1---
2apiVersion: apiextensions.k8s.io/v1
3kind: CustomResourceDefinition
4metadata:
5 annotations:
6 controller-gen.kubebuilder.io/version: (unknown)
7 name: helmcharts.source.toolkit.fluxcd.io
8spec:
9 group: source.toolkit.fluxcd.io
10 names:
11 kind: HelmChart
12 listKind: HelmChartList
13 plural: helmcharts
14 shortNames:
15 - hc
16 singular: helmchart
17 scope: Namespaced
18 versions:
19 - additionalPrinterColumns:
20 - jsonPath: .spec.chart
21 name: Chart
22 type: string
23 - jsonPath: .spec.version
24 name: Version
25 type: string
26 - jsonPath: .spec.sourceRef.kind
27 name: Source Kind
28 type: string
29 - jsonPath: .spec.sourceRef.name
30 name: Source Name
31 type: string
32 - jsonPath: .metadata.creationTimestamp
33 name: Age
34 type: date
35 - jsonPath: .status.conditions[?(@.type=="Ready")].status
36 name: Ready
37 type: string
38 - jsonPath: .status.conditions[?(@.type=="Ready")].message
39 name: Status
40 type: string
41 name: v1
42 schema:
43 openAPIV3Schema:
44 description: HelmChart is the Schema for the helmcharts API.
45 properties:
46 apiVersion:
47 description: |-
48 APIVersion defines the versioned schema of this representation of an object.
49 Servers should convert recognized schemas to the latest internal value, and
50 may reject unrecognized values.
51 More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
52 type: string
53 kind:
54 description: |-
55 Kind is a string value representing the REST resource this object represents.
56 Servers may infer this from the endpoint the client submits requests to.
57 Cannot be updated.
58 In CamelCase.
59 More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
60 type: string
61 metadata:
62 type: object
63 spec:
64 description: HelmChartSpec specifies the desired state of a Helm chart.
65 properties:
66 chart:
67 description: |-
68 Chart is the name or path the Helm chart is available at in the
69 SourceRef.
70 type: string
71 ignoreMissingValuesFiles:
72 description: |-
73 IgnoreMissingValuesFiles controls whether to silently ignore missing values
74 files rather than failing.
75 type: boolean
76 interval:
77 description: |-
78 Interval at which the HelmChart SourceRef is checked for updates.
79 This interval is approximate and may be subject to jitter to ensure
80 efficient use of resources.
81 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
82 type: string
83 reconcileStrategy:
84 default: ChartVersion
85 description: |-
86 ReconcileStrategy determines what enables the creation of a new artifact.
87 Valid values are ('ChartVersion', 'Revision').
88 See the documentation of the values for an explanation on their behavior.
89 Defaults to ChartVersion when omitted.
90 enum:
91 - ChartVersion
92 - Revision
93 type: string
94 sourceRef:
95 description: SourceRef is the reference to the Source the chart is
96 available at.
97 properties:
98 apiVersion:
99 description: APIVersion of the referent.
100 type: string
101 kind:
102 description: |-
103 Kind of the referent, valid values are ('HelmRepository', 'GitRepository',
104 'Bucket').
105 enum:
106 - HelmRepository
107 - GitRepository
108 - Bucket
109 type: string
110 name:
111 description: Name of the referent.
112 type: string
113 required:
114 - kind
115 - name
116 type: object
117 suspend:
118 description: |-
119 Suspend tells the controller to suspend the reconciliation of this
120 source.
121 type: boolean
122 valuesFiles:
123 description: |-
124 ValuesFiles is an alternative list of values files to use as the chart
125 values (values.yaml is not included by default), expected to be a
126 relative path in the SourceRef.
127 Values files are merged in the order of this list with the last file
128 overriding the first. Ignored when omitted.
129 items:
130 type: string
131 type: array
132 verify:
133 description: |-
134 Verify contains the secret name containing the trusted public keys
135 used to verify the signature and specifies which provider to use to check
136 whether OCI image is authentic.
137 This field is only supported when using HelmRepository source with spec.type 'oci'.
138 Chart dependencies, which are not bundled in the umbrella chart artifact, are not verified.
139 properties:
140 matchOIDCIdentity:
141 description: |-
142 MatchOIDCIdentity specifies the identity matching criteria to use
143 while verifying an OCI artifact which was signed using Cosign keyless
144 signing. The artifact's identity is deemed to be verified if any of the
145 specified matchers match against the identity.
146 items:
147 description: |-
148 OIDCIdentityMatch specifies options for verifying the certificate identity,
149 i.e. the issuer and the subject of the certificate.
150 properties:
151 issuer:
152 description: |-
153 Issuer specifies the regex pattern to match against to verify
154 the OIDC issuer in the Fulcio certificate. The pattern must be a
155 valid Go regular expression.
156 type: string
157 subject:
158 description: |-
159 Subject specifies the regex pattern to match against to verify
160 the identity subject in the Fulcio certificate. The pattern must
161 be a valid Go regular expression.
162 type: string
163 required:
164 - issuer
165 - subject
166 type: object
167 type: array
168 provider:
169 default: cosign
170 description: Provider specifies the technology used to sign the
171 OCI Artifact.
172 enum:
173 - cosign
174 - notation
175 type: string
176 secretRef:
177 description: |-
178 SecretRef specifies the Kubernetes Secret containing the
179 trusted public keys.
180 properties:
181 name:
182 description: Name of the referent.
183 type: string
184 required:
185 - name
186 type: object
187 required:
188 - provider
189 type: object
190 version:
191 default: '*'
192 description: |-
193 Version is the chart version semver expression, ignored for charts from
194 GitRepository and Bucket sources. Defaults to latest when omitted.
195 type: string
196 required:
197 - chart
198 - interval
199 - sourceRef
200 type: object
201 status:
202 default:
203 observedGeneration: -1
204 description: HelmChartStatus records the observed state of the HelmChart.
205 properties:
206 artifact:
207 description: Artifact represents the output of the last successful
208 reconciliation.
209 properties:
210 digest:
211 description: Digest is the digest of the file in the form of '<algorithm>:<checksum>'.
212 pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$
213 type: string
214 lastUpdateTime:
215 description: |-
216 LastUpdateTime is the timestamp corresponding to the last update of the
217 Artifact.
218 format: date-time
219 type: string
220 metadata:
221 additionalProperties:
222 type: string
223 description: Metadata holds upstream information such as OCI annotations.
224 type: object
225 path:
226 description: |-
227 Path is the relative file path of the Artifact. It can be used to locate
228 the file in the root of the Artifact storage on the local file system of
229 the controller managing the Source.
230 type: string
231 revision:
232 description: |-
233 Revision is a human-readable identifier traceable in the origin source
234 system. It can be a Git commit SHA, Git tag, a Helm chart version, etc.
235 type: string
236 size:
237 description: Size is the number of bytes in the file.
238 format: int64
239 type: integer
240 url:
241 description: |-
242 URL is the HTTP address of the Artifact as exposed by the controller
243 managing the Source. It can be used to retrieve the Artifact for
244 consumption, e.g. by another controller applying the Artifact contents.
245 type: string
246 required:
247 - lastUpdateTime
248 - path
249 - revision
250 - url
251 type: object
252 conditions:
253 description: Conditions holds the conditions for the HelmChart.
254 items:
255 description: "Condition contains details for one aspect of the current
256 state of this API Resource.\n---\nThis struct is intended for
257 direct use as an array at the field path .status.conditions. For
258 example,\n\n\n\ttype FooStatus struct{\n\t // Represents the
259 observations of a foo's current state.\n\t // Known .status.conditions.type
260 are: \"Available\", \"Progressing\", and \"Degraded\"\n\t //
261 +patchMergeKey=type\n\t // +patchStrategy=merge\n\t // +listType=map\n\t
262 \ // +listMapKey=type\n\t Conditions []metav1.Condition `json:\"conditions,omitempty\"
263 patchStrategy:\"merge\" patchMergeKey:\"type\" protobuf:\"bytes,1,rep,name=conditions\"`\n\n\n\t
264 \ // other fields\n\t}"
265 properties:
266 lastTransitionTime:
267 description: |-
268 lastTransitionTime is the last time the condition transitioned from one status to another.
269 This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable.
270 format: date-time
271 type: string
272 message:
273 description: |-
274 message is a human readable message indicating details about the transition.
275 This may be an empty string.
276 maxLength: 32768
277 type: string
278 observedGeneration:
279 description: |-
280 observedGeneration represents the .metadata.generation that the condition was set based upon.
281 For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date
282 with respect to the current state of the instance.
283 format: int64
284 minimum: 0
285 type: integer
286 reason:
287 description: |-
288 reason contains a programmatic identifier indicating the reason for the condition's last transition.
289 Producers of specific condition types may define expected values and meanings for this field,
290 and whether the values are considered a guaranteed API.
291 The value should be a CamelCase string.
292 This field may not be empty.
293 maxLength: 1024
294 minLength: 1
295 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
296 type: string
297 status:
298 description: status of the condition, one of True, False, Unknown.
299 enum:
300 - "True"
301 - "False"
302 - Unknown
303 type: string
304 type:
305 description: |-
306 type of condition in CamelCase or in foo.example.com/CamelCase.
307 ---
308 Many .condition.type values are consistent across resources like Available, but because arbitrary conditions can be
309 useful (see .node.status.conditions), the ability to deconflict is important.
310 The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
311 maxLength: 316
312 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
313 type: string
314 required:
315 - lastTransitionTime
316 - message
317 - reason
318 - status
319 - type
320 type: object
321 type: array
322 lastHandledReconcileAt:
323 description: |-
324 LastHandledReconcileAt holds the value of the most recent
325 reconcile request value, so a change of the annotation value
326 can be detected.
327 type: string
328 observedChartName:
329 description: |-
330 ObservedChartName is the last observed chart name as specified by the
331 resolved chart reference.
332 type: string
333 observedGeneration:
334 description: |-
335 ObservedGeneration is the last observed generation of the HelmChart
336 object.
337 format: int64
338 type: integer
339 observedSourceArtifactRevision:
340 description: |-
341 ObservedSourceArtifactRevision is the last observed Artifact.Revision
342 of the HelmChartSpec.SourceRef.
343 type: string
344 observedValuesFiles:
345 description: |-
346 ObservedValuesFiles are the observed value files of the last successful
347 reconciliation.
348 It matches the chart in the last successfully reconciled artifact.
349 items:
350 type: string
351 type: array
352 url:
353 description: |-
354 URL is the dynamic fetch link for the latest Artifact.
355 It is provided on a "best effort" basis, and using the precise
356 BucketStatus.Artifact data is recommended.
357 type: string
358 type: object
359 type: object
360 served: true
361 storage: true
362 subresources:
363 status: {}
364 - additionalPrinterColumns:
365 - jsonPath: .spec.chart
366 name: Chart
367 type: string
368 - jsonPath: .spec.version
369 name: Version
370 type: string
371 - jsonPath: .spec.sourceRef.kind
372 name: Source Kind
373 type: string
374 - jsonPath: .spec.sourceRef.name
375 name: Source Name
376 type: string
377 - jsonPath: .status.conditions[?(@.type=="Ready")].status
378 name: Ready
379 type: string
380 - jsonPath: .status.conditions[?(@.type=="Ready")].message
381 name: Status
382 type: string
383 - jsonPath: .metadata.creationTimestamp
384 name: Age
385 type: date
386 deprecated: true
387 deprecationWarning: v1beta1 HelmChart is deprecated, upgrade to v1
388 name: v1beta1
389 schema:
390 openAPIV3Schema:
391 description: HelmChart is the Schema for the helmcharts API
392 properties:
393 apiVersion:
394 description: |-
395 APIVersion defines the versioned schema of this representation of an object.
396 Servers should convert recognized schemas to the latest internal value, and
397 may reject unrecognized values.
398 More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
399 type: string
400 kind:
401 description: |-
402 Kind is a string value representing the REST resource this object represents.
403 Servers may infer this from the endpoint the client submits requests to.
404 Cannot be updated.
405 In CamelCase.
406 More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
407 type: string
408 metadata:
409 type: object
410 spec:
411 description: HelmChartSpec defines the desired state of a Helm chart.
412 properties:
413 accessFrom:
414 description: AccessFrom defines an Access Control List for allowing
415 cross-namespace references to this object.
416 properties:
417 namespaceSelectors:
418 description: |-
419 NamespaceSelectors is the list of namespace selectors to which this ACL applies.
420 Items in this list are evaluated using a logical OR operation.
421 items:
422 description: |-
423 NamespaceSelector selects the namespaces to which this ACL applies.
424 An empty map of MatchLabels matches all namespaces in a cluster.
425 properties:
426 matchLabels:
427 additionalProperties:
428 type: string
429 description: |-
430 MatchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
431 map is equivalent to an element of matchExpressions, whose key field is "key", the
432 operator is "In", and the values array contains only "value". The requirements are ANDed.
433 type: object
434 type: object
435 type: array
436 required:
437 - namespaceSelectors
438 type: object
439 chart:
440 description: The name or path the Helm chart is available at in the
441 SourceRef.
442 type: string
443 interval:
444 description: The interval at which to check the Source for updates.
445 type: string
446 reconcileStrategy:
447 default: ChartVersion
448 description: |-
449 Determines what enables the creation of a new artifact. Valid values are
450 ('ChartVersion', 'Revision').
451 See the documentation of the values for an explanation on their behavior.
452 Defaults to ChartVersion when omitted.
453 enum:
454 - ChartVersion
455 - Revision
456 type: string
457 sourceRef:
458 description: The reference to the Source the chart is available at.
459 properties:
460 apiVersion:
461 description: APIVersion of the referent.
462 type: string
463 kind:
464 description: |-
465 Kind of the referent, valid values are ('HelmRepository', 'GitRepository',
466 'Bucket').
467 enum:
468 - HelmRepository
469 - GitRepository
470 - Bucket
471 type: string
472 name:
473 description: Name of the referent.
474 type: string
475 required:
476 - kind
477 - name
478 type: object
479 suspend:
480 description: This flag tells the controller to suspend the reconciliation
481 of this source.
482 type: boolean
483 valuesFile:
484 description: |-
485 Alternative values file to use as the default chart values, expected to
486 be a relative path in the SourceRef. Deprecated in favor of ValuesFiles,
487 for backwards compatibility the file defined here is merged before the
488 ValuesFiles items. Ignored when omitted.
489 type: string
490 valuesFiles:
491 description: |-
492 Alternative list of values files to use as the chart values (values.yaml
493 is not included by default), expected to be a relative path in the SourceRef.
494 Values files are merged in the order of this list with the last file overriding
495 the first. Ignored when omitted.
496 items:
497 type: string
498 type: array
499 version:
500 default: '*'
501 description: |-
502 The chart version semver expression, ignored for charts from GitRepository
503 and Bucket sources. Defaults to latest when omitted.
504 type: string
505 required:
506 - chart
507 - interval
508 - sourceRef
509 type: object
510 status:
511 default:
512 observedGeneration: -1
513 description: HelmChartStatus defines the observed state of the HelmChart.
514 properties:
515 artifact:
516 description: Artifact represents the output of the last successful
517 chart sync.
518 properties:
519 checksum:
520 description: Checksum is the SHA256 checksum of the artifact.
521 type: string
522 lastUpdateTime:
523 description: |-
524 LastUpdateTime is the timestamp corresponding to the last update of this
525 artifact.
526 format: date-time
527 type: string
528 path:
529 description: Path is the relative file path of this artifact.
530 type: string
531 revision:
532 description: |-
533 Revision is a human readable identifier traceable in the origin source
534 system. It can be a Git commit SHA, Git tag, a Helm index timestamp, a Helm
535 chart version, etc.
536 type: string
537 url:
538 description: URL is the HTTP address of this artifact.
539 type: string
540 required:
541 - path
542 - url
543 type: object
544 conditions:
545 description: Conditions holds the conditions for the HelmChart.
546 items:
547 description: "Condition contains details for one aspect of the current
548 state of this API Resource.\n---\nThis struct is intended for
549 direct use as an array at the field path .status.conditions. For
550 example,\n\n\n\ttype FooStatus struct{\n\t // Represents the
551 observations of a foo's current state.\n\t // Known .status.conditions.type
552 are: \"Available\", \"Progressing\", and \"Degraded\"\n\t //
553 +patchMergeKey=type\n\t // +patchStrategy=merge\n\t // +listType=map\n\t
554 \ // +listMapKey=type\n\t Conditions []metav1.Condition `json:\"conditions,omitempty\"
555 patchStrategy:\"merge\" patchMergeKey:\"type\" protobuf:\"bytes,1,rep,name=conditions\"`\n\n\n\t
556 \ // other fields\n\t}"
557 properties:
558 lastTransitionTime:
559 description: |-
560 lastTransitionTime is the last time the condition transitioned from one status to another.
561 This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable.
562 format: date-time
563 type: string
564 message:
565 description: |-
566 message is a human readable message indicating details about the transition.
567 This may be an empty string.
568 maxLength: 32768
569 type: string
570 observedGeneration:
571 description: |-
572 observedGeneration represents the .metadata.generation that the condition was set based upon.
573 For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date
574 with respect to the current state of the instance.
575 format: int64
576 minimum: 0
577 type: integer
578 reason:
579 description: |-
580 reason contains a programmatic identifier indicating the reason for the condition's last transition.
581 Producers of specific condition types may define expected values and meanings for this field,
582 and whether the values are considered a guaranteed API.
583 The value should be a CamelCase string.
584 This field may not be empty.
585 maxLength: 1024
586 minLength: 1
587 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
588 type: string
589 status:
590 description: status of the condition, one of True, False, Unknown.
591 enum:
592 - "True"
593 - "False"
594 - Unknown
595 type: string
596 type:
597 description: |-
598 type of condition in CamelCase or in foo.example.com/CamelCase.
599 ---
600 Many .condition.type values are consistent across resources like Available, but because arbitrary conditions can be
601 useful (see .node.status.conditions), the ability to deconflict is important.
602 The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
603 maxLength: 316
604 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
605 type: string
606 required:
607 - lastTransitionTime
608 - message
609 - reason
610 - status
611 - type
612 type: object
613 type: array
614 lastHandledReconcileAt:
615 description: |-
616 LastHandledReconcileAt holds the value of the most recent
617 reconcile request value, so a change of the annotation value
618 can be detected.
619 type: string
620 observedGeneration:
621 description: ObservedGeneration is the last observed generation.
622 format: int64
623 type: integer
624 url:
625 description: URL is the download link for the last chart pulled.
626 type: string
627 type: object
628 type: object
629 served: true
630 storage: false
631 subresources:
632 status: {}
633 - additionalPrinterColumns:
634 - jsonPath: .spec.chart
635 name: Chart
636 type: string
637 - jsonPath: .spec.version
638 name: Version
639 type: string
640 - jsonPath: .spec.sourceRef.kind
641 name: Source Kind
642 type: string
643 - jsonPath: .spec.sourceRef.name
644 name: Source Name
645 type: string
646 - jsonPath: .metadata.creationTimestamp
647 name: Age
648 type: date
649 - jsonPath: .status.conditions[?(@.type=="Ready")].status
650 name: Ready
651 type: string
652 - jsonPath: .status.conditions[?(@.type=="Ready")].message
653 name: Status
654 type: string
655 deprecated: true
656 deprecationWarning: v1beta2 HelmChart is deprecated, upgrade to v1
657 name: v1beta2
658 schema:
659 openAPIV3Schema:
660 description: HelmChart is the Schema for the helmcharts API.
661 properties:
662 apiVersion:
663 description: |-
664 APIVersion defines the versioned schema of this representation of an object.
665 Servers should convert recognized schemas to the latest internal value, and
666 may reject unrecognized values.
667 More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
668 type: string
669 kind:
670 description: |-
671 Kind is a string value representing the REST resource this object represents.
672 Servers may infer this from the endpoint the client submits requests to.
673 Cannot be updated.
674 In CamelCase.
675 More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
676 type: string
677 metadata:
678 type: object
679 spec:
680 description: HelmChartSpec specifies the desired state of a Helm chart.
681 properties:
682 accessFrom:
683 description: |-
684 AccessFrom specifies an Access Control List for allowing cross-namespace
685 references to this object.
686 NOTE: Not implemented, provisional as of https://github.com/fluxcd/flux2/pull/2092
687 properties:
688 namespaceSelectors:
689 description: |-
690 NamespaceSelectors is the list of namespace selectors to which this ACL applies.
691 Items in this list are evaluated using a logical OR operation.
692 items:
693 description: |-
694 NamespaceSelector selects the namespaces to which this ACL applies.
695 An empty map of MatchLabels matches all namespaces in a cluster.
696 properties:
697 matchLabels:
698 additionalProperties:
699 type: string
700 description: |-
701 MatchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
702 map is equivalent to an element of matchExpressions, whose key field is "key", the
703 operator is "In", and the values array contains only "value". The requirements are ANDed.
704 type: object
705 type: object
706 type: array
707 required:
708 - namespaceSelectors
709 type: object
710 chart:
711 description: |-
712 Chart is the name or path the Helm chart is available at in the
713 SourceRef.
714 type: string
715 ignoreMissingValuesFiles:
716 description: |-
717 IgnoreMissingValuesFiles controls whether to silently ignore missing values
718 files rather than failing.
719 type: boolean
720 interval:
721 description: |-
722 Interval at which the HelmChart SourceRef is checked for updates.
723 This interval is approximate and may be subject to jitter to ensure
724 efficient use of resources.
725 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
726 type: string
727 reconcileStrategy:
728 default: ChartVersion
729 description: |-
730 ReconcileStrategy determines what enables the creation of a new artifact.
731 Valid values are ('ChartVersion', 'Revision').
732 See the documentation of the values for an explanation on their behavior.
733 Defaults to ChartVersion when omitted.
734 enum:
735 - ChartVersion
736 - Revision
737 type: string
738 sourceRef:
739 description: SourceRef is the reference to the Source the chart is
740 available at.
741 properties:
742 apiVersion:
743 description: APIVersion of the referent.
744 type: string
745 kind:
746 description: |-
747 Kind of the referent, valid values are ('HelmRepository', 'GitRepository',
748 'Bucket').
749 enum:
750 - HelmRepository
751 - GitRepository
752 - Bucket
753 type: string
754 name:
755 description: Name of the referent.
756 type: string
757 required:
758 - kind
759 - name
760 type: object
761 suspend:
762 description: |-
763 Suspend tells the controller to suspend the reconciliation of this
764 source.
765 type: boolean
766 valuesFile:
767 description: |-
768 ValuesFile is an alternative values file to use as the default chart
769 values, expected to be a relative path in the SourceRef. Deprecated in
770 favor of ValuesFiles, for backwards compatibility the file specified here
771 is merged before the ValuesFiles items. Ignored when omitted.
772 type: string
773 valuesFiles:
774 description: |-
775 ValuesFiles is an alternative list of values files to use as the chart
776 values (values.yaml is not included by default), expected to be a
777 relative path in the SourceRef.
778 Values files are merged in the order of this list with the last file
779 overriding the first. Ignored when omitted.
780 items:
781 type: string
782 type: array
783 verify:
784 description: |-
785 Verify contains the secret name containing the trusted public keys
786 used to verify the signature and specifies which provider to use to check
787 whether OCI image is authentic.
788 This field is only supported when using HelmRepository source with spec.type 'oci'.
789 Chart dependencies, which are not bundled in the umbrella chart artifact, are not verified.
790 properties:
791 matchOIDCIdentity:
792 description: |-
793 MatchOIDCIdentity specifies the identity matching criteria to use
794 while verifying an OCI artifact which was signed using Cosign keyless
795 signing. The artifact's identity is deemed to be verified if any of the
796 specified matchers match against the identity.
797 items:
798 description: |-
799 OIDCIdentityMatch specifies options for verifying the certificate identity,
800 i.e. the issuer and the subject of the certificate.
801 properties:
802 issuer:
803 description: |-
804 Issuer specifies the regex pattern to match against to verify
805 the OIDC issuer in the Fulcio certificate. The pattern must be a
806 valid Go regular expression.
807 type: string
808 subject:
809 description: |-
810 Subject specifies the regex pattern to match against to verify
811 the identity subject in the Fulcio certificate. The pattern must
812 be a valid Go regular expression.
813 type: string
814 required:
815 - issuer
816 - subject
817 type: object
818 type: array
819 provider:
820 default: cosign
821 description: Provider specifies the technology used to sign the
822 OCI Artifact.
823 enum:
824 - cosign
825 - notation
826 type: string
827 secretRef:
828 description: |-
829 SecretRef specifies the Kubernetes Secret containing the
830 trusted public keys.
831 properties:
832 name:
833 description: Name of the referent.
834 type: string
835 required:
836 - name
837 type: object
838 required:
839 - provider
840 type: object
841 version:
842 default: '*'
843 description: |-
844 Version is the chart version semver expression, ignored for charts from
845 GitRepository and Bucket sources. Defaults to latest when omitted.
846 type: string
847 required:
848 - chart
849 - interval
850 - sourceRef
851 type: object
852 status:
853 default:
854 observedGeneration: -1
855 description: HelmChartStatus records the observed state of the HelmChart.
856 properties:
857 artifact:
858 description: Artifact represents the output of the last successful
859 reconciliation.
860 properties:
861 digest:
862 description: Digest is the digest of the file in the form of '<algorithm>:<checksum>'.
863 pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$
864 type: string
865 lastUpdateTime:
866 description: |-
867 LastUpdateTime is the timestamp corresponding to the last update of the
868 Artifact.
869 format: date-time
870 type: string
871 metadata:
872 additionalProperties:
873 type: string
874 description: Metadata holds upstream information such as OCI annotations.
875 type: object
876 path:
877 description: |-
878 Path is the relative file path of the Artifact. It can be used to locate
879 the file in the root of the Artifact storage on the local file system of
880 the controller managing the Source.
881 type: string
882 revision:
883 description: |-
884 Revision is a human-readable identifier traceable in the origin source
885 system. It can be a Git commit SHA, Git tag, a Helm chart version, etc.
886 type: string
887 size:
888 description: Size is the number of bytes in the file.
889 format: int64
890 type: integer
891 url:
892 description: |-
893 URL is the HTTP address of the Artifact as exposed by the controller
894 managing the Source. It can be used to retrieve the Artifact for
895 consumption, e.g. by another controller applying the Artifact contents.
896 type: string
897 required:
898 - lastUpdateTime
899 - path
900 - revision
901 - url
902 type: object
903 conditions:
904 description: Conditions holds the conditions for the HelmChart.
905 items:
906 description: "Condition contains details for one aspect of the current
907 state of this API Resource.\n---\nThis struct is intended for
908 direct use as an array at the field path .status.conditions. For
909 example,\n\n\n\ttype FooStatus struct{\n\t // Represents the
910 observations of a foo's current state.\n\t // Known .status.conditions.type
911 are: \"Available\", \"Progressing\", and \"Degraded\"\n\t //
912 +patchMergeKey=type\n\t // +patchStrategy=merge\n\t // +listType=map\n\t
913 \ // +listMapKey=type\n\t Conditions []metav1.Condition `json:\"conditions,omitempty\"
914 patchStrategy:\"merge\" patchMergeKey:\"type\" protobuf:\"bytes,1,rep,name=conditions\"`\n\n\n\t
915 \ // other fields\n\t}"
916 properties:
917 lastTransitionTime:
918 description: |-
919 lastTransitionTime is the last time the condition transitioned from one status to another.
920 This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable.
921 format: date-time
922 type: string
923 message:
924 description: |-
925 message is a human readable message indicating details about the transition.
926 This may be an empty string.
927 maxLength: 32768
928 type: string
929 observedGeneration:
930 description: |-
931 observedGeneration represents the .metadata.generation that the condition was set based upon.
932 For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date
933 with respect to the current state of the instance.
934 format: int64
935 minimum: 0
936 type: integer
937 reason:
938 description: |-
939 reason contains a programmatic identifier indicating the reason for the condition's last transition.
940 Producers of specific condition types may define expected values and meanings for this field,
941 and whether the values are considered a guaranteed API.
942 The value should be a CamelCase string.
943 This field may not be empty.
944 maxLength: 1024
945 minLength: 1
946 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
947 type: string
948 status:
949 description: status of the condition, one of True, False, Unknown.
950 enum:
951 - "True"
952 - "False"
953 - Unknown
954 type: string
955 type:
956 description: |-
957 type of condition in CamelCase or in foo.example.com/CamelCase.
958 ---
959 Many .condition.type values are consistent across resources like Available, but because arbitrary conditions can be
960 useful (see .node.status.conditions), the ability to deconflict is important.
961 The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
962 maxLength: 316
963 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
964 type: string
965 required:
966 - lastTransitionTime
967 - message
968 - reason
969 - status
970 - type
971 type: object
972 type: array
973 lastHandledReconcileAt:
974 description: |-
975 LastHandledReconcileAt holds the value of the most recent
976 reconcile request value, so a change of the annotation value
977 can be detected.
978 type: string
979 observedChartName:
980 description: |-
981 ObservedChartName is the last observed chart name as specified by the
982 resolved chart reference.
983 type: string
984 observedGeneration:
985 description: |-
986 ObservedGeneration is the last observed generation of the HelmChart
987 object.
988 format: int64
989 type: integer
990 observedSourceArtifactRevision:
991 description: |-
992 ObservedSourceArtifactRevision is the last observed Artifact.Revision
993 of the HelmChartSpec.SourceRef.
994 type: string
995 observedValuesFiles:
996 description: |-
997 ObservedValuesFiles are the observed value files of the last successful
998 reconciliation.
999 It matches the chart in the last successfully reconciled artifact.
1000 items:
1001 type: string
1002 type: array
1003 url:
1004 description: |-
1005 URL is the dynamic fetch link for the latest Artifact.
1006 It is provided on a "best effort" basis, and using the precise
1007 BucketStatus.Artifact data is recommended.
1008 type: string
1009 type: object
1010 type: object
1011 served: true
1012 storage: false
1013 subresources:
1014 status: {}
View as plain text