1# Copyright 2020 Google LLC
2#
3# Licensed under the Apache License, Version 2.0 (the "License");
4# you may not use this file except in compliance with the License.
5# You may obtain a copy of the License at
6#
7# http://www.apache.org/licenses/LICENSE-2.0
8#
9# Unless required by applicable law or agreed to in writing, software
10# distributed under the License is distributed on an "AS IS" BASIS,
11# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12# See the License for the specific language governing permissions and
13# limitations under the License.
14
15apiVersion: apiextensions.k8s.io/v1
16kind: CustomResourceDefinition
17metadata:
18 annotations:
19 cnrm.cloud.google.com/version: 1.106.0
20 creationTimestamp: null
21 labels:
22 cnrm.cloud.google.com/managed-by-kcc: "true"
23 cnrm.cloud.google.com/stability-level: stable
24 cnrm.cloud.google.com/system: "true"
25 cnrm.cloud.google.com/tf2crd: "true"
26 name: iamserviceaccountkeys.iam.cnrm.cloud.google.com
27spec:
28 group: iam.cnrm.cloud.google.com
29 names:
30 categories:
31 - gcp
32 kind: IAMServiceAccountKey
33 plural: iamserviceaccountkeys
34 shortNames:
35 - gcpiamserviceaccountkey
36 - gcpiamserviceaccountkeys
37 singular: iamserviceaccountkey
38 scope: Namespaced
39 versions:
40 - additionalPrinterColumns:
41 - jsonPath: .metadata.creationTimestamp
42 name: Age
43 type: date
44 - description: When 'True', the most recent reconcile of the resource succeeded
45 jsonPath: .status.conditions[?(@.type=='Ready')].status
46 name: Ready
47 type: string
48 - description: The reason for the value in 'Ready'
49 jsonPath: .status.conditions[?(@.type=='Ready')].reason
50 name: Status
51 type: string
52 - description: The last transition time for the value in 'Status'
53 jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime
54 name: Status Age
55 type: date
56 name: v1beta1
57 schema:
58 openAPIV3Schema:
59 properties:
60 apiVersion:
61 description: 'apiVersion defines the versioned schema of this representation
62 of an object. Servers should convert recognized schemas to the latest
63 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources'
64 type: string
65 kind:
66 description: 'kind is a string value representing the REST resource this
67 object represents. Servers may infer this from the endpoint the client
68 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds'
69 type: string
70 metadata:
71 type: object
72 spec:
73 properties:
74 keyAlgorithm:
75 description: 'Immutable. The algorithm used to generate the key, used
76 only on create. KEY_ALG_RSA_2048 is the default algorithm. Valid
77 values are: "KEY_ALG_RSA_1024", "KEY_ALG_RSA_2048".'
78 type: string
79 privateKeyType:
80 description: Immutable.
81 type: string
82 publicKeyData:
83 description: Immutable. A field that allows clients to upload their
84 own public key. If set, use this public key data to create a service
85 account key for given service account. Please note, the expected
86 format for this field is a base64 encoded X509_PEM.
87 type: string
88 publicKeyType:
89 description: Immutable.
90 type: string
91 serviceAccountRef:
92 oneOf:
93 - not:
94 required:
95 - external
96 required:
97 - name
98 - not:
99 anyOf:
100 - required:
101 - name
102 - required:
103 - namespace
104 required:
105 - external
106 properties:
107 external:
108 description: 'Allowed value: The `email` field of an `IAMServiceAccount`
109 resource.'
110 type: string
111 name:
112 description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'
113 type: string
114 namespace:
115 description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
116 type: string
117 type: object
118 required:
119 - serviceAccountRef
120 type: object
121 status:
122 properties:
123 conditions:
124 description: Conditions represent the latest available observation
125 of the resource's current state.
126 items:
127 properties:
128 lastTransitionTime:
129 description: Last time the condition transitioned from one status
130 to another.
131 type: string
132 message:
133 description: Human-readable message indicating details about
134 last transition.
135 type: string
136 reason:
137 description: Unique, one-word, CamelCase reason for the condition's
138 last transition.
139 type: string
140 status:
141 description: Status is the status of the condition. Can be True,
142 False, Unknown.
143 type: string
144 type:
145 description: Type is the type of the condition.
146 type: string
147 type: object
148 type: array
149 name:
150 description: Immutable. The name used for this key pair.
151 type: string
152 observedGeneration:
153 description: ObservedGeneration is the generation of the resource
154 that was most recently observed by the Config Connector controller.
155 If this is equal to metadata.generation, then that means that the
156 current reported status reflects the most recent desired state of
157 the resource.
158 type: integer
159 privateKey:
160 description: The private key in JSON format, base64 encoded. This
161 is what you normally get as a file when creating service account
162 keys through the CLI or web console. This is only populated when
163 creating a new key.
164 type: string
165 publicKey:
166 description: Immutable. The public key, base64 encoded.
167 type: string
168 validAfter:
169 description: 'The key can be used after this timestamp. A timestamp
170 in RFC3339 UTC "Zulu" format, accurate to nanoseconds. Example:
171 "2014-10-02T15:01:23.045123456Z".'
172 type: string
173 validBefore:
174 description: 'The key can be used before this timestamp. A timestamp
175 in RFC3339 UTC "Zulu" format, accurate to nanoseconds. Example:
176 "2014-10-02T15:01:23.045123456Z".'
177 type: string
178 type: object
179 required:
180 - spec
181 type: object
182 served: true
183 storage: true
184 subresources:
185 status: {}
186status:
187 acceptedNames:
188 kind: ""
189 plural: ""
190 conditions: []
191 storedVersions: []
View as plain text