDescription: "targetPortal is iSCSI Target Portal. The Portal is either an IP or ip_addr:port if the portis other than default (typically TCP ports 860 and 3260).",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "name of the volume.Must be a DNS_LABEL and unique within the pod.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names",
+ MarkdownDescription: "name of the volume.Must be a DNS_LABEL and unique within the pod.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "nfs": schema.SingleNestedAttribute{
+ Description: "nfs represents an NFS mount on the host that shares a pod's lifetimeMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ MarkdownDescription: "nfs represents an NFS mount on the host that shares a pod's lifetimeMore info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ Attributes: map[string]schema.Attribute{
+ "path": schema.StringAttribute{
+ Description: "path that is exported by the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ MarkdownDescription: "path that is exported by the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the NFS export to be mounted with read-only permissions.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ MarkdownDescription: "readOnly here will force the NFS export to be mounted with read-only permissions.Defaults to false.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "server": schema.StringAttribute{
+ Description: "server is the hostname or IP address of the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ MarkdownDescription: "server is the hostname or IP address of the NFS server.More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "persistent_volume_claim": schema.SingleNestedAttribute{
+ Description: "persistentVolumeClaimVolumeSource represents a reference to aPersistentVolumeClaim in the same namespace.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
+ MarkdownDescription: "persistentVolumeClaimVolumeSource represents a reference to aPersistentVolumeClaim in the same namespace.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
+ Attributes: map[string]schema.Attribute{
+ "claim_name": schema.StringAttribute{
+ Description: "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
+ MarkdownDescription: "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume.More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly Will force the ReadOnly setting in VolumeMounts.Default false.",
+ MarkdownDescription: "readOnly Will force the ReadOnly setting in VolumeMounts.Default false.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "photon_persistent_disk": schema.SingleNestedAttribute{
+ Description: "photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine",
+ MarkdownDescription: "photonPersistentDisk represents a PhotonController persistent disk attached and mounted on kubelets host machine",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "pd_id": schema.StringAttribute{
+ Description: "pdID is the ID that identifies Photon Controller persistent disk",
+ MarkdownDescription: "pdID is the ID that identifies Photon Controller persistent disk",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "portworx_volume": schema.SingleNestedAttribute{
+ Description: "portworxVolume represents a portworx volume attached and mounted on kubelets host machine",
+ MarkdownDescription: "portworxVolume represents a portworx volume attached and mounted on kubelets host machine",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fSType represents the filesystem type to mountMust be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fSType represents the filesystem type to mountMust be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_id": schema.StringAttribute{
+ Description: "volumeID uniquely identifies a Portworx volume",
+ MarkdownDescription: "volumeID uniquely identifies a Portworx volume",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "projected": schema.SingleNestedAttribute{
+ Description: "projected items for all in one resources secrets, configmaps, and downward API",
+ MarkdownDescription: "projected items for all in one resources secrets, configmaps, and downward API",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "defaultMode are the mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "defaultMode are the mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "sources": schema.ListNestedAttribute{
+ Description: "sources is the list of volume projections",
+ MarkdownDescription: "sources is the list of volume projections",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "config_map": schema.SingleNestedAttribute{
+ Description: "configMap information about the configMap data to project",
+ MarkdownDescription: "configMap information about the configMap data to project",
+ Attributes: map[string]schema.Attribute{
+ "items": schema.ListNestedAttribute{
+ Description: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedConfigMap will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the ConfigMap,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "optional": schema.BoolAttribute{
+ Description: "optional specify whether the ConfigMap or its keys must be defined",
+ MarkdownDescription: "optional specify whether the ConfigMap or its keys must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "downward_api": schema.SingleNestedAttribute{
+ Description: "downwardAPI information about the downwardAPI data to project",
+ MarkdownDescription: "downwardAPI information about the downwardAPI data to project",
+ Attributes: map[string]schema.Attribute{
+ "items": schema.ListNestedAttribute{
+ Description: "Items is a list of DownwardAPIVolume file",
+ MarkdownDescription: "Items is a list of DownwardAPIVolume file",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "field_ref": schema.SingleNestedAttribute{
+ Description: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
+ MarkdownDescription: "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.",
+ Attributes: map[string]schema.Attribute{
+ "api_version": schema.StringAttribute{
+ Description: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ MarkdownDescription: "Version of the schema the FieldPath is written in terms of, defaults to 'v1'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "field_path": schema.StringAttribute{
+ Description: "Path of the field to select in the specified API version.",
+ MarkdownDescription: "Path of the field to select in the specified API version.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "mode": schema.Int64Attribute{
+ Description: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "Optional: mode bits used to set permissions on this file, must be an octal valuebetween 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
+ MarkdownDescription: "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "resource_field_ref": schema.SingleNestedAttribute{
+ Description: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
+ MarkdownDescription: "Selects a resource of the container: only resources limits and requests(limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.",
+ Attributes: map[string]schema.Attribute{
+ "container_name": schema.StringAttribute{
+ Description: "Container name: required for volumes, optional for env vars",
+ MarkdownDescription: "Container name: required for volumes, optional for env vars",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "divisor": schema.StringAttribute{
+ Description: "Specifies the output format of the exposed resources, defaults to '1'",
+ MarkdownDescription: "Specifies the output format of the exposed resources, defaults to '1'",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "resource": schema.StringAttribute{
+ Description: "Required: resource to select",
+ MarkdownDescription: "Required: resource to select",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret": schema.SingleNestedAttribute{
+ Description: "secret information about the secret data to project",
+ MarkdownDescription: "secret information about the secret data to project",
+ Attributes: map[string]schema.Attribute{
+ "items": schema.ListNestedAttribute{
+ Description: "items if unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items if unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "optional": schema.BoolAttribute{
+ Description: "optional field specify whether the Secret or its key must be defined",
+ MarkdownDescription: "optional field specify whether the Secret or its key must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "service_account_token": schema.SingleNestedAttribute{
+ Description: "serviceAccountToken is information about the serviceAccountToken data to project",
+ MarkdownDescription: "serviceAccountToken is information about the serviceAccountToken data to project",
+ Attributes: map[string]schema.Attribute{
+ "audience": schema.StringAttribute{
+ Description: "audience is the intended audience of the token. A recipient of a tokenmust identify itself with an identifier specified in the audience of thetoken, and otherwise should reject the token. The audience defaults to theidentifier of the apiserver.",
+ MarkdownDescription: "audience is the intended audience of the token. A recipient of a tokenmust identify itself with an identifier specified in the audience of thetoken, and otherwise should reject the token. The audience defaults to theidentifier of the apiserver.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "expiration_seconds": schema.Int64Attribute{
+ Description: "expirationSeconds is the requested duration of validity of the serviceaccount token. As the token approaches expiration, the kubelet volumeplugin will proactively rotate the service account token. The kubelet willstart trying to rotate the token if the token is older than 80 percent ofits time to live or if the token is older than 24 hours.Defaults to 1 hourand must be at least 10 minutes.",
+ MarkdownDescription: "expirationSeconds is the requested duration of validity of the serviceaccount token. As the token approaches expiration, the kubelet volumeplugin will proactively rotate the service account token. The kubelet willstart trying to rotate the token if the token is older than 80 percent ofits time to live or if the token is older than 24 hours.Defaults to 1 hourand must be at least 10 minutes.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is the path relative to the mount point of the file to project thetoken into.",
+ MarkdownDescription: "path is the path relative to the mount point of the file to project thetoken into.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "quobyte": schema.SingleNestedAttribute{
+ Description: "quobyte represents a Quobyte mount on the host that shares a pod's lifetime",
+ MarkdownDescription: "quobyte represents a Quobyte mount on the host that shares a pod's lifetime",
+ Attributes: map[string]schema.Attribute{
+ "group": schema.StringAttribute{
+ Description: "group to map volume access toDefault is no group",
+ MarkdownDescription: "group to map volume access toDefault is no group",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the Quobyte volume to be mounted with read-only permissions.Defaults to false.",
+ MarkdownDescription: "readOnly here will force the Quobyte volume to be mounted with read-only permissions.Defaults to false.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "registry": schema.StringAttribute{
+ Description: "registry represents a single or multiple Quobyte Registry servicesspecified as a string as host:port pair (multiple entries are separated with commas)which acts as the central registry for volumes",
+ MarkdownDescription: "registry represents a single or multiple Quobyte Registry servicesspecified as a string as host:port pair (multiple entries are separated with commas)which acts as the central registry for volumes",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "tenant": schema.StringAttribute{
+ Description: "tenant owning the given Quobyte volume in the BackendUsed with dynamically provisioned Quobyte volumes, value is set by the plugin",
+ MarkdownDescription: "tenant owning the given Quobyte volume in the BackendUsed with dynamically provisioned Quobyte volumes, value is set by the plugin",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "user": schema.StringAttribute{
+ Description: "user to map volume access toDefaults to serivceaccount user",
+ MarkdownDescription: "user to map volume access toDefaults to serivceaccount user",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume": schema.StringAttribute{
+ Description: "volume is a string that references an already created Quobyte volume by name.",
+ MarkdownDescription: "volume is a string that references an already created Quobyte volume by name.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "rbd": schema.SingleNestedAttribute{
+ Description: "rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/rbd/README.md",
+ MarkdownDescription: "rbd represents a Rados Block Device mount on the host that shares a pod's lifetime.More info: https://examples.k8s.io/volumes/rbd/README.md",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#rbdTODO: how do we prevent errors in the filesystem from compromising the machine",
+ MarkdownDescription: "fsType is the filesystem type of the volume that you want to mount.Tip: Ensure that the filesystem type is supported by the host operating system.Examples: 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.More info: https://kubernetes.io/docs/concepts/storage/volumes#rbdTODO: how do we prevent errors in the filesystem from compromising the machine",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "image": schema.StringAttribute{
+ Description: "image is the rados image name.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "image is the rados image name.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "keyring": schema.StringAttribute{
+ Description: "keyring is the path to key ring for RBDUser.Default is /etc/ceph/keyring.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "keyring is the path to key ring for RBDUser.Default is /etc/ceph/keyring.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "monitors": schema.ListAttribute{
+ Description: "monitors is a collection of Ceph monitors.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "monitors is a collection of Ceph monitors.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ ElementType: types.StringType,
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "pool": schema.StringAttribute{
+ Description: "pool is the rados pool name.Default is rbd.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "pool is the rados pool name.Default is rbd.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "readOnly here will force the ReadOnly setting in VolumeMounts.Defaults to false.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef is name of the authentication secret for RBDUser. If providedoverrides keyring.Default is nil.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "secretRef is name of the authentication secret for RBDUser. If providedoverrides keyring.Default is nil.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "user": schema.StringAttribute{
+ Description: "user is the rados user name.Default is admin.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ MarkdownDescription: "user is the rados user name.Default is admin.More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "scale_io": schema.SingleNestedAttribute{
+ Description: "scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.",
+ MarkdownDescription: "scaleIO represents a ScaleIO persistent volume attached and mounted on Kubernetes nodes.",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'.Default is 'xfs'.",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'.Default is 'xfs'.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "gateway": schema.StringAttribute{
+ Description: "gateway is the host address of the ScaleIO API Gateway.",
+ MarkdownDescription: "gateway is the host address of the ScaleIO API Gateway.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "protection_domain": schema.StringAttribute{
+ Description: "protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.",
+ MarkdownDescription: "protectionDomain is the name of the ScaleIO Protection Domain for the configured storage.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly Defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef references to the secret for ScaleIO user and othersensitive information. If this is not provided, Login operation will fail.",
+ MarkdownDescription: "secretRef references to the secret for ScaleIO user and othersensitive information. If this is not provided, Login operation will fail.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "ssl_enabled": schema.BoolAttribute{
+ Description: "sslEnabled Flag enable/disable SSL communication with Gateway, default false",
+ MarkdownDescription: "sslEnabled Flag enable/disable SSL communication with Gateway, default false",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "storage_mode": schema.StringAttribute{
+ Description: "storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.Default is ThinProvisioned.",
+ MarkdownDescription: "storageMode indicates whether the storage for a volume should be ThickProvisioned or ThinProvisioned.Default is ThinProvisioned.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "storage_pool": schema.StringAttribute{
+ Description: "storagePool is the ScaleIO Storage Pool associated with the protection domain.",
+ MarkdownDescription: "storagePool is the ScaleIO Storage Pool associated with the protection domain.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "system": schema.StringAttribute{
+ Description: "system is the name of the storage system as configured in ScaleIO.",
+ MarkdownDescription: "system is the name of the storage system as configured in ScaleIO.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "volume_name": schema.StringAttribute{
+ Description: "volumeName is the name of a volume already created in the ScaleIO systemthat is associated with this volume source.",
+ MarkdownDescription: "volumeName is the name of a volume already created in the ScaleIO systemthat is associated with this volume source.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret": schema.SingleNestedAttribute{
+ Description: "secret represents a secret that should populate this volume.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ MarkdownDescription: "secret represents a secret that should populate this volume.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ Attributes: map[string]schema.Attribute{
+ "default_mode": schema.Int64Attribute{
+ Description: "defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "defaultMode is Optional: mode bits used to set permissions on created files by default.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal valuesfor mode bits. Defaults to 0644.Directories within the path are not affected by this setting.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "items": schema.ListNestedAttribute{
+ Description: "items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ MarkdownDescription: "items If unspecified, each key-value pair in the Data field of the referencedSecret will be projected into the volume as a file whose name is thekey and content is the value. If specified, the listed keys will beprojected into the specified paths, and unlisted keys will not bepresent. If a key is specified which is not present in the Secret,the volume setup will error unless it is marked optional. Paths must berelative and may not contain the '..' path or start with '..'.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "key": schema.StringAttribute{
+ Description: "key is the key to project.",
+ MarkdownDescription: "key is the key to project.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+
+ "mode": schema.Int64Attribute{
+ Description: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ MarkdownDescription: "mode is Optional: mode bits used to set permissions on this file.Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.If not specified, the volume defaultMode will be used.This might be in conflict with other options that affect the filemode, like fsGroup, and the result can be other mode bits set.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "path": schema.StringAttribute{
+ Description: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ MarkdownDescription: "path is the relative path of the file to map the key to.May not be an absolute path.May not contain the path element '..'.May not start with the string '..'.",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "optional": schema.BoolAttribute{
+ Description: "optional field specify whether the Secret or its keys must be defined",
+ MarkdownDescription: "optional field specify whether the Secret or its keys must be defined",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_name": schema.StringAttribute{
+ Description: "secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ MarkdownDescription: "secretName is the name of the secret in the pod's namespace to use.More info: https://kubernetes.io/docs/concepts/storage/volumes#secret",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "storageos": schema.SingleNestedAttribute{
+ Description: "storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.",
+ MarkdownDescription: "storageOS represents a StorageOS volume attached and mounted on Kubernetes nodes.",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fsType is the filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "read_only": schema.BoolAttribute{
+ Description: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ MarkdownDescription: "readOnly defaults to false (read/write). ReadOnly here will forcethe ReadOnly setting in VolumeMounts.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "secret_ref": schema.SingleNestedAttribute{
+ Description: "secretRef specifies the secret to use for obtaining the StorageOS APIcredentials. If not specified, default values will be attempted.",
+ MarkdownDescription: "secretRef specifies the secret to use for obtaining the StorageOS APIcredentials. If not specified, default values will be attempted.",
+ Attributes: map[string]schema.Attribute{
+ "name": schema.StringAttribute{
+ Description: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ MarkdownDescription: "Name of the referent.More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#namesTODO: Add other useful fields. apiVersion, kind, uid?",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_name": schema.StringAttribute{
+ Description: "volumeName is the human-readable name of the StorageOS volume. Volumenames are only unique within a namespace.",
+ MarkdownDescription: "volumeName is the human-readable name of the StorageOS volume. Volumenames are only unique within a namespace.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_namespace": schema.StringAttribute{
+ Description: "volumeNamespace specifies the scope of the volume within StorageOS. If nonamespace is specified then the Pod's namespace will be used. This allows theKubernetes name scoping to be mirrored within StorageOS for tighter integration.Set VolumeName to any name to override the default behaviour.Set to 'default' if you are not using namespaces within StorageOS.Namespaces that do not pre-exist within StorageOS will be created.",
+ MarkdownDescription: "volumeNamespace specifies the scope of the volume within StorageOS. If nonamespace is specified then the Pod's namespace will be used. This allows theKubernetes name scoping to be mirrored within StorageOS for tighter integration.Set VolumeName to any name to override the default behaviour.Set to 'default' if you are not using namespaces within StorageOS.Namespaces that do not pre-exist within StorageOS will be created.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "vsphere_volume": schema.SingleNestedAttribute{
+ Description: "vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine",
+ MarkdownDescription: "vsphereVolume represents a vSphere volume attached and mounted on kubelets host machine",
+ Attributes: map[string]schema.Attribute{
+ "fs_type": schema.StringAttribute{
+ Description: "fsType is filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ MarkdownDescription: "fsType is filesystem type to mount.Must be a filesystem type supported by the host operating system.Ex. 'ext4', 'xfs', 'ntfs'. Implicitly inferred to be 'ext4' if unspecified.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "storage_policy_id": schema.StringAttribute{
+ Description: "storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.",
+ MarkdownDescription: "storagePolicyID is the storage Policy Based Management (SPBM) profile ID associated with the StoragePolicyName.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "storage_policy_name": schema.StringAttribute{
+ Description: "storagePolicyName is the storage Policy Based Management (SPBM) profile name.",
+ MarkdownDescription: "storagePolicyName is the storage Policy Based Management (SPBM) profile name.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "volume_path": schema.StringAttribute{
+ Description: "volumePath is the path that identifies vSphere volume vmdk",
+ MarkdownDescription: "volumePath is the path that identifies vSphere volume vmdk",
+ Required: true,
+ Optional: false,
+ Computed: false,
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+ },
+ },
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
},
Required: false,
Optional: true,
diff --git a/internal/provider/apps_v1/apps_stateful_set_v1_manifest.go b/internal/provider/apps_v1/apps_stateful_set_v1_manifest.go
index 91746e5dd..9d9c9bf80 100644
--- a/internal/provider/apps_v1/apps_stateful_set_v1_manifest.go
+++ b/internal/provider/apps_v1/apps_stateful_set_v1_manifest.go
@@ -1427,6 +1427,40 @@ type AppsStatefulSetV1ManifestData struct {
Type *string `tfsdk:"type" json:"type,omitempty"`
} `tfsdk:"update_strategy" json:"updateStrategy,omitempty"`
VolumeClaimTemplates *[]struct {
+ ApiVersion *string `tfsdk:"api_version" json:"apiVersion,omitempty"`
+ Kind *string `tfsdk:"kind" json:"kind,omitempty"`
+ Metadata *struct {
+ Annotations *map[string]string `tfsdk:"annotations" json:"annotations,omitempty"`
+ CreationTimestamp *string `tfsdk:"creation_timestamp" json:"creationTimestamp,omitempty"`
+ DeletionGracePeriodSeconds *int64 `tfsdk:"deletion_grace_period_seconds" json:"deletionGracePeriodSeconds,omitempty"`
+ DeletionTimestamp *string `tfsdk:"deletion_timestamp" json:"deletionTimestamp,omitempty"`
+ Finalizers *[]string `tfsdk:"finalizers" json:"finalizers,omitempty"`
+ GenerateName *string `tfsdk:"generate_name" json:"generateName,omitempty"`
+ Generation *int64 `tfsdk:"generation" json:"generation,omitempty"`
+ Labels *map[string]string `tfsdk:"labels" json:"labels,omitempty"`
+ ManagedFields *[]struct {
+ ApiVersion *string `tfsdk:"api_version" json:"apiVersion,omitempty"`
+ FieldsType *string `tfsdk:"fields_type" json:"fieldsType,omitempty"`
+ FieldsV1 *map[string]string `tfsdk:"fields_v1" json:"fieldsV1,omitempty"`
+ Manager *string `tfsdk:"manager" json:"manager,omitempty"`
+ Operation *string `tfsdk:"operation" json:"operation,omitempty"`
+ Subresource *string `tfsdk:"subresource" json:"subresource,omitempty"`
+ Time *string `tfsdk:"time" json:"time,omitempty"`
+ } `tfsdk:"managed_fields" json:"managedFields,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Namespace *string `tfsdk:"namespace" json:"namespace,omitempty"`
+ OwnerReferences *[]struct {
+ ApiVersion *string `tfsdk:"api_version" json:"apiVersion,omitempty"`
+ BlockOwnerDeletion *bool `tfsdk:"block_owner_deletion" json:"blockOwnerDeletion,omitempty"`
+ Controller *bool `tfsdk:"controller" json:"controller,omitempty"`
+ Kind *string `tfsdk:"kind" json:"kind,omitempty"`
+ Name *string `tfsdk:"name" json:"name,omitempty"`
+ Uid *string `tfsdk:"uid" json:"uid,omitempty"`
+ } `tfsdk:"owner_references" json:"ownerReferences,omitempty"`
+ ResourceVersion *string `tfsdk:"resource_version" json:"resourceVersion,omitempty"`
+ SelfLink *string `tfsdk:"self_link" json:"selfLink,omitempty"`
+ Uid *string `tfsdk:"uid" json:"uid,omitempty"`
+ } `tfsdk:"metadata" json:"metadata,omitempty"`
Spec *struct {
AccessModes *[]string `tfsdk:"access_modes" json:"accessModes,omitempty"`
DataSource *struct {
@@ -1457,6 +1491,26 @@ type AppsStatefulSetV1ManifestData struct {
VolumeMode *string `tfsdk:"volume_mode" json:"volumeMode,omitempty"`
VolumeName *string `tfsdk:"volume_name" json:"volumeName,omitempty"`
} `tfsdk:"spec" json:"spec,omitempty"`
+ Status *struct {
+ AccessModes *[]string `tfsdk:"access_modes" json:"accessModes,omitempty"`
+ AllocatedResourceStatuses *map[string]string `tfsdk:"allocated_resource_statuses" json:"allocatedResourceStatuses,omitempty"`
+ AllocatedResources *map[string]string `tfsdk:"allocated_resources" json:"allocatedResources,omitempty"`
+ Capacity *map[string]string `tfsdk:"capacity" json:"capacity,omitempty"`
+ Conditions *[]struct {
+ LastProbeTime *string `tfsdk:"last_probe_time" json:"lastProbeTime,omitempty"`
+ LastTransitionTime *string `tfsdk:"last_transition_time" json:"lastTransitionTime,omitempty"`
+ Message *string `tfsdk:"message" json:"message,omitempty"`
+ Reason *string `tfsdk:"reason" json:"reason,omitempty"`
+ Status *string `tfsdk:"status" json:"status,omitempty"`
+ Type *string `tfsdk:"type" json:"type,omitempty"`
+ } `tfsdk:"conditions" json:"conditions,omitempty"`
+ CurrentVolumeAttributesClassName *string `tfsdk:"current_volume_attributes_class_name" json:"currentVolumeAttributesClassName,omitempty"`
+ ModifyVolumeStatus *struct {
+ Status *string `tfsdk:"status" json:"status,omitempty"`
+ TargetVolumeAttributesClassName *string `tfsdk:"target_volume_attributes_class_name" json:"targetVolumeAttributesClassName,omitempty"`
+ } `tfsdk:"modify_volume_status" json:"modifyVolumeStatus,omitempty"`
+ Phase *string `tfsdk:"phase" json:"phase,omitempty"`
+ } `tfsdk:"status" json:"status,omitempty"`
} `tfsdk:"volume_claim_templates" json:"volumeClaimTemplates,omitempty"`
} `tfsdk:"spec" json:"spec,omitempty"`
}
@@ -10928,6 +10982,274 @@ func (r *AppsStatefulSetV1Manifest) Schema(_ context.Context, _ datasource.Schem
MarkdownDescription: "volumeClaimTemplates is a list of claims that pods are allowed to reference. The StatefulSet controller is responsible for mapping network identities to claims in a way that maintains the identity of a pod. Every claim in this list must have at least one matching (by name) volumeMount in one container in the template. A claim in this list takes precedence over any volumes in the template, with the same name.",
NestedObject: schema.NestedAttributeObject{
Attributes: map[string]schema.Attribute{
+ "api_version": schema.StringAttribute{
+ Description: "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
+ MarkdownDescription: "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "kind": schema.StringAttribute{
+ Description: "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
+ MarkdownDescription: "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "metadata": schema.SingleNestedAttribute{
+ Description: "ObjectMeta is metadata that all persisted resources must have, which includes all objects users must create.",
+ MarkdownDescription: "ObjectMeta is metadata that all persisted resources must have, which includes all objects users must create.",
+ Attributes: map[string]schema.Attribute{
+ "annotations": schema.MapAttribute{
+ Description: "Annotations is an unstructured key value map stored with a resource that may be set by external tools to store and retrieve arbitrary metadata. They are not queryable and should be preserved when modifying objects. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations",
+ MarkdownDescription: "Annotations is an unstructured key value map stored with a resource that may be set by external tools to store and retrieve arbitrary metadata. They are not queryable and should be preserved when modifying objects. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "creation_timestamp": schema.StringAttribute{
+ Description: "Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON. Wrappers are provided for many of the factory methods that the time package offers.",
+ MarkdownDescription: "Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON. Wrappers are provided for many of the factory methods that the time package offers.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ validators.DateTime64Validator(),
+ },
+ },
+
+ "deletion_grace_period_seconds": schema.Int64Attribute{
+ Description: "Number of seconds allowed for this object to gracefully terminate before it will be removed from the system. Only set when deletionTimestamp is also set. May only be shortened. Read-only.",
+ MarkdownDescription: "Number of seconds allowed for this object to gracefully terminate before it will be removed from the system. Only set when deletionTimestamp is also set. May only be shortened. Read-only.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "deletion_timestamp": schema.StringAttribute{
+ Description: "Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON. Wrappers are provided for many of the factory methods that the time package offers.",
+ MarkdownDescription: "Time is a wrapper around time.Time which supports correct marshaling to YAML and JSON. Wrappers are provided for many of the factory methods that the time package offers.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ Validators: []validator.String{
+ validators.DateTime64Validator(),
+ },
+ },
+
+ "finalizers": schema.ListAttribute{
+ Description: "Must be empty before the object is deleted from the registry. Each entry is an identifier for the responsible component that will remove the entry from the list. If the deletionTimestamp of the object is non-nil, entries in this list can only be removed. Finalizers may be processed and removed in any order. Order is NOT enforced because it introduces significant risk of stuck finalizers. finalizers is a shared field, any actor with permission can reorder it. If the finalizer list is processed in order, then this can lead to a situation in which the component responsible for the first finalizer in the list is waiting for a signal (field value, external system, or other) produced by a component responsible for a finalizer later in the list, resulting in a deadlock. Without enforced ordering finalizers are free to order amongst themselves and are not vulnerable to ordering changes in the list.",
+ MarkdownDescription: "Must be empty before the object is deleted from the registry. Each entry is an identifier for the responsible component that will remove the entry from the list. If the deletionTimestamp of the object is non-nil, entries in this list can only be removed. Finalizers may be processed and removed in any order. Order is NOT enforced because it introduces significant risk of stuck finalizers. finalizers is a shared field, any actor with permission can reorder it. If the finalizer list is processed in order, then this can lead to a situation in which the component responsible for the first finalizer in the list is waiting for a signal (field value, external system, or other) produced by a component responsible for a finalizer later in the list, resulting in a deadlock. Without enforced ordering finalizers are free to order amongst themselves and are not vulnerable to ordering changes in the list.",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "generate_name": schema.StringAttribute{
+ Description: "GenerateName is an optional prefix, used by the server, to generate a unique name ONLY IF the Name field has not been provided. If this field is used, the name returned to the client will be different than the name passed. This value will also be combined with a unique suffix. The provided value has the same validation rules as the Name field, and may be truncated by the length of the suffix required to make the value unique on the server.If this field is specified and the generated name exists, the server will return a 409.Applied only if Name is not specified. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#idempotency",
+ MarkdownDescription: "GenerateName is an optional prefix, used by the server, to generate a unique name ONLY IF the Name field has not been provided. If this field is used, the name returned to the client will be different than the name passed. This value will also be combined with a unique suffix. The provided value has the same validation rules as the Name field, and may be truncated by the length of the suffix required to make the value unique on the server.If this field is specified and the generated name exists, the server will return a 409.Applied only if Name is not specified. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#idempotency",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "generation": schema.Int64Attribute{
+ Description: "A sequence number representing a specific generation of the desired state. Populated by the system. Read-only.",
+ MarkdownDescription: "A sequence number representing a specific generation of the desired state. Populated by the system. Read-only.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "labels": schema.MapAttribute{
+ Description: "Map of string keys and values that can be used to organize and categorize (scope and select) objects. May match selectors of replication controllers and services. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels",
+ MarkdownDescription: "Map of string keys and values that can be used to organize and categorize (scope and select) objects. May match selectors of replication controllers and services. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels",
+ ElementType: types.StringType,
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "managed_fields": schema.ListNestedAttribute{
+ Description: "ManagedFields maps workflow-id and version to the set of fields that are managed by that workflow. This is mostly for internal housekeeping, and users typically shouldn't need to set or understand this field. A workflow can be the user's name, a controller's name, or the name of a specific apply path like 'ci-cd'. The set of fields is always in the version that the workflow used when modifying the object.",
+ MarkdownDescription: "ManagedFields maps workflow-id and version to the set of fields that are managed by that workflow. This is mostly for internal housekeeping, and users typically shouldn't need to set or understand this field. A workflow can be the user's name, a controller's name, or the name of a specific apply path like 'ci-cd'. The set of fields is always in the version that the workflow used when modifying the object.",
+ NestedObject: schema.NestedAttributeObject{
+ Attributes: map[string]schema.Attribute{
+ "api_version": schema.StringAttribute{
+ Description: "APIVersion defines the version of this resource that this field set applies to. The format is 'group/version' just like the top-level APIVersion field. It is necessary to track the version of a field set because it cannot be automatically converted.",
+ MarkdownDescription: "APIVersion defines the version of this resource that this field set applies to. The format is 'group/version' just like the top-level APIVersion field. It is necessary to track the version of a field set because it cannot be automatically converted.",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "fields_type": schema.StringAttribute{
+ Description: "FieldsType is the discriminator for the different fields format and version. There is currently only one possible value: 'FieldsV1'",
+ MarkdownDescription: "FieldsType is the discriminator for the different fields format and version. There is currently only one possible value: 'FieldsV1'",
+ Required: false,
+ Optional: true,
+ Computed: false,
+ },
+
+ "fields_v1": schema.MapAttribute{
+ Description: "FieldsV1 stores a set of fields in a data structure like a Trie, in JSON format.Each key is either a '.' representing the field itself, and will always map to an empty set, or a string representing a sub-field or item. The string will follow one of these four formats: 'f:', where is the name of a field in a struct, or key in a map 'v: