1# Copyright 2020 Google LLC
2#
3# Licensed under the Apache License, Version 2.0 (the "License");
4# you may not use this file except in compliance with the License.
5# You may obtain a copy of the License at
6#
7# http://www.apache.org/licenses/LICENSE-2.0
8#
9# Unless required by applicable law or agreed to in writing, software
10# distributed under the License is distributed on an "AS IS" BASIS,
11# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12# See the License for the specific language governing permissions and
13# limitations under the License.
14
15apiVersion: apiextensions.k8s.io/v1
16kind: CustomResourceDefinition
17metadata:
18 annotations:
19 cnrm.cloud.google.com/version: 1.106.0
20 creationTimestamp: null
21 labels:
22 cnrm.cloud.google.com/dcl2crd: "true"
23 cnrm.cloud.google.com/managed-by-kcc: "true"
24 cnrm.cloud.google.com/stability-level: stable
25 cnrm.cloud.google.com/system: "true"
26 name: computefirewallpolicies.compute.cnrm.cloud.google.com
27spec:
28 group: compute.cnrm.cloud.google.com
29 names:
30 categories:
31 - gcp
32 kind: ComputeFirewallPolicy
33 plural: computefirewallpolicies
34 shortNames:
35 - gcpcomputefirewallpolicy
36 - gcpcomputefirewallpolicies
37 singular: computefirewallpolicy
38 scope: Namespaced
39 versions:
40 - additionalPrinterColumns:
41 - jsonPath: .metadata.creationTimestamp
42 name: Age
43 type: date
44 - description: When 'True', the most recent reconcile of the resource succeeded
45 jsonPath: .status.conditions[?(@.type=='Ready')].status
46 name: Ready
47 type: string
48 - description: The reason for the value in 'Ready'
49 jsonPath: .status.conditions[?(@.type=='Ready')].reason
50 name: Status
51 type: string
52 - description: The last transition time for the value in 'Status'
53 jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime
54 name: Status Age
55 type: date
56 name: v1beta1
57 schema:
58 openAPIV3Schema:
59 properties:
60 apiVersion:
61 description: 'apiVersion defines the versioned schema of this representation
62 of an object. Servers should convert recognized schemas to the latest
63 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources'
64 type: string
65 kind:
66 description: 'kind is a string value representing the REST resource this
67 object represents. Servers may infer this from the endpoint the client
68 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds'
69 type: string
70 metadata:
71 type: object
72 spec:
73 oneOf:
74 - required:
75 - folderRef
76 - required:
77 - organizationRef
78 properties:
79 description:
80 description: An optional description of this resource. Provide this
81 property when you create the resource.
82 type: string
83 folderRef:
84 description: Immutable. The Folder that this resource belongs to.
85 Only one of [folderRef, organizationRef] may be specified.
86 oneOf:
87 - not:
88 required:
89 - external
90 required:
91 - name
92 - not:
93 anyOf:
94 - required:
95 - name
96 - required:
97 - namespace
98 required:
99 - external
100 properties:
101 external:
102 description: 'Allowed value: The Google Cloud resource name of
103 a `Folder` resource (format: `folders/{{name}}`).'
104 type: string
105 name:
106 description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'
107 type: string
108 namespace:
109 description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
110 type: string
111 type: object
112 organizationRef:
113 description: Immutable. The Organization that this resource belongs
114 to. Only one of [folderRef, organizationRef] may be specified.
115 oneOf:
116 - not:
117 required:
118 - external
119 required:
120 - name
121 - not:
122 anyOf:
123 - required:
124 - name
125 - required:
126 - namespace
127 required:
128 - external
129 properties:
130 external:
131 description: 'Allowed value: The Google Cloud resource name of
132 a Google Cloud Organization (format: `organizations/{{name}}`).'
133 type: string
134 name:
135 description: |-
136 [WARNING] Organization not yet supported in Config Connector, use 'external' field to reference existing resources.
137 Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
138 type: string
139 namespace:
140 description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
141 type: string
142 type: object
143 resourceID:
144 description: Immutable. Optional. The service-generated name of the
145 resource. Used for acquisition only. Leave unset to create a new
146 resource.
147 type: string
148 shortName:
149 description: Immutable. User-provided name of the Organization firewall
150 policy. The name should be unique in the organization in which the
151 firewall policy is created. The name must be 1-63 characters long,
152 and comply with RFC1035. Specifically, the name must be 1-63 characters
153 long and match the regular expression [a-z]([-a-z0-9]*[a-z0-9])?
154 which means the first character must be a lowercase letter, and
155 all following characters must be a dash, lowercase letter, or digit,
156 except the last character, which cannot be a dash.
157 type: string
158 required:
159 - shortName
160 type: object
161 status:
162 properties:
163 conditions:
164 description: Conditions represent the latest available observation
165 of the resource's current state.
166 items:
167 properties:
168 lastTransitionTime:
169 description: Last time the condition transitioned from one status
170 to another.
171 type: string
172 message:
173 description: Human-readable message indicating details about
174 last transition.
175 type: string
176 reason:
177 description: Unique, one-word, CamelCase reason for the condition's
178 last transition.
179 type: string
180 status:
181 description: Status is the status of the condition. Can be True,
182 False, Unknown.
183 type: string
184 type:
185 description: Type is the type of the condition.
186 type: string
187 type: object
188 type: array
189 creationTimestamp:
190 description: Creation timestamp in RFC3339 text format.
191 type: string
192 fingerprint:
193 description: Fingerprint of the resource. This field is used internally
194 during updates of this resource.
195 type: string
196 id:
197 description: The unique identifier for the resource. This identifier
198 is defined by the server.
199 type: string
200 observedGeneration:
201 description: ObservedGeneration is the generation of the resource
202 that was most recently observed by the Config Connector controller.
203 If this is equal to metadata.generation, then that means that the
204 current reported status reflects the most recent desired state of
205 the resource.
206 type: integer
207 ruleTupleCount:
208 description: Total count of all firewall policy rule tuples. A firewall
209 policy can not exceed a set number of tuples.
210 format: int64
211 type: integer
212 selfLink:
213 description: Server-defined URL for the resource.
214 type: string
215 selfLinkWithId:
216 description: Server-defined URL for this resource with the resource
217 id.
218 type: string
219 type: object
220 required:
221 - spec
222 type: object
223 served: true
224 storage: true
225 subresources:
226 status: {}
227status:
228 acceptedNames:
229 kind: ""
230 plural: ""
231 conditions: []
232 storedVersions: []
View as plain text