1---
2apiVersion: apiextensions.k8s.io/v1
3kind: CustomResourceDefinition
4metadata:
5 annotations:
6 controller-gen.kubebuilder.io/version: (unknown)
7 name: sqlusers.sql.cnrm.cloud.google.com
8spec:
9 group: sql.cnrm.cloud.google.com
10 names:
11 kind: SQLUser
12 listKind: SQLUserList
13 plural: sqlusers
14 singular: sqluser
15 scope: Namespaced
16 versions:
17 - name: v1beta1
18 schema:
19 openAPIV3Schema:
20 description: SQLUser is the Schema for the sql API
21 properties:
22 apiVersion:
23 description: |-
24 APIVersion defines the versioned schema of this representation of an object.
25 Servers should convert recognized schemas to the latest internal value, and
26 may reject unrecognized values.
27 More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
28 type: string
29 kind:
30 description: |-
31 Kind is a string value representing the REST resource this object represents.
32 Servers may infer this from the endpoint the client submits requests to.
33 Cannot be updated.
34 In CamelCase.
35 More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
36 type: string
37 metadata:
38 type: object
39 spec:
40 properties:
41 host:
42 description: Immutable. The host the user can connect from. This is
43 only supported for MySQL instances. Don't set this field for PostgreSQL
44 instances. Can be an IP address. Changing this forces a new resource
45 to be created.
46 type: string
47 instanceRef:
48 properties:
49 external:
50 description: The external name of the referenced resource
51 type: string
52 kind:
53 description: Kind of the referent.
54 type: string
55 name:
56 description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'
57 type: string
58 namespace:
59 description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
60 type: string
61 type: object
62 password:
63 description: |-
64 The password for the user. Can be updated. For Postgres instances this is a Required field, unless type is set to
65 either CLOUD_IAM_USER or CLOUD_IAM_SERVICE_ACCOUNT.
66 properties:
67 value:
68 description: Value of the field. Cannot be used if 'valueFrom'
69 is specified.
70 type: string
71 valueFrom:
72 description: Source for the field's value. Cannot be used if 'value'
73 is specified.
74 properties:
75 secretKeyRef:
76 description: Reference to a value with the given key in the
77 given Secret in the resource's namespace.
78 properties:
79 external:
80 description: The external name of the referenced resource
81 type: string
82 kind:
83 description: Kind of the referent.
84 type: string
85 name:
86 description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'
87 type: string
88 namespace:
89 description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
90 type: string
91 type: object
92 type: object
93 type: object
94 passwordPolicy:
95 properties:
96 allowedFailedAttempts:
97 description: Number of failed attempts allowed before the user
98 get locked.
99 type: integer
100 enableFailedAttemptsCheck:
101 description: If true, the check that will lock user after too
102 many failed login attempts will be enabled.
103 type: boolean
104 enablePasswordVerification:
105 description: If true, the user must specify the current password
106 before changing the password. This flag is supported only for
107 MySQL.
108 type: boolean
109 passwordExpirationDuration:
110 description: Password expiration duration with one week grace
111 period.
112 type: string
113 status:
114 items:
115 properties:
116 locked:
117 description: If true, user does not have login privileges.
118 type: boolean
119 passwordExpirationTime:
120 description: Password expiration duration with one week
121 grace period.
122 type: string
123 type: object
124 type: array
125 type: object
126 resourceID:
127 description: Immutable. Optional. The name of the resource. Used for
128 creation and acquisition. When unset, the value of `metadata.name`
129 is used as the default.
130 type: string
131 type:
132 description: |-
133 Immutable. The user type. It determines the method to authenticate the user during login.
134 The default is the database's built-in user type. Flags include "BUILT_IN", "CLOUD_IAM_USER", or "CLOUD_IAM_SERVICE_ACCOUNT".
135 type: string
136 required:
137 - instanceRef
138 type: object
139 status:
140 properties:
141 conditions:
142 description: |-
143 Conditions represent the latest available observations of the
144 SQLUser's current state.
145 items:
146 properties:
147 lastTransitionTime:
148 description: Last time the condition transitioned from one status
149 to another.
150 type: string
151 message:
152 description: Human-readable message indicating details about
153 last transition.
154 type: string
155 reason:
156 description: |-
157 Unique, one-word, CamelCase reason for the condition's last
158 transition.
159 type: string
160 status:
161 description: Status is the status of the condition. Can be True,
162 False, Unknown.
163 type: string
164 type:
165 description: Type is the type of the condition.
166 type: string
167 type: object
168 type: array
169 observedGeneration:
170 description: ObservedGeneration is the generation of the resource
171 that was most recently observed by the Config Connector controller.
172 If this is equal to metadata.generation, then that means that the
173 current reported status reflects the most recent desired state of
174 the resource.
175 type: integer
176 sqlServerUserDetails:
177 items:
178 properties:
179 disabled:
180 description: If the user has been disabled.
181 type: boolean
182 serverRoles:
183 description: The server roles for this user in the database.
184 items:
185 type: string
186 type: array
187 type: object
188 type: array
189 type: object
190 type: object
191 served: true
192 storage: true
View as plain text