1---
2apiVersion: apiextensions.k8s.io/v1
3kind: CustomResourceDefinition
4metadata:
5 annotations:
6 controller-gen.kubebuilder.io/version: (unknown)
7 name: iamserviceaccountkeys.iam.cnrm.cloud.google.com
8spec:
9 group: iam.cnrm.cloud.google.com
10 names:
11 kind: IAMServiceAccountKey
12 listKind: IAMServiceAccountKeyList
13 plural: iamserviceaccountkeys
14 singular: iamserviceaccountkey
15 scope: Namespaced
16 versions:
17 - name: v1beta1
18 schema:
19 openAPIV3Schema:
20 description: IAMServiceAccountKey is the Schema for the iam API
21 properties:
22 apiVersion:
23 description: |-
24 APIVersion defines the versioned schema of this representation of an object.
25 Servers should convert recognized schemas to the latest internal value, and
26 may reject unrecognized values.
27 More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
28 type: string
29 kind:
30 description: |-
31 Kind is a string value representing the REST resource this object represents.
32 Servers may infer this from the endpoint the client submits requests to.
33 Cannot be updated.
34 In CamelCase.
35 More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
36 type: string
37 metadata:
38 type: object
39 spec:
40 properties:
41 keyAlgorithm:
42 description: 'Immutable. The algorithm used to generate the key, used
43 only on create. KEY_ALG_RSA_2048 is the default algorithm. Valid
44 values are: "KEY_ALG_RSA_1024", "KEY_ALG_RSA_2048".'
45 type: string
46 privateKeyType:
47 description: Immutable.
48 type: string
49 publicKeyData:
50 description: Immutable. A field that allows clients to upload their
51 own public key. If set, use this public key data to create a service
52 account key for given service account. Please note, the expected
53 format for this field is a base64 encoded X509_PEM.
54 type: string
55 publicKeyType:
56 description: Immutable.
57 type: string
58 serviceAccountRef:
59 properties:
60 external:
61 description: The external name of the referenced resource
62 type: string
63 kind:
64 description: Kind of the referent.
65 type: string
66 name:
67 description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'
68 type: string
69 namespace:
70 description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
71 type: string
72 type: object
73 required:
74 - serviceAccountRef
75 type: object
76 status:
77 properties:
78 conditions:
79 description: |-
80 Conditions represent the latest available observations of the
81 IAMServiceAccountKey's current state.
82 items:
83 properties:
84 lastTransitionTime:
85 description: Last time the condition transitioned from one status
86 to another.
87 type: string
88 message:
89 description: Human-readable message indicating details about
90 last transition.
91 type: string
92 reason:
93 description: |-
94 Unique, one-word, CamelCase reason for the condition's last
95 transition.
96 type: string
97 status:
98 description: Status is the status of the condition. Can be True,
99 False, Unknown.
100 type: string
101 type:
102 description: Type is the type of the condition.
103 type: string
104 type: object
105 type: array
106 name:
107 description: Immutable. The name used for this key pair.
108 type: string
109 observedGeneration:
110 description: ObservedGeneration is the generation of the resource
111 that was most recently observed by the Config Connector controller.
112 If this is equal to metadata.generation, then that means that the
113 current reported status reflects the most recent desired state of
114 the resource.
115 type: integer
116 privateKey:
117 description: The private key in JSON format, base64 encoded. This
118 is what you normally get as a file when creating service account
119 keys through the CLI or web console. This is only populated when
120 creating a new key.
121 type: string
122 publicKey:
123 description: Immutable. The public key, base64 encoded.
124 type: string
125 validAfter:
126 description: 'The key can be used after this timestamp. A timestamp
127 in RFC3339 UTC "Zulu" format, accurate to nanoseconds. Example:
128 "2014-10-02T15:01:23.045123456Z".'
129 type: string
130 validBefore:
131 description: 'The key can be used before this timestamp. A timestamp
132 in RFC3339 UTC "Zulu" format, accurate to nanoseconds. Example:
133 "2014-10-02T15:01:23.045123456Z".'
134 type: string
135 type: object
136 type: object
137 served: true
138 storage: true
View as plain text