1apiVersion: apiextensions.k8s.io/v1
2kind: CustomResourceDefinition
3metadata:
4 annotations:
5 cnrm.cloud.google.com/version: 0.0.0-dev
6 creationTimestamp: null
7 labels:
8 cnrm.cloud.google.com/managed-by-kcc: "true"
9 cnrm.cloud.google.com/stability-level: stable
10 cnrm.cloud.google.com/system: "true"
11 cnrm.cloud.google.com/tf2crd: "true"
12 name: sqlusers.sql.cnrm.cloud.google.com
13spec:
14 group: sql.cnrm.cloud.google.com
15 names:
16 categories:
17 - gcp
18 kind: SQLUser
19 plural: sqlusers
20 shortNames:
21 - gcpsqluser
22 - gcpsqlusers
23 singular: sqluser
24 preserveUnknownFields: false
25 scope: Namespaced
26 versions:
27 - additionalPrinterColumns:
28 - jsonPath: .metadata.creationTimestamp
29 name: Age
30 type: date
31 - description: When 'True', the most recent reconcile of the resource succeeded
32 jsonPath: .status.conditions[?(@.type=='Ready')].status
33 name: Ready
34 type: string
35 - description: The reason for the value in 'Ready'
36 jsonPath: .status.conditions[?(@.type=='Ready')].reason
37 name: Status
38 type: string
39 - description: The last transition time for the value in 'Status'
40 jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime
41 name: Status Age
42 type: date
43 name: v1beta1
44 schema:
45 openAPIV3Schema:
46 properties:
47 apiVersion:
48 description: 'apiVersion defines the versioned schema of this representation
49 of an object. Servers should convert recognized schemas to the latest
50 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources'
51 type: string
52 kind:
53 description: 'kind is a string value representing the REST resource this
54 object represents. Servers may infer this from the endpoint the client
55 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds'
56 type: string
57 metadata:
58 type: object
59 spec:
60 properties:
61 host:
62 description: Immutable. The host the user can connect from. This is
63 only supported for MySQL instances. Don't set this field for PostgreSQL
64 instances. Can be an IP address. Changing this forces a new resource
65 to be created.
66 type: string
67 instanceRef:
68 oneOf:
69 - not:
70 required:
71 - external
72 required:
73 - name
74 - not:
75 anyOf:
76 - required:
77 - name
78 - required:
79 - namespace
80 required:
81 - external
82 properties:
83 external:
84 description: 'Allowed value: The `name` field of a `SQLInstance`
85 resource.'
86 type: string
87 name:
88 description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'
89 type: string
90 namespace:
91 description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
92 type: string
93 type: object
94 password:
95 description: |-
96 The password for the user. Can be updated. For Postgres instances this is a Required field, unless type is set to
97 either CLOUD_IAM_USER or CLOUD_IAM_SERVICE_ACCOUNT.
98 oneOf:
99 - not:
100 required:
101 - valueFrom
102 required:
103 - value
104 - not:
105 required:
106 - value
107 required:
108 - valueFrom
109 properties:
110 value:
111 description: Value of the field. Cannot be used if 'valueFrom'
112 is specified.
113 type: string
114 valueFrom:
115 description: Source for the field's value. Cannot be used if 'value'
116 is specified.
117 properties:
118 secretKeyRef:
119 description: Reference to a value with the given key in the
120 given Secret in the resource's namespace.
121 properties:
122 key:
123 description: Key that identifies the value to be extracted.
124 type: string
125 name:
126 description: Name of the Secret to extract a value from.
127 type: string
128 required:
129 - name
130 - key
131 type: object
132 type: object
133 type: object
134 passwordPolicy:
135 properties:
136 allowedFailedAttempts:
137 description: Number of failed attempts allowed before the user
138 get locked.
139 type: integer
140 enableFailedAttemptsCheck:
141 description: If true, the check that will lock user after too
142 many failed login attempts will be enabled.
143 type: boolean
144 enablePasswordVerification:
145 description: If true, the user must specify the current password
146 before changing the password. This flag is supported only for
147 MySQL.
148 type: boolean
149 passwordExpirationDuration:
150 description: Password expiration duration with one week grace
151 period.
152 type: string
153 status:
154 items:
155 properties:
156 locked:
157 description: If true, user does not have login privileges.
158 type: boolean
159 passwordExpirationTime:
160 description: Password expiration duration with one week
161 grace period.
162 type: string
163 type: object
164 type: array
165 type: object
166 resourceID:
167 description: Immutable. Optional. The name of the resource. Used for
168 creation and acquisition. When unset, the value of `metadata.name`
169 is used as the default.
170 type: string
171 type:
172 description: |-
173 Immutable. The user type. It determines the method to authenticate the user during login.
174 The default is the database's built-in user type. Flags include "BUILT_IN", "CLOUD_IAM_USER", or "CLOUD_IAM_SERVICE_ACCOUNT".
175 type: string
176 required:
177 - instanceRef
178 type: object
179 status:
180 properties:
181 conditions:
182 description: Conditions represent the latest available observation
183 of the resource's current state.
184 items:
185 properties:
186 lastTransitionTime:
187 description: Last time the condition transitioned from one status
188 to another.
189 type: string
190 message:
191 description: Human-readable message indicating details about
192 last transition.
193 type: string
194 reason:
195 description: Unique, one-word, CamelCase reason for the condition's
196 last transition.
197 type: string
198 status:
199 description: Status is the status of the condition. Can be True,
200 False, Unknown.
201 type: string
202 type:
203 description: Type is the type of the condition.
204 type: string
205 type: object
206 type: array
207 observedGeneration:
208 description: ObservedGeneration is the generation of the resource
209 that was most recently observed by the Config Connector controller.
210 If this is equal to metadata.generation, then that means that the
211 current reported status reflects the most recent desired state of
212 the resource.
213 type: integer
214 sqlServerUserDetails:
215 items:
216 properties:
217 disabled:
218 description: If the user has been disabled.
219 type: boolean
220 serverRoles:
221 description: The server roles for this user in the database.
222 items:
223 type: string
224 type: array
225 type: object
226 type: array
227 type: object
228 required:
229 - spec
230 type: object
231 served: true
232 storage: true
233 subresources:
234 status: {}
235status:
236 acceptedNames:
237 kind: ""
238 plural: ""
239 conditions: []
240 storedVersions: []
View as plain text