1apiVersion: apiextensions.k8s.io/v1
2kind: CustomResourceDefinition
3metadata:
4 annotations:
5 cnrm.cloud.google.com/version: 0.0.0-dev
6 creationTimestamp: null
7 labels:
8 cnrm.cloud.google.com/managed-by-kcc: "true"
9 cnrm.cloud.google.com/stability-level: stable
10 cnrm.cloud.google.com/system: "true"
11 cnrm.cloud.google.com/tf2crd: "true"
12 name: iamserviceaccountkeys.iam.cnrm.cloud.google.com
13spec:
14 group: iam.cnrm.cloud.google.com
15 names:
16 categories:
17 - gcp
18 kind: IAMServiceAccountKey
19 plural: iamserviceaccountkeys
20 shortNames:
21 - gcpiamserviceaccountkey
22 - gcpiamserviceaccountkeys
23 singular: iamserviceaccountkey
24 preserveUnknownFields: false
25 scope: Namespaced
26 versions:
27 - additionalPrinterColumns:
28 - jsonPath: .metadata.creationTimestamp
29 name: Age
30 type: date
31 - description: When 'True', the most recent reconcile of the resource succeeded
32 jsonPath: .status.conditions[?(@.type=='Ready')].status
33 name: Ready
34 type: string
35 - description: The reason for the value in 'Ready'
36 jsonPath: .status.conditions[?(@.type=='Ready')].reason
37 name: Status
38 type: string
39 - description: The last transition time for the value in 'Status'
40 jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime
41 name: Status Age
42 type: date
43 name: v1beta1
44 schema:
45 openAPIV3Schema:
46 properties:
47 apiVersion:
48 description: 'apiVersion defines the versioned schema of this representation
49 of an object. Servers should convert recognized schemas to the latest
50 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources'
51 type: string
52 kind:
53 description: 'kind is a string value representing the REST resource this
54 object represents. Servers may infer this from the endpoint the client
55 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds'
56 type: string
57 metadata:
58 type: object
59 spec:
60 properties:
61 keyAlgorithm:
62 description: 'Immutable. The algorithm used to generate the key, used
63 only on create. KEY_ALG_RSA_2048 is the default algorithm. Valid
64 values are: "KEY_ALG_RSA_1024", "KEY_ALG_RSA_2048".'
65 type: string
66 privateKeyType:
67 description: Immutable.
68 type: string
69 publicKeyData:
70 description: Immutable. A field that allows clients to upload their
71 own public key. If set, use this public key data to create a service
72 account key for given service account. Please note, the expected
73 format for this field is a base64 encoded X509_PEM.
74 type: string
75 publicKeyType:
76 description: Immutable.
77 type: string
78 serviceAccountRef:
79 oneOf:
80 - not:
81 required:
82 - external
83 required:
84 - name
85 - not:
86 anyOf:
87 - required:
88 - name
89 - required:
90 - namespace
91 required:
92 - external
93 properties:
94 external:
95 description: 'Allowed value: The `email` field of an `IAMServiceAccount`
96 resource.'
97 type: string
98 name:
99 description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'
100 type: string
101 namespace:
102 description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
103 type: string
104 type: object
105 required:
106 - serviceAccountRef
107 type: object
108 status:
109 properties:
110 conditions:
111 description: Conditions represent the latest available observation
112 of the resource's current state.
113 items:
114 properties:
115 lastTransitionTime:
116 description: Last time the condition transitioned from one status
117 to another.
118 type: string
119 message:
120 description: Human-readable message indicating details about
121 last transition.
122 type: string
123 reason:
124 description: Unique, one-word, CamelCase reason for the condition's
125 last transition.
126 type: string
127 status:
128 description: Status is the status of the condition. Can be True,
129 False, Unknown.
130 type: string
131 type:
132 description: Type is the type of the condition.
133 type: string
134 type: object
135 type: array
136 name:
137 description: Immutable. The name used for this key pair.
138 type: string
139 observedGeneration:
140 description: ObservedGeneration is the generation of the resource
141 that was most recently observed by the Config Connector controller.
142 If this is equal to metadata.generation, then that means that the
143 current reported status reflects the most recent desired state of
144 the resource.
145 type: integer
146 privateKey:
147 description: The private key in JSON format, base64 encoded. This
148 is what you normally get as a file when creating service account
149 keys through the CLI or web console. This is only populated when
150 creating a new key.
151 type: string
152 publicKey:
153 description: Immutable. The public key, base64 encoded.
154 type: string
155 validAfter:
156 description: 'The key can be used after this timestamp. A timestamp
157 in RFC3339 UTC "Zulu" format, accurate to nanoseconds. Example:
158 "2014-10-02T15:01:23.045123456Z".'
159 type: string
160 validBefore:
161 description: 'The key can be used before this timestamp. A timestamp
162 in RFC3339 UTC "Zulu" format, accurate to nanoseconds. Example:
163 "2014-10-02T15:01:23.045123456Z".'
164 type: string
165 type: object
166 required:
167 - spec
168 type: object
169 served: true
170 storage: true
171 subresources:
172 status: {}
173status:
174 acceptedNames:
175 kind: ""
176 plural: ""
177 conditions: []
178 storedVersions: []
View as plain text