1apiVersion: apiextensions.k8s.io/v1
2kind: CustomResourceDefinition
3metadata:
4 annotations:
5 controller-gen.kubebuilder.io/version: v0.16.1
6 labels:
7 app.kubernetes.io/component: kustomize-controller
8 app.kubernetes.io/part-of: flux
9 name: kustomizations.kustomize.toolkit.fluxcd.io
10spec:
11 group: kustomize.toolkit.fluxcd.io
12 names:
13 kind: Kustomization
14 listKind: KustomizationList
15 plural: kustomizations
16 shortNames:
17 - ks
18 singular: kustomization
19 scope: Namespaced
20 versions:
21 - additionalPrinterColumns:
22 - jsonPath: .metadata.creationTimestamp
23 name: Age
24 type: date
25 - jsonPath: .status.conditions[?(@.type=="Ready")].status
26 name: Ready
27 type: string
28 - jsonPath: .status.conditions[?(@.type=="Ready")].message
29 name: Status
30 type: string
31 name: v1
32 schema:
33 openAPIV3Schema:
34 description: Kustomization is the Schema for the kustomizations API.
35 properties:
36 apiVersion:
37 description: |-
38 APIVersion defines the versioned schema of this representation of an object.
39 Servers should convert recognized schemas to the latest internal value, and
40 may reject unrecognized values.
41 More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
42 type: string
43 kind:
44 description: |-
45 Kind is a string value representing the REST resource this object represents.
46 Servers may infer this from the endpoint the client submits requests to.
47 Cannot be updated.
48 In CamelCase.
49 More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
50 type: string
51 metadata:
52 type: object
53 spec:
54 description: |-
55 KustomizationSpec defines the configuration to calculate the desired state
56 from a Source using Kustomize.
57 properties:
58 commonMetadata:
59 description: |-
60 CommonMetadata specifies the common labels and annotations that are
61 applied to all resources. Any existing label or annotation will be
62 overridden if its key matches a common one.
63 properties:
64 annotations:
65 additionalProperties:
66 type: string
67 description: Annotations to be added to the object's metadata.
68 type: object
69 labels:
70 additionalProperties:
71 type: string
72 description: Labels to be added to the object's metadata.
73 type: object
74 type: object
75 components:
76 description: Components specifies relative paths to specifications
77 of other Components.
78 items:
79 type: string
80 type: array
81 decryption:
82 description: Decrypt Kubernetes secrets before applying them on the
83 cluster.
84 properties:
85 provider:
86 description: Provider is the name of the decryption engine.
87 enum:
88 - sops
89 type: string
90 secretRef:
91 description: The secret name containing the private OpenPGP keys
92 used for decryption.
93 properties:
94 name:
95 description: Name of the referent.
96 type: string
97 required:
98 - name
99 type: object
100 required:
101 - provider
102 type: object
103 dependsOn:
104 description: |-
105 DependsOn may contain a meta.NamespacedObjectReference slice
106 with references to Kustomization resources that must be ready before this
107 Kustomization can be reconciled.
108 items:
109 description: |-
110 NamespacedObjectReference contains enough information to locate the referenced Kubernetes resource object in any
111 namespace.
112 properties:
113 name:
114 description: Name of the referent.
115 type: string
116 namespace:
117 description: Namespace of the referent, when not specified it
118 acts as LocalObjectReference.
119 type: string
120 required:
121 - name
122 type: object
123 type: array
124 force:
125 default: false
126 description: |-
127 Force instructs the controller to recreate resources
128 when patching fails due to an immutable field change.
129 type: boolean
130 healthChecks:
131 description: A list of resources to be included in the health assessment.
132 items:
133 description: |-
134 NamespacedObjectKindReference contains enough information to locate the typed referenced Kubernetes resource object
135 in any namespace.
136 properties:
137 apiVersion:
138 description: API version of the referent, if not specified the
139 Kubernetes preferred version will be used.
140 type: string
141 kind:
142 description: Kind of the referent.
143 type: string
144 name:
145 description: Name of the referent.
146 type: string
147 namespace:
148 description: Namespace of the referent, when not specified it
149 acts as LocalObjectReference.
150 type: string
151 required:
152 - kind
153 - name
154 type: object
155 type: array
156 images:
157 description: |-
158 Images is a list of (image name, new name, new tag or digest)
159 for changing image names, tags or digests. This can also be achieved with a
160 patch, but this operator is simpler to specify.
161 items:
162 description: Image contains an image name, a new name, a new tag
163 or digest, which will replace the original name and tag.
164 properties:
165 digest:
166 description: |-
167 Digest is the value used to replace the original image tag.
168 If digest is present NewTag value is ignored.
169 type: string
170 name:
171 description: Name is a tag-less image name.
172 type: string
173 newName:
174 description: NewName is the value used to replace the original
175 name.
176 type: string
177 newTag:
178 description: NewTag is the value used to replace the original
179 tag.
180 type: string
181 required:
182 - name
183 type: object
184 type: array
185 interval:
186 description: |-
187 The interval at which to reconcile the Kustomization.
188 This interval is approximate and may be subject to jitter to ensure
189 efficient use of resources.
190 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
191 type: string
192 kubeConfig:
193 description: |-
194 The KubeConfig for reconciling the Kustomization on a remote cluster.
195 When used in combination with KustomizationSpec.ServiceAccountName,
196 forces the controller to act on behalf of that Service Account at the
197 target cluster.
198 If the --default-service-account flag is set, its value will be used as
199 a controller level fallback for when KustomizationSpec.ServiceAccountName
200 is empty.
201 properties:
202 secretRef:
203 description: |-
204 SecretRef holds the name of a secret that contains a key with
205 the kubeconfig file as the value. If no key is set, the key will default
206 to 'value'.
207 It is recommended that the kubeconfig is self-contained, and the secret
208 is regularly updated if credentials such as a cloud-access-token expire.
209 Cloud specific `cmd-path` auth helpers will not function without adding
210 binaries and credentials to the Pod that is responsible for reconciling
211 Kubernetes resources.
212 properties:
213 key:
214 description: Key in the Secret, when not specified an implementation-specific
215 default key is used.
216 type: string
217 name:
218 description: Name of the Secret.
219 type: string
220 required:
221 - name
222 type: object
223 required:
224 - secretRef
225 type: object
226 namePrefix:
227 description: NamePrefix will prefix the names of all managed resources.
228 maxLength: 200
229 minLength: 1
230 type: string
231 nameSuffix:
232 description: NameSuffix will suffix the names of all managed resources.
233 maxLength: 200
234 minLength: 1
235 type: string
236 patches:
237 description: |-
238 Strategic merge and JSON patches, defined as inline YAML objects,
239 capable of targeting objects based on kind, label and annotation selectors.
240 items:
241 description: |-
242 Patch contains an inline StrategicMerge or JSON6902 patch, and the target the patch should
243 be applied to.
244 properties:
245 patch:
246 description: |-
247 Patch contains an inline StrategicMerge patch or an inline JSON6902 patch with
248 an array of operation objects.
249 type: string
250 target:
251 description: Target points to the resources that the patch document
252 should be applied to.
253 properties:
254 annotationSelector:
255 description: |-
256 AnnotationSelector is a string that follows the label selection expression
257 https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
258 It matches with the resource annotations.
259 type: string
260 group:
261 description: |-
262 Group is the API group to select resources from.
263 Together with Version and Kind it is capable of unambiguously identifying and/or selecting resources.
264 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
265 type: string
266 kind:
267 description: |-
268 Kind of the API Group to select resources from.
269 Together with Group and Version it is capable of unambiguously
270 identifying and/or selecting resources.
271 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
272 type: string
273 labelSelector:
274 description: |-
275 LabelSelector is a string that follows the label selection expression
276 https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
277 It matches with the resource labels.
278 type: string
279 name:
280 description: Name to match resources with.
281 type: string
282 namespace:
283 description: Namespace to select resources from.
284 type: string
285 version:
286 description: |-
287 Version of the API Group to select resources from.
288 Together with Group and Kind it is capable of unambiguously identifying and/or selecting resources.
289 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
290 type: string
291 type: object
292 required:
293 - patch
294 type: object
295 type: array
296 path:
297 description: |-
298 Path to the directory containing the kustomization.yaml file, or the
299 set of plain YAMLs a kustomization.yaml should be generated for.
300 Defaults to 'None', which translates to the root path of the SourceRef.
301 type: string
302 postBuild:
303 description: |-
304 PostBuild describes which actions to perform on the YAML manifest
305 generated by building the kustomize overlay.
306 properties:
307 substitute:
308 additionalProperties:
309 type: string
310 description: |-
311 Substitute holds a map of key/value pairs.
312 The variables defined in your YAML manifests that match any of the keys
313 defined in the map will be substituted with the set value.
314 Includes support for bash string replacement functions
315 e.g. ${var:=default}, ${var:position} and ${var/substring/replacement}.
316 type: object
317 substituteFrom:
318 description: |-
319 SubstituteFrom holds references to ConfigMaps and Secrets containing
320 the variables and their values to be substituted in the YAML manifests.
321 The ConfigMap and the Secret data keys represent the var names, and they
322 must match the vars declared in the manifests for the substitution to
323 happen.
324 items:
325 description: |-
326 SubstituteReference contains a reference to a resource containing
327 the variables name and value.
328 properties:
329 kind:
330 description: Kind of the values referent, valid values are
331 ('Secret', 'ConfigMap').
332 enum:
333 - Secret
334 - ConfigMap
335 type: string
336 name:
337 description: |-
338 Name of the values referent. Should reside in the same namespace as the
339 referring resource.
340 maxLength: 253
341 minLength: 1
342 type: string
343 optional:
344 default: false
345 description: |-
346 Optional indicates whether the referenced resource must exist, or whether to
347 tolerate its absence. If true and the referenced resource is absent, proceed
348 as if the resource was present but empty, without any variables defined.
349 type: boolean
350 required:
351 - kind
352 - name
353 type: object
354 type: array
355 type: object
356 prune:
357 description: Prune enables garbage collection.
358 type: boolean
359 retryInterval:
360 description: |-
361 The interval at which to retry a previously failed reconciliation.
362 When not specified, the controller uses the KustomizationSpec.Interval
363 value to retry failures.
364 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
365 type: string
366 serviceAccountName:
367 description: |-
368 The name of the Kubernetes service account to impersonate
369 when reconciling this Kustomization.
370 type: string
371 sourceRef:
372 description: Reference of the source where the kustomization file
373 is.
374 properties:
375 apiVersion:
376 description: API version of the referent.
377 type: string
378 kind:
379 description: Kind of the referent.
380 enum:
381 - OCIRepository
382 - GitRepository
383 - Bucket
384 type: string
385 name:
386 description: Name of the referent.
387 type: string
388 namespace:
389 description: |-
390 Namespace of the referent, defaults to the namespace of the Kubernetes
391 resource object that contains the reference.
392 type: string
393 required:
394 - kind
395 - name
396 type: object
397 suspend:
398 description: |-
399 This flag tells the controller to suspend subsequent kustomize executions,
400 it does not apply to already started executions. Defaults to false.
401 type: boolean
402 targetNamespace:
403 description: |-
404 TargetNamespace sets or overrides the namespace in the
405 kustomization.yaml file.
406 maxLength: 63
407 minLength: 1
408 type: string
409 timeout:
410 description: |-
411 Timeout for validation, apply and health checking operations.
412 Defaults to 'Interval' duration.
413 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
414 type: string
415 wait:
416 description: |-
417 Wait instructs the controller to check the health of all the reconciled
418 resources. When enabled, the HealthChecks are ignored. Defaults to false.
419 type: boolean
420 required:
421 - interval
422 - prune
423 - sourceRef
424 type: object
425 status:
426 default:
427 observedGeneration: -1
428 description: KustomizationStatus defines the observed state of a kustomization.
429 properties:
430 conditions:
431 items:
432 description: Condition contains details for one aspect of the current
433 state of this API Resource.
434 properties:
435 lastTransitionTime:
436 description: |-
437 lastTransitionTime is the last time the condition transitioned from one status to another.
438 This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable.
439 format: date-time
440 type: string
441 message:
442 description: |-
443 message is a human readable message indicating details about the transition.
444 This may be an empty string.
445 maxLength: 32768
446 type: string
447 observedGeneration:
448 description: |-
449 observedGeneration represents the .metadata.generation that the condition was set based upon.
450 For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date
451 with respect to the current state of the instance.
452 format: int64
453 minimum: 0
454 type: integer
455 reason:
456 description: |-
457 reason contains a programmatic identifier indicating the reason for the condition's last transition.
458 Producers of specific condition types may define expected values and meanings for this field,
459 and whether the values are considered a guaranteed API.
460 The value should be a CamelCase string.
461 This field may not be empty.
462 maxLength: 1024
463 minLength: 1
464 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
465 type: string
466 status:
467 description: status of the condition, one of True, False, Unknown.
468 enum:
469 - "True"
470 - "False"
471 - Unknown
472 type: string
473 type:
474 description: type of condition in CamelCase or in foo.example.com/CamelCase.
475 maxLength: 316
476 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
477 type: string
478 required:
479 - lastTransitionTime
480 - message
481 - reason
482 - status
483 - type
484 type: object
485 type: array
486 inventory:
487 description: |-
488 Inventory contains the list of Kubernetes resource object references that
489 have been successfully applied.
490 properties:
491 entries:
492 description: Entries of Kubernetes resource object references.
493 items:
494 description: ResourceRef contains the information necessary
495 to locate a resource within a cluster.
496 properties:
497 id:
498 description: |-
499 ID is the string representation of the Kubernetes resource object's metadata,
500 in the format '<namespace>_<name>_<group>_<kind>'.
501 type: string
502 v:
503 description: Version is the API version of the Kubernetes
504 resource object's kind.
505 type: string
506 required:
507 - id
508 - v
509 type: object
510 type: array
511 required:
512 - entries
513 type: object
514 lastAppliedRevision:
515 description: |-
516 The last successfully applied revision.
517 Equals the Revision of the applied Artifact from the referenced Source.
518 type: string
519 lastAttemptedRevision:
520 description: LastAttemptedRevision is the revision of the last reconciliation
521 attempt.
522 type: string
523 lastHandledReconcileAt:
524 description: |-
525 LastHandledReconcileAt holds the value of the most recent
526 reconcile request value, so a change of the annotation value
527 can be detected.
528 type: string
529 observedGeneration:
530 description: ObservedGeneration is the last reconciled generation.
531 format: int64
532 type: integer
533 type: object
534 type: object
535 served: true
536 storage: true
537 subresources:
538 status: {}
539 - additionalPrinterColumns:
540 - jsonPath: .status.conditions[?(@.type=="Ready")].status
541 name: Ready
542 type: string
543 - jsonPath: .status.conditions[?(@.type=="Ready")].message
544 name: Status
545 type: string
546 - jsonPath: .metadata.creationTimestamp
547 name: Age
548 type: date
549 deprecated: true
550 deprecationWarning: v1beta1 Kustomization is deprecated, upgrade to v1
551 name: v1beta1
552 schema:
553 openAPIV3Schema:
554 description: Kustomization is the Schema for the kustomizations API.
555 properties:
556 apiVersion:
557 description: |-
558 APIVersion defines the versioned schema of this representation of an object.
559 Servers should convert recognized schemas to the latest internal value, and
560 may reject unrecognized values.
561 More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
562 type: string
563 kind:
564 description: |-
565 Kind is a string value representing the REST resource this object represents.
566 Servers may infer this from the endpoint the client submits requests to.
567 Cannot be updated.
568 In CamelCase.
569 More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
570 type: string
571 metadata:
572 type: object
573 spec:
574 description: KustomizationSpec defines the desired state of a kustomization.
575 properties:
576 decryption:
577 description: Decrypt Kubernetes secrets before applying them on the
578 cluster.
579 properties:
580 provider:
581 description: Provider is the name of the decryption engine.
582 enum:
583 - sops
584 type: string
585 secretRef:
586 description: The secret name containing the private OpenPGP keys
587 used for decryption.
588 properties:
589 name:
590 description: Name of the referent.
591 type: string
592 required:
593 - name
594 type: object
595 required:
596 - provider
597 type: object
598 dependsOn:
599 description: |-
600 DependsOn may contain a meta.NamespacedObjectReference slice
601 with references to Kustomization resources that must be ready before this
602 Kustomization can be reconciled.
603 items:
604 description: |-
605 NamespacedObjectReference contains enough information to locate the referenced Kubernetes resource object in any
606 namespace.
607 properties:
608 name:
609 description: Name of the referent.
610 type: string
611 namespace:
612 description: Namespace of the referent, when not specified it
613 acts as LocalObjectReference.
614 type: string
615 required:
616 - name
617 type: object
618 type: array
619 force:
620 default: false
621 description: |-
622 Force instructs the controller to recreate resources
623 when patching fails due to an immutable field change.
624 type: boolean
625 healthChecks:
626 description: A list of resources to be included in the health assessment.
627 items:
628 description: |-
629 NamespacedObjectKindReference contains enough information to locate the typed referenced Kubernetes resource object
630 in any namespace.
631 properties:
632 apiVersion:
633 description: API version of the referent, if not specified the
634 Kubernetes preferred version will be used.
635 type: string
636 kind:
637 description: Kind of the referent.
638 type: string
639 name:
640 description: Name of the referent.
641 type: string
642 namespace:
643 description: Namespace of the referent, when not specified it
644 acts as LocalObjectReference.
645 type: string
646 required:
647 - kind
648 - name
649 type: object
650 type: array
651 images:
652 description: |-
653 Images is a list of (image name, new name, new tag or digest)
654 for changing image names, tags or digests. This can also be achieved with a
655 patch, but this operator is simpler to specify.
656 items:
657 description: Image contains an image name, a new name, a new tag
658 or digest, which will replace the original name and tag.
659 properties:
660 digest:
661 description: |-
662 Digest is the value used to replace the original image tag.
663 If digest is present NewTag value is ignored.
664 type: string
665 name:
666 description: Name is a tag-less image name.
667 type: string
668 newName:
669 description: NewName is the value used to replace the original
670 name.
671 type: string
672 newTag:
673 description: NewTag is the value used to replace the original
674 tag.
675 type: string
676 required:
677 - name
678 type: object
679 type: array
680 interval:
681 description: The interval at which to reconcile the Kustomization.
682 type: string
683 kubeConfig:
684 description: |-
685 The KubeConfig for reconciling the Kustomization on a remote cluster.
686 When specified, KubeConfig takes precedence over ServiceAccountName.
687 properties:
688 secretRef:
689 description: |-
690 SecretRef holds the name to a secret that contains a 'value' key with
691 the kubeconfig file as the value. It must be in the same namespace as
692 the Kustomization.
693 It is recommended that the kubeconfig is self-contained, and the secret
694 is regularly updated if credentials such as a cloud-access-token expire.
695 Cloud specific `cmd-path` auth helpers will not function without adding
696 binaries and credentials to the Pod that is responsible for reconciling
697 the Kustomization.
698 properties:
699 name:
700 description: Name of the referent.
701 type: string
702 required:
703 - name
704 type: object
705 required:
706 - secretRef
707 type: object
708 patches:
709 description: |-
710 Strategic merge and JSON patches, defined as inline YAML objects,
711 capable of targeting objects based on kind, label and annotation selectors.
712 items:
713 description: |-
714 Patch contains an inline StrategicMerge or JSON6902 patch, and the target the patch should
715 be applied to.
716 properties:
717 patch:
718 description: |-
719 Patch contains an inline StrategicMerge patch or an inline JSON6902 patch with
720 an array of operation objects.
721 type: string
722 target:
723 description: Target points to the resources that the patch document
724 should be applied to.
725 properties:
726 annotationSelector:
727 description: |-
728 AnnotationSelector is a string that follows the label selection expression
729 https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
730 It matches with the resource annotations.
731 type: string
732 group:
733 description: |-
734 Group is the API group to select resources from.
735 Together with Version and Kind it is capable of unambiguously identifying and/or selecting resources.
736 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
737 type: string
738 kind:
739 description: |-
740 Kind of the API Group to select resources from.
741 Together with Group and Version it is capable of unambiguously
742 identifying and/or selecting resources.
743 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
744 type: string
745 labelSelector:
746 description: |-
747 LabelSelector is a string that follows the label selection expression
748 https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
749 It matches with the resource labels.
750 type: string
751 name:
752 description: Name to match resources with.
753 type: string
754 namespace:
755 description: Namespace to select resources from.
756 type: string
757 version:
758 description: |-
759 Version of the API Group to select resources from.
760 Together with Group and Kind it is capable of unambiguously identifying and/or selecting resources.
761 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
762 type: string
763 type: object
764 required:
765 - patch
766 type: object
767 type: array
768 patchesJson6902:
769 description: JSON 6902 patches, defined as inline YAML objects.
770 items:
771 description: JSON6902Patch contains a JSON6902 patch and the target
772 the patch should be applied to.
773 properties:
774 patch:
775 description: Patch contains the JSON6902 patch document with
776 an array of operation objects.
777 items:
778 description: |-
779 JSON6902 is a JSON6902 operation object.
780 https://datatracker.ietf.org/doc/html/rfc6902#section-4
781 properties:
782 from:
783 description: |-
784 From contains a JSON-pointer value that references a location within the target document where the operation is
785 performed. The meaning of the value depends on the value of Op, and is NOT taken into account by all operations.
786 type: string
787 op:
788 description: |-
789 Op indicates the operation to perform. Its value MUST be one of "add", "remove", "replace", "move", "copy", or
790 "test".
791 https://datatracker.ietf.org/doc/html/rfc6902#section-4
792 enum:
793 - test
794 - remove
795 - add
796 - replace
797 - move
798 - copy
799 type: string
800 path:
801 description: |-
802 Path contains the JSON-pointer value that references a location within the target document where the operation
803 is performed. The meaning of the value depends on the value of Op.
804 type: string
805 value:
806 description: |-
807 Value contains a valid JSON structure. The meaning of the value depends on the value of Op, and is NOT taken into
808 account by all operations.
809 x-kubernetes-preserve-unknown-fields: true
810 required:
811 - op
812 - path
813 type: object
814 type: array
815 target:
816 description: Target points to the resources that the patch document
817 should be applied to.
818 properties:
819 annotationSelector:
820 description: |-
821 AnnotationSelector is a string that follows the label selection expression
822 https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
823 It matches with the resource annotations.
824 type: string
825 group:
826 description: |-
827 Group is the API group to select resources from.
828 Together with Version and Kind it is capable of unambiguously identifying and/or selecting resources.
829 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
830 type: string
831 kind:
832 description: |-
833 Kind of the API Group to select resources from.
834 Together with Group and Version it is capable of unambiguously
835 identifying and/or selecting resources.
836 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
837 type: string
838 labelSelector:
839 description: |-
840 LabelSelector is a string that follows the label selection expression
841 https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
842 It matches with the resource labels.
843 type: string
844 name:
845 description: Name to match resources with.
846 type: string
847 namespace:
848 description: Namespace to select resources from.
849 type: string
850 version:
851 description: |-
852 Version of the API Group to select resources from.
853 Together with Group and Kind it is capable of unambiguously identifying and/or selecting resources.
854 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
855 type: string
856 type: object
857 required:
858 - patch
859 - target
860 type: object
861 type: array
862 patchesStrategicMerge:
863 description: Strategic merge patches, defined as inline YAML objects.
864 items:
865 x-kubernetes-preserve-unknown-fields: true
866 type: array
867 path:
868 description: |-
869 Path to the directory containing the kustomization.yaml file, or the
870 set of plain YAMLs a kustomization.yaml should be generated for.
871 Defaults to 'None', which translates to the root path of the SourceRef.
872 type: string
873 postBuild:
874 description: |-
875 PostBuild describes which actions to perform on the YAML manifest
876 generated by building the kustomize overlay.
877 properties:
878 substitute:
879 additionalProperties:
880 type: string
881 description: |-
882 Substitute holds a map of key/value pairs.
883 The variables defined in your YAML manifests
884 that match any of the keys defined in the map
885 will be substituted with the set value.
886 Includes support for bash string replacement functions
887 e.g. ${var:=default}, ${var:position} and ${var/substring/replacement}.
888 type: object
889 substituteFrom:
890 description: |-
891 SubstituteFrom holds references to ConfigMaps and Secrets containing
892 the variables and their values to be substituted in the YAML manifests.
893 The ConfigMap and the Secret data keys represent the var names and they
894 must match the vars declared in the manifests for the substitution to happen.
895 items:
896 description: |-
897 SubstituteReference contains a reference to a resource containing
898 the variables name and value.
899 properties:
900 kind:
901 description: Kind of the values referent, valid values are
902 ('Secret', 'ConfigMap').
903 enum:
904 - Secret
905 - ConfigMap
906 type: string
907 name:
908 description: |-
909 Name of the values referent. Should reside in the same namespace as the
910 referring resource.
911 maxLength: 253
912 minLength: 1
913 type: string
914 required:
915 - kind
916 - name
917 type: object
918 type: array
919 type: object
920 prune:
921 description: Prune enables garbage collection.
922 type: boolean
923 retryInterval:
924 description: |-
925 The interval at which to retry a previously failed reconciliation.
926 When not specified, the controller uses the KustomizationSpec.Interval
927 value to retry failures.
928 type: string
929 serviceAccountName:
930 description: |-
931 The name of the Kubernetes service account to impersonate
932 when reconciling this Kustomization.
933 type: string
934 sourceRef:
935 description: Reference of the source where the kustomization file
936 is.
937 properties:
938 apiVersion:
939 description: API version of the referent
940 type: string
941 kind:
942 description: Kind of the referent
943 enum:
944 - GitRepository
945 - Bucket
946 type: string
947 name:
948 description: Name of the referent
949 type: string
950 namespace:
951 description: Namespace of the referent, defaults to the Kustomization
952 namespace
953 type: string
954 required:
955 - kind
956 - name
957 type: object
958 suspend:
959 description: |-
960 This flag tells the controller to suspend subsequent kustomize executions,
961 it does not apply to already started executions. Defaults to false.
962 type: boolean
963 targetNamespace:
964 description: |-
965 TargetNamespace sets or overrides the namespace in the
966 kustomization.yaml file.
967 maxLength: 63
968 minLength: 1
969 type: string
970 timeout:
971 description: |-
972 Timeout for validation, apply and health checking operations.
973 Defaults to 'Interval' duration.
974 type: string
975 validation:
976 description: |-
977 Validate the Kubernetes objects before applying them on the cluster.
978 The validation strategy can be 'client' (local dry-run), 'server'
979 (APIServer dry-run) or 'none'.
980 When 'Force' is 'true', validation will fallback to 'client' if set to
981 'server' because server-side validation is not supported in this scenario.
982 enum:
983 - none
984 - client
985 - server
986 type: string
987 required:
988 - interval
989 - prune
990 - sourceRef
991 type: object
992 status:
993 default:
994 observedGeneration: -1
995 description: KustomizationStatus defines the observed state of a kustomization.
996 properties:
997 conditions:
998 items:
999 description: Condition contains details for one aspect of the current
1000 state of this API Resource.
1001 properties:
1002 lastTransitionTime:
1003 description: |-
1004 lastTransitionTime is the last time the condition transitioned from one status to another.
1005 This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable.
1006 format: date-time
1007 type: string
1008 message:
1009 description: |-
1010 message is a human readable message indicating details about the transition.
1011 This may be an empty string.
1012 maxLength: 32768
1013 type: string
1014 observedGeneration:
1015 description: |-
1016 observedGeneration represents the .metadata.generation that the condition was set based upon.
1017 For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date
1018 with respect to the current state of the instance.
1019 format: int64
1020 minimum: 0
1021 type: integer
1022 reason:
1023 description: |-
1024 reason contains a programmatic identifier indicating the reason for the condition's last transition.
1025 Producers of specific condition types may define expected values and meanings for this field,
1026 and whether the values are considered a guaranteed API.
1027 The value should be a CamelCase string.
1028 This field may not be empty.
1029 maxLength: 1024
1030 minLength: 1
1031 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
1032 type: string
1033 status:
1034 description: status of the condition, one of True, False, Unknown.
1035 enum:
1036 - "True"
1037 - "False"
1038 - Unknown
1039 type: string
1040 type:
1041 description: type of condition in CamelCase or in foo.example.com/CamelCase.
1042 maxLength: 316
1043 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
1044 type: string
1045 required:
1046 - lastTransitionTime
1047 - message
1048 - reason
1049 - status
1050 - type
1051 type: object
1052 type: array
1053 lastAppliedRevision:
1054 description: |-
1055 The last successfully applied revision.
1056 The revision format for Git sources is <branch|tag>/<commit-sha>.
1057 type: string
1058 lastAttemptedRevision:
1059 description: LastAttemptedRevision is the revision of the last reconciliation
1060 attempt.
1061 type: string
1062 lastHandledReconcileAt:
1063 description: |-
1064 LastHandledReconcileAt holds the value of the most recent
1065 reconcile request value, so a change of the annotation value
1066 can be detected.
1067 type: string
1068 observedGeneration:
1069 description: ObservedGeneration is the last reconciled generation.
1070 format: int64
1071 type: integer
1072 snapshot:
1073 description: The last successfully applied revision metadata.
1074 properties:
1075 checksum:
1076 description: The manifests sha1 checksum.
1077 type: string
1078 entries:
1079 description: A list of Kubernetes kinds grouped by namespace.
1080 items:
1081 description: |-
1082 Snapshot holds the metadata of namespaced
1083 Kubernetes objects
1084 properties:
1085 kinds:
1086 additionalProperties:
1087 type: string
1088 description: The list of Kubernetes kinds.
1089 type: object
1090 namespace:
1091 description: The namespace of this entry.
1092 type: string
1093 required:
1094 - kinds
1095 type: object
1096 type: array
1097 required:
1098 - checksum
1099 - entries
1100 type: object
1101 type: object
1102 type: object
1103 served: true
1104 storage: false
1105 subresources:
1106 status: {}
1107 - additionalPrinterColumns:
1108 - jsonPath: .metadata.creationTimestamp
1109 name: Age
1110 type: date
1111 - jsonPath: .status.conditions[?(@.type=="Ready")].status
1112 name: Ready
1113 type: string
1114 - jsonPath: .status.conditions[?(@.type=="Ready")].message
1115 name: Status
1116 type: string
1117 deprecated: true
1118 deprecationWarning: v1beta2 Kustomization is deprecated, upgrade to v1
1119 name: v1beta2
1120 schema:
1121 openAPIV3Schema:
1122 description: Kustomization is the Schema for the kustomizations API.
1123 properties:
1124 apiVersion:
1125 description: |-
1126 APIVersion defines the versioned schema of this representation of an object.
1127 Servers should convert recognized schemas to the latest internal value, and
1128 may reject unrecognized values.
1129 More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
1130 type: string
1131 kind:
1132 description: |-
1133 Kind is a string value representing the REST resource this object represents.
1134 Servers may infer this from the endpoint the client submits requests to.
1135 Cannot be updated.
1136 In CamelCase.
1137 More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
1138 type: string
1139 metadata:
1140 type: object
1141 spec:
1142 description: KustomizationSpec defines the configuration to calculate
1143 the desired state from a Source using Kustomize.
1144 properties:
1145 commonMetadata:
1146 description: |-
1147 CommonMetadata specifies the common labels and annotations that are applied to all resources.
1148 Any existing label or annotation will be overridden if its key matches a common one.
1149 properties:
1150 annotations:
1151 additionalProperties:
1152 type: string
1153 description: Annotations to be added to the object's metadata.
1154 type: object
1155 labels:
1156 additionalProperties:
1157 type: string
1158 description: Labels to be added to the object's metadata.
1159 type: object
1160 type: object
1161 components:
1162 description: Components specifies relative paths to specifications
1163 of other Components.
1164 items:
1165 type: string
1166 type: array
1167 decryption:
1168 description: Decrypt Kubernetes secrets before applying them on the
1169 cluster.
1170 properties:
1171 provider:
1172 description: Provider is the name of the decryption engine.
1173 enum:
1174 - sops
1175 type: string
1176 secretRef:
1177 description: The secret name containing the private OpenPGP keys
1178 used for decryption.
1179 properties:
1180 name:
1181 description: Name of the referent.
1182 type: string
1183 required:
1184 - name
1185 type: object
1186 required:
1187 - provider
1188 type: object
1189 dependsOn:
1190 description: |-
1191 DependsOn may contain a meta.NamespacedObjectReference slice
1192 with references to Kustomization resources that must be ready before this
1193 Kustomization can be reconciled.
1194 items:
1195 description: |-
1196 NamespacedObjectReference contains enough information to locate the referenced Kubernetes resource object in any
1197 namespace.
1198 properties:
1199 name:
1200 description: Name of the referent.
1201 type: string
1202 namespace:
1203 description: Namespace of the referent, when not specified it
1204 acts as LocalObjectReference.
1205 type: string
1206 required:
1207 - name
1208 type: object
1209 type: array
1210 force:
1211 default: false
1212 description: |-
1213 Force instructs the controller to recreate resources
1214 when patching fails due to an immutable field change.
1215 type: boolean
1216 healthChecks:
1217 description: A list of resources to be included in the health assessment.
1218 items:
1219 description: |-
1220 NamespacedObjectKindReference contains enough information to locate the typed referenced Kubernetes resource object
1221 in any namespace.
1222 properties:
1223 apiVersion:
1224 description: API version of the referent, if not specified the
1225 Kubernetes preferred version will be used.
1226 type: string
1227 kind:
1228 description: Kind of the referent.
1229 type: string
1230 name:
1231 description: Name of the referent.
1232 type: string
1233 namespace:
1234 description: Namespace of the referent, when not specified it
1235 acts as LocalObjectReference.
1236 type: string
1237 required:
1238 - kind
1239 - name
1240 type: object
1241 type: array
1242 images:
1243 description: |-
1244 Images is a list of (image name, new name, new tag or digest)
1245 for changing image names, tags or digests. This can also be achieved with a
1246 patch, but this operator is simpler to specify.
1247 items:
1248 description: Image contains an image name, a new name, a new tag
1249 or digest, which will replace the original name and tag.
1250 properties:
1251 digest:
1252 description: |-
1253 Digest is the value used to replace the original image tag.
1254 If digest is present NewTag value is ignored.
1255 type: string
1256 name:
1257 description: Name is a tag-less image name.
1258 type: string
1259 newName:
1260 description: NewName is the value used to replace the original
1261 name.
1262 type: string
1263 newTag:
1264 description: NewTag is the value used to replace the original
1265 tag.
1266 type: string
1267 required:
1268 - name
1269 type: object
1270 type: array
1271 interval:
1272 description: The interval at which to reconcile the Kustomization.
1273 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
1274 type: string
1275 kubeConfig:
1276 description: |-
1277 The KubeConfig for reconciling the Kustomization on a remote cluster.
1278 When used in combination with KustomizationSpec.ServiceAccountName,
1279 forces the controller to act on behalf of that Service Account at the
1280 target cluster.
1281 If the --default-service-account flag is set, its value will be used as
1282 a controller level fallback for when KustomizationSpec.ServiceAccountName
1283 is empty.
1284 properties:
1285 secretRef:
1286 description: |-
1287 SecretRef holds the name of a secret that contains a key with
1288 the kubeconfig file as the value. If no key is set, the key will default
1289 to 'value'.
1290 It is recommended that the kubeconfig is self-contained, and the secret
1291 is regularly updated if credentials such as a cloud-access-token expire.
1292 Cloud specific `cmd-path` auth helpers will not function without adding
1293 binaries and credentials to the Pod that is responsible for reconciling
1294 Kubernetes resources.
1295 properties:
1296 key:
1297 description: Key in the Secret, when not specified an implementation-specific
1298 default key is used.
1299 type: string
1300 name:
1301 description: Name of the Secret.
1302 type: string
1303 required:
1304 - name
1305 type: object
1306 required:
1307 - secretRef
1308 type: object
1309 patches:
1310 description: |-
1311 Strategic merge and JSON patches, defined as inline YAML objects,
1312 capable of targeting objects based on kind, label and annotation selectors.
1313 items:
1314 description: |-
1315 Patch contains an inline StrategicMerge or JSON6902 patch, and the target the patch should
1316 be applied to.
1317 properties:
1318 patch:
1319 description: |-
1320 Patch contains an inline StrategicMerge patch or an inline JSON6902 patch with
1321 an array of operation objects.
1322 type: string
1323 target:
1324 description: Target points to the resources that the patch document
1325 should be applied to.
1326 properties:
1327 annotationSelector:
1328 description: |-
1329 AnnotationSelector is a string that follows the label selection expression
1330 https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
1331 It matches with the resource annotations.
1332 type: string
1333 group:
1334 description: |-
1335 Group is the API group to select resources from.
1336 Together with Version and Kind it is capable of unambiguously identifying and/or selecting resources.
1337 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
1338 type: string
1339 kind:
1340 description: |-
1341 Kind of the API Group to select resources from.
1342 Together with Group and Version it is capable of unambiguously
1343 identifying and/or selecting resources.
1344 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
1345 type: string
1346 labelSelector:
1347 description: |-
1348 LabelSelector is a string that follows the label selection expression
1349 https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
1350 It matches with the resource labels.
1351 type: string
1352 name:
1353 description: Name to match resources with.
1354 type: string
1355 namespace:
1356 description: Namespace to select resources from.
1357 type: string
1358 version:
1359 description: |-
1360 Version of the API Group to select resources from.
1361 Together with Group and Kind it is capable of unambiguously identifying and/or selecting resources.
1362 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
1363 type: string
1364 type: object
1365 required:
1366 - patch
1367 type: object
1368 type: array
1369 patchesJson6902:
1370 description: |-
1371 JSON 6902 patches, defined as inline YAML objects.
1372 Deprecated: Use Patches instead.
1373 items:
1374 description: JSON6902Patch contains a JSON6902 patch and the target
1375 the patch should be applied to.
1376 properties:
1377 patch:
1378 description: Patch contains the JSON6902 patch document with
1379 an array of operation objects.
1380 items:
1381 description: |-
1382 JSON6902 is a JSON6902 operation object.
1383 https://datatracker.ietf.org/doc/html/rfc6902#section-4
1384 properties:
1385 from:
1386 description: |-
1387 From contains a JSON-pointer value that references a location within the target document where the operation is
1388 performed. The meaning of the value depends on the value of Op, and is NOT taken into account by all operations.
1389 type: string
1390 op:
1391 description: |-
1392 Op indicates the operation to perform. Its value MUST be one of "add", "remove", "replace", "move", "copy", or
1393 "test".
1394 https://datatracker.ietf.org/doc/html/rfc6902#section-4
1395 enum:
1396 - test
1397 - remove
1398 - add
1399 - replace
1400 - move
1401 - copy
1402 type: string
1403 path:
1404 description: |-
1405 Path contains the JSON-pointer value that references a location within the target document where the operation
1406 is performed. The meaning of the value depends on the value of Op.
1407 type: string
1408 value:
1409 description: |-
1410 Value contains a valid JSON structure. The meaning of the value depends on the value of Op, and is NOT taken into
1411 account by all operations.
1412 x-kubernetes-preserve-unknown-fields: true
1413 required:
1414 - op
1415 - path
1416 type: object
1417 type: array
1418 target:
1419 description: Target points to the resources that the patch document
1420 should be applied to.
1421 properties:
1422 annotationSelector:
1423 description: |-
1424 AnnotationSelector is a string that follows the label selection expression
1425 https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
1426 It matches with the resource annotations.
1427 type: string
1428 group:
1429 description: |-
1430 Group is the API group to select resources from.
1431 Together with Version and Kind it is capable of unambiguously identifying and/or selecting resources.
1432 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
1433 type: string
1434 kind:
1435 description: |-
1436 Kind of the API Group to select resources from.
1437 Together with Group and Version it is capable of unambiguously
1438 identifying and/or selecting resources.
1439 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
1440 type: string
1441 labelSelector:
1442 description: |-
1443 LabelSelector is a string that follows the label selection expression
1444 https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
1445 It matches with the resource labels.
1446 type: string
1447 name:
1448 description: Name to match resources with.
1449 type: string
1450 namespace:
1451 description: Namespace to select resources from.
1452 type: string
1453 version:
1454 description: |-
1455 Version of the API Group to select resources from.
1456 Together with Group and Kind it is capable of unambiguously identifying and/or selecting resources.
1457 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
1458 type: string
1459 type: object
1460 required:
1461 - patch
1462 - target
1463 type: object
1464 type: array
1465 patchesStrategicMerge:
1466 description: |-
1467 Strategic merge patches, defined as inline YAML objects.
1468 Deprecated: Use Patches instead.
1469 items:
1470 x-kubernetes-preserve-unknown-fields: true
1471 type: array
1472 path:
1473 description: |-
1474 Path to the directory containing the kustomization.yaml file, or the
1475 set of plain YAMLs a kustomization.yaml should be generated for.
1476 Defaults to 'None', which translates to the root path of the SourceRef.
1477 type: string
1478 postBuild:
1479 description: |-
1480 PostBuild describes which actions to perform on the YAML manifest
1481 generated by building the kustomize overlay.
1482 properties:
1483 substitute:
1484 additionalProperties:
1485 type: string
1486 description: |-
1487 Substitute holds a map of key/value pairs.
1488 The variables defined in your YAML manifests
1489 that match any of the keys defined in the map
1490 will be substituted with the set value.
1491 Includes support for bash string replacement functions
1492 e.g. ${var:=default}, ${var:position} and ${var/substring/replacement}.
1493 type: object
1494 substituteFrom:
1495 description: |-
1496 SubstituteFrom holds references to ConfigMaps and Secrets containing
1497 the variables and their values to be substituted in the YAML manifests.
1498 The ConfigMap and the Secret data keys represent the var names and they
1499 must match the vars declared in the manifests for the substitution to happen.
1500 items:
1501 description: |-
1502 SubstituteReference contains a reference to a resource containing
1503 the variables name and value.
1504 properties:
1505 kind:
1506 description: Kind of the values referent, valid values are
1507 ('Secret', 'ConfigMap').
1508 enum:
1509 - Secret
1510 - ConfigMap
1511 type: string
1512 name:
1513 description: |-
1514 Name of the values referent. Should reside in the same namespace as the
1515 referring resource.
1516 maxLength: 253
1517 minLength: 1
1518 type: string
1519 optional:
1520 default: false
1521 description: |-
1522 Optional indicates whether the referenced resource must exist, or whether to
1523 tolerate its absence. If true and the referenced resource is absent, proceed
1524 as if the resource was present but empty, without any variables defined.
1525 type: boolean
1526 required:
1527 - kind
1528 - name
1529 type: object
1530 type: array
1531 type: object
1532 prune:
1533 description: Prune enables garbage collection.
1534 type: boolean
1535 retryInterval:
1536 description: |-
1537 The interval at which to retry a previously failed reconciliation.
1538 When not specified, the controller uses the KustomizationSpec.Interval
1539 value to retry failures.
1540 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
1541 type: string
1542 serviceAccountName:
1543 description: |-
1544 The name of the Kubernetes service account to impersonate
1545 when reconciling this Kustomization.
1546 type: string
1547 sourceRef:
1548 description: Reference of the source where the kustomization file
1549 is.
1550 properties:
1551 apiVersion:
1552 description: API version of the referent.
1553 type: string
1554 kind:
1555 description: Kind of the referent.
1556 enum:
1557 - OCIRepository
1558 - GitRepository
1559 - Bucket
1560 type: string
1561 name:
1562 description: Name of the referent.
1563 type: string
1564 namespace:
1565 description: Namespace of the referent, defaults to the namespace
1566 of the Kubernetes resource object that contains the reference.
1567 type: string
1568 required:
1569 - kind
1570 - name
1571 type: object
1572 suspend:
1573 description: |-
1574 This flag tells the controller to suspend subsequent kustomize executions,
1575 it does not apply to already started executions. Defaults to false.
1576 type: boolean
1577 targetNamespace:
1578 description: |-
1579 TargetNamespace sets or overrides the namespace in the
1580 kustomization.yaml file.
1581 maxLength: 63
1582 minLength: 1
1583 type: string
1584 timeout:
1585 description: |-
1586 Timeout for validation, apply and health checking operations.
1587 Defaults to 'Interval' duration.
1588 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
1589 type: string
1590 validation:
1591 description: 'Deprecated: Not used in v1beta2.'
1592 enum:
1593 - none
1594 - client
1595 - server
1596 type: string
1597 wait:
1598 description: |-
1599 Wait instructs the controller to check the health of all the reconciled resources.
1600 When enabled, the HealthChecks are ignored. Defaults to false.
1601 type: boolean
1602 required:
1603 - interval
1604 - prune
1605 - sourceRef
1606 type: object
1607 status:
1608 default:
1609 observedGeneration: -1
1610 description: KustomizationStatus defines the observed state of a kustomization.
1611 properties:
1612 conditions:
1613 items:
1614 description: Condition contains details for one aspect of the current
1615 state of this API Resource.
1616 properties:
1617 lastTransitionTime:
1618 description: |-
1619 lastTransitionTime is the last time the condition transitioned from one status to another.
1620 This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable.
1621 format: date-time
1622 type: string
1623 message:
1624 description: |-
1625 message is a human readable message indicating details about the transition.
1626 This may be an empty string.
1627 maxLength: 32768
1628 type: string
1629 observedGeneration:
1630 description: |-
1631 observedGeneration represents the .metadata.generation that the condition was set based upon.
1632 For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date
1633 with respect to the current state of the instance.
1634 format: int64
1635 minimum: 0
1636 type: integer
1637 reason:
1638 description: |-
1639 reason contains a programmatic identifier indicating the reason for the condition's last transition.
1640 Producers of specific condition types may define expected values and meanings for this field,
1641 and whether the values are considered a guaranteed API.
1642 The value should be a CamelCase string.
1643 This field may not be empty.
1644 maxLength: 1024
1645 minLength: 1
1646 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
1647 type: string
1648 status:
1649 description: status of the condition, one of True, False, Unknown.
1650 enum:
1651 - "True"
1652 - "False"
1653 - Unknown
1654 type: string
1655 type:
1656 description: type of condition in CamelCase or in foo.example.com/CamelCase.
1657 maxLength: 316
1658 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
1659 type: string
1660 required:
1661 - lastTransitionTime
1662 - message
1663 - reason
1664 - status
1665 - type
1666 type: object
1667 type: array
1668 inventory:
1669 description: Inventory contains the list of Kubernetes resource object
1670 references that have been successfully applied.
1671 properties:
1672 entries:
1673 description: Entries of Kubernetes resource object references.
1674 items:
1675 description: ResourceRef contains the information necessary
1676 to locate a resource within a cluster.
1677 properties:
1678 id:
1679 description: |-
1680 ID is the string representation of the Kubernetes resource object's metadata,
1681 in the format '<namespace>_<name>_<group>_<kind>'.
1682 type: string
1683 v:
1684 description: Version is the API version of the Kubernetes
1685 resource object's kind.
1686 type: string
1687 required:
1688 - id
1689 - v
1690 type: object
1691 type: array
1692 required:
1693 - entries
1694 type: object
1695 lastAppliedRevision:
1696 description: |-
1697 The last successfully applied revision.
1698 Equals the Revision of the applied Artifact from the referenced Source.
1699 type: string
1700 lastAttemptedRevision:
1701 description: LastAttemptedRevision is the revision of the last reconciliation
1702 attempt.
1703 type: string
1704 lastHandledReconcileAt:
1705 description: |-
1706 LastHandledReconcileAt holds the value of the most recent
1707 reconcile request value, so a change of the annotation value
1708 can be detected.
1709 type: string
1710 observedGeneration:
1711 description: ObservedGeneration is the last reconciled generation.
1712 format: int64
1713 type: integer
1714 type: object
1715 type: object
1716 served: true
1717 storage: false
1718 subresources:
1719 status: {}
1720---
1721apiVersion: v1
1722kind: ServiceAccount
1723metadata:
1724 labels:
1725 app.kubernetes.io/component: kustomize-controller
1726 app.kubernetes.io/part-of: flux
1727 name: kustomize-controller
1728---
1729apiVersion: apps/v1
1730kind: Deployment
1731metadata:
1732 labels:
1733 app.kubernetes.io/component: kustomize-controller
1734 app.kubernetes.io/part-of: flux
1735 control-plane: controller
1736 name: kustomize-controller
1737spec:
1738 replicas: 1
1739 selector:
1740 matchLabels:
1741 app: kustomize-controller
1742 template:
1743 metadata:
1744 annotations:
1745 prometheus.io/port: "8080"
1746 prometheus.io/scrape: "true"
1747 labels:
1748 app: kustomize-controller
1749 spec:
1750 containers:
1751 - args:
1752 - --events-addr=http://notification-controller.flux-system.svc.cluster.local./
1753 - --watch-all-namespaces
1754 - --log-level=info
1755 - --log-encoding=json
1756 - --enable-leader-election
1757 env:
1758 - name: RUNTIME_NAMESPACE
1759 valueFrom:
1760 fieldRef:
1761 fieldPath: metadata.namespace
1762 - name: GOMAXPROCS
1763 valueFrom:
1764 resourceFieldRef:
1765 containerName: manager
1766 resource: limits.cpu
1767 - name: GOMEMLIMIT
1768 valueFrom:
1769 resourceFieldRef:
1770 containerName: manager
1771 resource: limits.memory
1772 image: fluxcd/kustomize-controller:v1.4.0
1773 imagePullPolicy: IfNotPresent
1774 livenessProbe:
1775 httpGet:
1776 path: /healthz
1777 port: healthz
1778 name: manager
1779 ports:
1780 - containerPort: 8080
1781 name: http-prom
1782 protocol: TCP
1783 - containerPort: 9440
1784 name: healthz
1785 protocol: TCP
1786 readinessProbe:
1787 httpGet:
1788 path: /readyz
1789 port: healthz
1790 resources:
1791 limits:
1792 cpu: 1000m
1793 memory: 1Gi
1794 requests:
1795 cpu: 50m
1796 memory: 64Mi
1797 securityContext:
1798 allowPrivilegeEscalation: false
1799 capabilities:
1800 drop:
1801 - ALL
1802 readOnlyRootFilesystem: true
1803 runAsNonRoot: true
1804 seccompProfile:
1805 type: RuntimeDefault
1806 volumeMounts:
1807 - mountPath: /tmp
1808 name: temp
1809 priorityClassName: system-cluster-critical
1810 securityContext:
1811 fsGroup: 1337
1812 serviceAccountName: kustomize-controller
1813 terminationGracePeriodSeconds: 60
1814 volumes:
1815 - emptyDir: {}
1816 name: temp
View as plain text