2020-11-30 20:56:51 +00:00
apiVersion : apiextensions.k8s.io/v1
2020-11-30 12:24:07 +00:00
kind : CustomResourceDefinition
metadata :
annotations :
2020-11-30 20:56:51 +00:00
controller-gen.kubebuilder.io/version : v0.4.1
2020-11-30 12:24:07 +00:00
creationTimestamp : null
name : secretstores.external-secrets.io
spec :
group : external-secrets.io
names :
2020-12-29 18:02:29 +00:00
categories :
- externalsecrets
2020-11-30 12:24:07 +00:00
kind : SecretStore
listKind : SecretStoreList
plural : secretstores
2020-12-29 18:02:29 +00:00
shortNames :
- ss
2020-11-30 12:24:07 +00:00
singular : secretstore
scope : Namespaced
2020-11-30 20:56:51 +00:00
versions :
2020-12-29 18:02:29 +00:00
- additionalPrinterColumns :
- jsonPath : .metadata.creationTimestamp
name : AGE
type : date
name : v1alpha1
2020-11-30 20:56:51 +00:00
schema :
openAPIV3Schema :
2020-12-29 18:02:29 +00:00
description : SecretStore represents a secure external location for storing
secrets, which can be referenced as part of `storeRef` fields.
2020-11-30 20:56:51 +00:00
properties :
apiVersion :
description : 'APIVersion defines the versioned schema of this representation
of an object. Servers should convert recognized schemas to the latest
internal value, and may reject unrecognized values. More info : https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
type : string
kind :
description : 'Kind is a string value representing the REST resource this
object represents. Servers may infer this from the endpoint the client
submits requests to. Cannot be updated. In CamelCase. More info : https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
type : string
metadata :
type : object
spec :
2020-12-21 19:31:28 +00:00
description : SecretStoreSpec defines the desired state of SecretStore.
2020-11-30 20:56:51 +00:00
properties :
controller :
description: 'Used to select the correct KES controller (think : ingress.ingressClassName)
The KES controller is instantiated with a specific controller name
and filters ES based on this property'
type : string
provider :
description : Used to configure the provider. Only one provider may
be set
maxProperties : 1
minProperties : 1
properties :
awssm :
description : AWSSM configures this store to sync secrets using
AWS Secret Manager provider
properties :
auth :
2021-02-24 19:01:28 +00:00
description : 'Auth defines the information necessary to authenticate
against AWS if not set aws sdk will infer credentials from
your environment see : https://docs.aws.amazon.com/sdk-for-go/v1/developer-guide/configuring-sdk.html#specifying-credentials'
nullable : true
2020-11-30 20:56:51 +00:00
properties :
secretRef :
2021-02-24 19:01:28 +00:00
description : AWSSMAuthSecretRef holds secret references
for aws credentials both AccessKeyID and SecretAccessKey
must be defined in order to properly authenticate.
2020-11-30 20:56:51 +00:00
properties :
accessKeyIDSecretRef :
description : The AccessKeyID is used for authentication
properties :
key :
2020-12-29 17:25:08 +00:00
description : The key of the entry in the Secret
resource's `data` field to be used. Some instances
of this field may be defaulted, in others it
may be required.
2020-11-30 20:56:51 +00:00
type : string
name :
2020-12-29 20:50:43 +00:00
description : The name of the Secret resource being
referred to.
2020-11-30 20:56:51 +00:00
type : string
namespace :
2020-12-29 17:25:08 +00:00
description : Namespace of the resource being referred
to. Ignored if referent is not cluster-scoped.
cluster-scoped defaults to the namespace of
the referent.
2020-11-30 20:56:51 +00:00
type : string
required :
- name
type : object
secretAccessKeySecretRef :
description : The SecretAccessKey is used for authentication
properties :
key :
2020-12-29 17:25:08 +00:00
description : The key of the entry in the Secret
resource's `data` field to be used. Some instances
of this field may be defaulted, in others it
may be required.
2020-11-30 20:56:51 +00:00
type : string
name :
2020-12-29 20:50:43 +00:00
description : The name of the Secret resource being
referred to.
2020-11-30 20:56:51 +00:00
type : string
namespace :
2020-12-29 17:25:08 +00:00
description : Namespace of the resource being referred
to. Ignored if referent is not cluster-scoped.
cluster-scoped defaults to the namespace of
the referent.
2020-11-30 20:56:51 +00:00
type : string
required :
- name
type : object
type : object
required :
- secretRef
type : object
region :
description : AWS Region to be used for the provider
type : string
role :
description : Role is a Role ARN which the SecretManager provider
will assume
type : string
required :
- region
type : object
type : object
required :
- provider
type : object
status :
2020-12-21 19:31:28 +00:00
description : SecretStoreStatus defines the observed state of the SecretStore.
2020-11-30 20:56:51 +00:00
properties :
conditions :
items :
2020-11-30 12:24:07 +00:00
properties :
2020-11-30 20:56:51 +00:00
lastTransitionTime :
format : date-time
type : string
message :
type : string
reason :
type : string
status :
type : string
type :
type : string
2020-11-30 12:24:07 +00:00
required :
2020-11-30 20:56:51 +00:00
- status
- type
2020-11-30 12:24:07 +00:00
type : object
2020-11-30 20:56:51 +00:00
type : array
type : object
type : object
2020-11-30 12:24:07 +00:00
served : true
storage : true
2020-12-29 18:02:29 +00:00
subresources :
status : {}
2020-11-30 12:24:07 +00:00
status :
acceptedNames :
kind : ""
plural : ""
conditions : [ ]
storedVersions : [ ]
