2020-11-30 20:56:51 +00:00
apiVersion : apiextensions.k8s.io/v1
2020-11-30 12:24:07 +00:00
kind : CustomResourceDefinition
metadata :
annotations :
2022-01-17 20:44:33 +00:00
controller-gen.kubebuilder.io/version : v0.8.0
2020-11-30 12:24:07 +00:00
creationTimestamp : null
name : externalsecrets.external-secrets.io
spec :
group : external-secrets.io
names :
2021-02-15 20:51:38 +00:00
categories :
- externalsecrets
2020-11-30 12:24:07 +00:00
kind : ExternalSecret
listKind : ExternalSecretList
plural : externalsecrets
2021-02-15 20:51:38 +00:00
shortNames :
- es
2020-11-30 12:24:07 +00:00
singular : externalsecret
scope : Namespaced
2020-11-30 20:56:51 +00:00
versions :
2021-03-05 22:58:08 +00:00
- additionalPrinterColumns :
- jsonPath : .spec.secretStoreRef.name
name : Store
type : string
- jsonPath : .spec.refreshInterval
name : Refresh Interval
type : string
2021-08-10 15:10:56 +00:00
- jsonPath : .status.conditions[?(@.type=="Ready")].reason
name : Status
type : string
2021-03-05 22:58:08 +00:00
name : v1alpha1
2020-11-30 20:56:51 +00:00
schema :
openAPIV3Schema :
2020-12-29 20:50:43 +00:00
description : ExternalSecret is the Schema for the external-secrets API.
2020-11-30 20:56:51 +00:00
properties :
apiVersion :
description : 'APIVersion defines the versioned schema of this representation
of an object. Servers should convert recognized schemas to the latest
internal value, and may reject unrecognized values. More info : https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
type : string
kind :
description : 'Kind is a string value representing the REST resource this
object represents. Servers may infer this from the endpoint the client
submits requests to. Cannot be updated. In CamelCase. More info : https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
type : string
metadata :
type : object
spec :
2020-12-21 19:31:28 +00:00
description : ExternalSecretSpec defines the desired state of ExternalSecret.
2020-11-30 20:56:51 +00:00
properties :
data :
description : Data defines the connection between the Kubernetes Secret
keys and the Provider data
items :
description : ExternalSecretData defines the connection between the
2020-12-21 19:31:28 +00:00
Kubernetes Secret key (spec.data.<key>) and the Provider data.
2020-11-30 20:56:51 +00:00
properties :
remoteRef :
description : ExternalSecretDataRemoteRef defines Provider data
2020-12-21 19:31:28 +00:00
location.
2020-11-30 20:56:51 +00:00
properties :
2022-01-25 21:01:33 +00:00
key :
description : Key is the key used in the Provider, mandatory
type : string
property :
description : Used to select a specific property of the Provider
value (if a map), if supported
type : string
version :
description : Used to select a specific version of the Provider
value, if supported
type : string
required :
- key
2020-11-30 20:56:51 +00:00
type : object
secretKey :
type : string
required :
- remoteRef
- secretKey
type : object
type : array
dataFrom :
description : DataFrom is used to fetch all properties from a specific
Provider data If multiple entries are specified, the Secret keys
are merged in the specified order
items :
2022-02-01 15:52:18 +00:00
description : ExternalSecretDataRemoteRef defines Provider data location.
2020-11-30 20:56:51 +00:00
properties :
2022-02-01 15:52:18 +00:00
key :
description : Key is the key used in the Provider, mandatory
type : string
property :
description : Used to select a specific property of the Provider
value (if a map), if supported
type : string
version :
description : Used to select a specific version of the Provider
value, if supported
type : string
required :
- key
2020-11-30 20:56:51 +00:00
type : object
type : array
refreshInterval :
2021-03-05 22:58:08 +00:00
default : 1h
description : RefreshInterval is the amount of time before the values
are read again from the SecretStore provider Valid time units are
"ns" , "us" (or "µs"), "ms", "s", "m", "h" May be set to zero to
fetch and create it once. Defaults to 1h.
2020-11-30 20:56:51 +00:00
type : string
secretStoreRef :
description : SecretStoreRef defines which SecretStore to fetch the
2020-12-21 19:31:28 +00:00
ExternalSecret data.
2020-11-30 12:24:07 +00:00
properties :
2020-11-30 20:56:51 +00:00
kind :
description : Kind of the SecretStore resource (SecretStore or
ClusterSecretStore) Defaults to `SecretStore`
2020-11-30 12:24:07 +00:00
type : string
2020-11-30 20:56:51 +00:00
name :
description : Name of the SecretStore resource
2020-11-30 12:24:07 +00:00
type : string
2022-02-08 17:07:34 +00:00
required :
- name
type : object
target :
description : ExternalSecretTarget defines the Kubernetes Secret to
be created There can be only one target per ExternalSecret.
properties :
creationPolicy :
default : Owner
description : CreationPolicy defines rules on how to create the
resulting Secret Defaults to 'Owner'
type : string
immutable :
description : Immutable defines if the final secret will be immutable
type : boolean
name :
description : Name defines the name of the Secret resource to be
managed This field is immutable Defaults to the .metadata.name
of the ExternalSecret resource
type : string
template :
description : Template defines a blueprint for the created Secret
resource.
properties :
data :
additionalProperties :
type : string
type : object
2022-02-16 19:00:32 +00:00
engineVersion :
default : v1
description : EngineVersion specifies the template engine version
that should be used to compile/execute the template specified
in .data and .templateFrom[].
type : string
2022-02-08 17:07:34 +00:00
metadata :
description : ExternalSecretTemplateMetadata defines metadata
fields for the Secret blueprint.
properties :
annotations :
additionalProperties :
type : string
type : object
labels :
additionalProperties :
type : string
type : object
type : object
templateFrom :
items :
maxProperties : 1
minProperties : 1
properties :
configMap :
properties :
items :
items :
properties :
key :
type : string
required :
- key
type : object
type : array
name :
type : string
required :
- items
- name
type : object
secret :
properties :
items :
items :
properties :
key :
type : string
required :
- key
type : object
type : array
name :
type : string
required :
- items
- name
type : object
type : object
type : array
type :
type : string
type : object
type : object
required :
- secretStoreRef
- target
type : object
status :
properties :
conditions :
items :
properties :
lastTransitionTime :
format : date-time
type : string
message :
type : string
reason :
type : string
status :
type : string
type :
type : string
required :
- status
- type
type : object
type : array
refreshTime :
description : refreshTime is the time and date the external secret
was fetched and the target secret updated
format : date-time
nullable : true
type : string
syncedResourceVersion :
description : SyncedResourceVersion keeps track of the last synced
version
type : string
type : object
type : object
served : true
storage : false
subresources :
status : {}
- additionalPrinterColumns :
- jsonPath : .spec.secretStoreRef.name
name : Store
type : string
- jsonPath : .spec.refreshInterval
name : Refresh Interval
type : string
- jsonPath : .status.conditions[?(@.type=="Ready")].reason
name : Status
type : string
name : v1beta1
schema :
openAPIV3Schema :
description : ExternalSecret is the Schema for the external-secrets API.
properties :
apiVersion :
description : 'APIVersion defines the versioned schema of this representation
of an object. Servers should convert recognized schemas to the latest
internal value, and may reject unrecognized values. More info : https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
type : string
kind :
description : 'Kind is a string value representing the REST resource this
object represents. Servers may infer this from the endpoint the client
submits requests to. Cannot be updated. In CamelCase. More info : https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
type : string
metadata :
type : object
spec :
description : ExternalSecretSpec defines the desired state of ExternalSecret.
properties :
data :
description : Data defines the connection between the Kubernetes Secret
keys and the Provider data
items :
description : ExternalSecretData defines the connection between the
Kubernetes Secret key (spec.data.<key>) and the Provider data.
properties :
remoteRef :
description : ExternalSecretDataRemoteRef defines Provider data
location.
properties :
key :
description : Key is the key used in the Provider, mandatory
type : string
property :
description : Used to select a specific property of the Provider
value (if a map), if supported
type : string
version :
description : Used to select a specific version of the Provider
value, if supported
type : string
required :
- key
type : object
secretKey :
type : string
required :
- remoteRef
- secretKey
type : object
type : array
dataFrom :
description : DataFrom is used to fetch all properties from a specific
Provider data If multiple entries are specified, the Secret keys
are merged in the specified order
items :
2022-02-17 22:14:39 +00:00
maxProperties : 1
minProperties : 1
2022-02-08 17:07:34 +00:00
properties :
extract :
2022-02-14 18:41:26 +00:00
description : Used to extract multiple key/value pairs from one
secret
2022-02-08 17:07:34 +00:00
properties :
key :
description : Key is the key used in the Provider, mandatory
type : string
property :
description : Used to select a specific property of the Provider
value (if a map), if supported
type : string
version :
description : Used to select a specific version of the Provider
value, if supported
type : string
required :
- key
type : object
find :
description : Used to find secrets based on tags or regular expressions
2022-02-17 22:14:39 +00:00
maxProperties : 1
minProperties : 1
2022-02-08 17:07:34 +00:00
properties :
name :
2022-02-14 18:41:26 +00:00
description : Finds secrets based on the name.
2022-02-08 17:07:34 +00:00
properties :
regexp :
2022-02-14 18:41:26 +00:00
description : Finds secrets base
2022-02-08 17:07:34 +00:00
type : string
type : object
2022-03-02 13:09:22 +00:00
path :
description : A root path to start the find operations.
type : string
2022-02-08 17:07:34 +00:00
tags :
additionalProperties :
type : string
2022-02-14 18:41:26 +00:00
description : Find secrets based on tags.
2022-02-08 17:07:34 +00:00
type : object
type : object
type : object
type : array
refreshInterval :
default : 1h
description : RefreshInterval is the amount of time before the values
are read again from the SecretStore provider Valid time units are
"ns" , "us" (or "µs"), "ms", "s", "m", "h" May be set to zero to
fetch and create it once. Defaults to 1h.
type : string
secretStoreRef :
description : SecretStoreRef defines which SecretStore to fetch the
ExternalSecret data.
properties :
kind :
description : Kind of the SecretStore resource (SecretStore or
ClusterSecretStore) Defaults to `SecretStore`
type : string
name :
description : Name of the SecretStore resource
type : string
2020-11-30 12:24:07 +00:00
required :
2020-11-30 20:56:51 +00:00
- name
2020-11-30 12:24:07 +00:00
type : object
2020-11-30 20:56:51 +00:00
target :
description : ExternalSecretTarget defines the Kubernetes Secret to
2020-12-21 19:31:28 +00:00
be created There can be only one target per ExternalSecret.
2020-11-30 12:24:07 +00:00
properties :
2020-11-30 20:56:51 +00:00
creationPolicy :
2021-07-10 19:07:09 +00:00
default : Owner
2020-11-30 20:56:51 +00:00
description : CreationPolicy defines rules on how to create the
resulting Secret Defaults to 'Owner'
2020-11-30 12:24:07 +00:00
type : string
2022-02-16 19:00:32 +00:00
deletionPolicy :
default : None
description : DeletionPolicy defines rules on how to delete the
resulting Secret Defaults to 'None'
type : string
2021-08-18 22:55:05 +00:00
immutable :
description : Immutable defines if the final secret will be immutable
type : boolean
2020-11-30 20:56:51 +00:00
name :
description : Name defines the name of the Secret resource to be
managed This field is immutable Defaults to the .metadata.name
of the ExternalSecret resource
2020-11-30 12:24:07 +00:00
type : string
2021-04-23 06:22:23 +00:00
template :
description : Template defines a blueprint for the created Secret
resource.
properties :
data :
additionalProperties :
type : string
type : object
2022-02-16 19:00:32 +00:00
engineVersion :
default : v2
type : string
2021-04-23 06:22:23 +00:00
metadata :
description : ExternalSecretTemplateMetadata defines metadata
fields for the Secret blueprint.
properties :
annotations :
additionalProperties :
type : string
type : object
labels :
additionalProperties :
type : string
type : object
type : object
2021-06-25 23:56:42 +00:00
templateFrom :
items :
maxProperties : 1
minProperties : 1
properties :
configMap :
properties :
items :
items :
properties :
key :
type : string
required :
- key
type : object
type : array
name :
type : string
required :
- items
- name
type : object
secret :
properties :
items :
items :
properties :
key :
type : string
required :
- key
type : object
type : array
name :
type : string
required :
- items
- name
type : object
type : object
type : array
2021-04-23 06:22:23 +00:00
type :
type : string
type : object
2020-11-30 12:24:07 +00:00
type : object
2020-11-30 20:56:51 +00:00
required :
- secretStoreRef
- target
type : object
status :
properties :
conditions :
items :
properties :
lastTransitionTime :
format : date-time
type : string
message :
type : string
reason :
type : string
status :
type : string
type :
type : string
required :
- status
- type
type : object
type : array
2021-02-06 11:52:14 +00:00
refreshTime :
description : refreshTime is the time and date the external secret
was fetched and the target secret updated
format : date-time
2021-02-15 20:51:38 +00:00
nullable : true
2020-11-30 20:56:51 +00:00
type : string
2021-06-09 20:24:48 +00:00
syncedResourceVersion :
description : SyncedResourceVersion keeps track of the last synced
version
type : string
2020-11-30 20:56:51 +00:00
type : object
type : object
2020-11-30 12:24:07 +00:00
served : true
storage : true
2021-02-15 20:51:38 +00:00
subresources :
status : {}
2020-11-30 12:24:07 +00:00
status :
acceptedNames :
kind : ""
plural : ""
conditions : [ ]
storedVersions : [ ]