1# Copyright 2020 Google LLC
2#
3# Licensed under the Apache License, Version 2.0 (the "License");
4# you may not use this file except in compliance with the License.
5# You may obtain a copy of the License at
6#
7# http://www.apache.org/licenses/LICENSE-2.0
8#
9# Unless required by applicable law or agreed to in writing, software
10# distributed under the License is distributed on an "AS IS" BASIS,
11# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12# See the License for the specific language governing permissions and
13# limitations under the License.
14
15apiVersion: apiextensions.k8s.io/v1
16kind: CustomResourceDefinition
17metadata:
18 annotations:
19 cnrm.cloud.google.com/version: 1.106.0
20 creationTimestamp: null
21 labels:
22 cnrm.cloud.google.com/dcl2crd: "true"
23 cnrm.cloud.google.com/managed-by-kcc: "true"
24 cnrm.cloud.google.com/stability-level: stable
25 cnrm.cloud.google.com/system: "true"
26 name: identityplatformtenantoauthidpconfigs.identityplatform.cnrm.cloud.google.com
27spec:
28 group: identityplatform.cnrm.cloud.google.com
29 names:
30 categories:
31 - gcp
32 kind: IdentityPlatformTenantOAuthIDPConfig
33 plural: identityplatformtenantoauthidpconfigs
34 shortNames:
35 - gcpidentityplatformtenantoauthidpconfig
36 - gcpidentityplatformtenantoauthidpconfigs
37 singular: identityplatformtenantoauthidpconfig
38 scope: Namespaced
39 versions:
40 - additionalPrinterColumns:
41 - jsonPath: .metadata.creationTimestamp
42 name: Age
43 type: date
44 - description: When 'True', the most recent reconcile of the resource succeeded
45 jsonPath: .status.conditions[?(@.type=='Ready')].status
46 name: Ready
47 type: string
48 - description: The reason for the value in 'Ready'
49 jsonPath: .status.conditions[?(@.type=='Ready')].reason
50 name: Status
51 type: string
52 - description: The last transition time for the value in 'Status'
53 jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime
54 name: Status Age
55 type: date
56 name: v1beta1
57 schema:
58 openAPIV3Schema:
59 properties:
60 apiVersion:
61 description: 'apiVersion defines the versioned schema of this representation
62 of an object. Servers should convert recognized schemas to the latest
63 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources'
64 type: string
65 kind:
66 description: 'kind is a string value representing the REST resource this
67 object represents. Servers may infer this from the endpoint the client
68 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds'
69 type: string
70 metadata:
71 type: object
72 spec:
73 properties:
74 clientId:
75 description: The client id of an OAuth client.
76 type: string
77 clientSecret:
78 description: The client secret of the OAuth client, to enable OIDC
79 code flow.
80 oneOf:
81 - not:
82 required:
83 - valueFrom
84 required:
85 - value
86 - not:
87 required:
88 - value
89 required:
90 - valueFrom
91 properties:
92 value:
93 description: Value of the field. Cannot be used if 'valueFrom'
94 is specified.
95 type: string
96 valueFrom:
97 description: Source for the field's value. Cannot be used if 'value'
98 is specified.
99 properties:
100 secretKeyRef:
101 description: Reference to a value with the given key in the
102 given Secret in the resource's namespace.
103 properties:
104 key:
105 description: Key that identifies the value to be extracted.
106 type: string
107 name:
108 description: Name of the Secret to extract a value from.
109 type: string
110 required:
111 - name
112 - key
113 type: object
114 type: object
115 type: object
116 displayName:
117 description: The config's display name set by developers.
118 type: string
119 enabled:
120 description: True if allows the user to sign in with the provider.
121 type: boolean
122 issuer:
123 description: For OIDC Idps, the issuer identifier.
124 type: string
125 resourceID:
126 description: Immutable. Optional. The name of the resource. Used for
127 creation and acquisition. When unset, the value of `metadata.name`
128 is used as the default.
129 type: string
130 responseType:
131 description: 'The multiple response type to request for in the OAuth
132 authorization flow. This can possibly be a combination of set bits
133 (e.g.: {id\_token, token}).'
134 properties:
135 code:
136 description: If true, authorization code is returned from IdP's
137 authorization endpoint.
138 type: boolean
139 idToken:
140 description: If true, ID token is returned from IdP's authorization
141 endpoint.
142 type: boolean
143 token:
144 description: If true, access token is returned from IdP's authorization
145 endpoint.
146 type: boolean
147 type: object
148 tenantRef:
149 description: Immutable.
150 oneOf:
151 - not:
152 required:
153 - external
154 required:
155 - name
156 - not:
157 anyOf:
158 - required:
159 - name
160 - required:
161 - namespace
162 required:
163 - external
164 properties:
165 external:
166 description: |-
167 The tenant for the resource
168
169 Allowed value: The Google Cloud resource name of an `IdentityPlatformTenant` resource (format: `projects/{{project}}/tenants/{{name}}`).
170 type: string
171 name:
172 description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'
173 type: string
174 namespace:
175 description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
176 type: string
177 type: object
178 required:
179 - tenantRef
180 type: object
181 status:
182 properties:
183 conditions:
184 description: Conditions represent the latest available observation
185 of the resource's current state.
186 items:
187 properties:
188 lastTransitionTime:
189 description: Last time the condition transitioned from one status
190 to another.
191 type: string
192 message:
193 description: Human-readable message indicating details about
194 last transition.
195 type: string
196 reason:
197 description: Unique, one-word, CamelCase reason for the condition's
198 last transition.
199 type: string
200 status:
201 description: Status is the status of the condition. Can be True,
202 False, Unknown.
203 type: string
204 type:
205 description: Type is the type of the condition.
206 type: string
207 type: object
208 type: array
209 observedGeneration:
210 description: ObservedGeneration is the generation of the resource
211 that was most recently observed by the Config Connector controller.
212 If this is equal to metadata.generation, then that means that the
213 current reported status reflects the most recent desired state of
214 the resource.
215 type: integer
216 type: object
217 required:
218 - spec
219 type: object
220 served: true
221 storage: true
222 subresources:
223 status: {}
224status:
225 acceptedNames:
226 kind: ""
227 plural: ""
228 conditions: []
229 storedVersions: []
View as plain text