You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
In support of the move to v1 CRDs, we will need up-to-date generation
tooling. Gatekeeper was still on controller-gen 0.3.0, so this PR
updates that to 0.5.0.
One notable detail here is the removal of the caBundle field from the
webhook configurations. This is not a mistake. This field was related
to a bug in k8s that is now fixed, and thus the field was removed from
the generated output in controller-gen 0.4.1.
See kubernetes-sigs/controller-tools#495 for more info.
This PR contributes to open-policy-agent#550
Signed-off-by: juliankatz <[email protected]>
description: Config is the Schema for the configs API
21
21
properties:
22
22
apiVersion:
23
-
description: 'APIVersion defines the versioned schema of this representation
24
-
of an object. Servers should convert recognized schemas to the latest
25
-
internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
23
+
description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
26
24
type: string
27
25
kind:
28
-
description: 'Kind is a string value representing the REST resource this
29
-
object represents. Servers may infer this from the endpoint the client
30
-
submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
26
+
description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
31
27
type: string
32
28
metadata:
33
29
type: object
@@ -58,8 +54,7 @@ spec:
58
54
description: Configuration for syncing k8s objects
59
55
properties:
60
56
syncOnly:
61
-
description: If non-empty, only entries on this list will be replicated
62
-
into OPA
57
+
description: If non-empty, only entries on this list will be replicated into OPA
63
58
items:
64
59
properties:
65
60
group:
@@ -75,13 +70,11 @@ spec:
75
70
description: Configuration for validation
76
71
properties:
77
72
traces:
78
-
description: List of requests to trace. Both "user" and "kinds"
79
-
must be specified
73
+
description: List of requests to trace. Both "user" and "kinds" must be specified
80
74
items:
81
75
properties:
82
76
dump:
83
-
description: Also dump the state of OPA with the trace. Set
84
-
to `All` to dump everything.
77
+
description: Also dump the state of OPA with the trace. Set to `All` to dump everything.
85
78
type: string
86
79
kind:
87
80
description: Only trace requests of the following GroupVersionKind
description: Assign is the Schema for the assign API
21
21
properties:
22
22
apiVersion:
23
-
description: 'APIVersion defines the versioned schema of this representation
24
-
of an object. Servers should convert recognized schemas to the latest
25
-
internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
23
+
description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
26
24
type: string
27
25
kind:
28
-
description: 'Kind is a string value representing the REST resource this
29
-
object represents. Servers may infer this from the endpoint the client
30
-
submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
26
+
description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
31
27
type: string
32
28
metadata:
33
29
type: object
34
30
spec:
35
31
description: AssignSpec defines the desired state of Assign
36
32
properties:
37
33
applyTo:
38
-
description: 'INSERT ADDITIONAL SPEC FIELDS - desired state of cluster
39
-
Important: Run "make" to regenerate code after modifying this file'
34
+
description: 'INSERT ADDITIONAL SPEC FIELDS - desired state of cluster Important: Run "make" to regenerate code after modifying this file'
40
35
items:
41
-
description: ApplyTo determines what GVKs items the mutation should
42
-
apply to. Globs are not allowed.
36
+
description: ApplyTo determines what GVKs items the mutation should apply to. Globs are not allowed.
43
37
properties:
44
38
groups:
45
39
items:
@@ -65,16 +59,10 @@ spec:
65
59
type: array
66
60
kinds:
67
61
items:
68
-
description: Kinds accepts a list of objects with apiGroups and
69
-
kinds fields that list the groups/kinds of objects to which
70
-
the mutation will apply. If multiple groups/kinds objects are
71
-
specified, only one match is needed for the resource to be in
72
-
scope.
62
+
description: Kinds accepts a list of objects with apiGroups and kinds fields that list the groups/kinds of objects to which the mutation will apply. If multiple groups/kinds objects are specified, only one match is needed for the resource to be in scope.
73
63
properties:
74
64
apiGroups:
75
-
description: APIGroups is the API groups the resources belong
76
-
to. '*' is all groups. If '*' is present, the length of
77
-
the slice must be one. Required.
65
+
description: APIGroups is the API groups the resources belong to. '*' is all groups. If '*' is present, the length of the slice must be one. Required.
78
66
items:
79
67
type: string
80
68
type: array
@@ -85,34 +73,21 @@ spec:
85
73
type: object
86
74
type: array
87
75
labelSelector:
88
-
description: A label selector is a label query over a set of resources.
89
-
The result of matchLabels and matchExpressions are ANDed. An empty
90
-
label selector matches all objects. A null label selector matches
91
-
no objects.
76
+
description: A label selector is a label query over a set of resources. The result of matchLabels and matchExpressions are ANDed. An empty label selector matches all objects. A null label selector matches no objects.
92
77
properties:
93
78
matchExpressions:
94
-
description: matchExpressions is a list of label selector requirements.
95
-
The requirements are ANDed.
79
+
description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
96
80
items:
97
-
description: A label selector requirement is a selector that
98
-
contains values, a key, and an operator that relates the
99
-
key and values.
81
+
description: A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.
100
82
properties:
101
83
key:
102
-
description: key is the label key that the selector applies
103
-
to.
84
+
description: key is the label key that the selector applies to.
104
85
type: string
105
86
operator:
106
-
description: operator represents a key's relationship
107
-
to a set of values. Valid operators are In, NotIn, Exists
108
-
and DoesNotExist.
87
+
description: operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.
109
88
type: string
110
89
values:
111
-
description: values is an array of string values. If the
112
-
operator is In or NotIn, the values array must be non-empty.
113
-
If the operator is Exists or DoesNotExist, the values
114
-
array must be empty. This array is replaced during a
115
-
strategic merge patch.
90
+
description: values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.
116
91
items:
117
92
type: string
118
93
type: array
@@ -124,42 +99,25 @@ spec:
124
99
matchLabels:
125
100
additionalProperties:
126
101
type: string
127
-
description: matchLabels is a map of {key,value} pairs. A single
128
-
{key,value} in the matchLabels map is equivalent to an element
129
-
of matchExpressions, whose key field is "key", the operator
130
-
is "In", and the values array contains only "value". The requirements
131
-
are ANDed.
102
+
description: matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is "key", the operator is "In", and the values array contains only "value". The requirements are ANDed.
132
103
type: object
133
104
type: object
134
105
namespaceSelector:
135
-
description: A label selector is a label query over a set of resources.
136
-
The result of matchLabels and matchExpressions are ANDed. An empty
137
-
label selector matches all objects. A null label selector matches
138
-
no objects.
106
+
description: A label selector is a label query over a set of resources. The result of matchLabels and matchExpressions are ANDed. An empty label selector matches all objects. A null label selector matches no objects.
139
107
properties:
140
108
matchExpressions:
141
-
description: matchExpressions is a list of label selector requirements.
142
-
The requirements are ANDed.
109
+
description: matchExpressions is a list of label selector requirements. The requirements are ANDed.
143
110
items:
144
-
description: A label selector requirement is a selector that
145
-
contains values, a key, and an operator that relates the
146
-
key and values.
111
+
description: A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.
147
112
properties:
148
113
key:
149
-
description: key is the label key that the selector applies
150
-
to.
114
+
description: key is the label key that the selector applies to.
151
115
type: string
152
116
operator:
153
-
description: operator represents a key's relationship
154
-
to a set of values. Valid operators are In, NotIn, Exists
155
-
and DoesNotExist.
117
+
description: operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.
156
118
type: string
157
119
values:
158
-
description: values is an array of string values. If the
159
-
operator is In or NotIn, the values array must be non-empty.
160
-
If the operator is Exists or DoesNotExist, the values
161
-
array must be empty. This array is replaced during a
162
-
strategic merge patch.
120
+
description: values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.
163
121
items:
164
122
type: string
165
123
type: array
@@ -171,20 +129,15 @@ spec:
171
129
matchLabels:
172
130
additionalProperties:
173
131
type: string
174
-
description: matchLabels is a map of {key,value} pairs. A single
175
-
{key,value} in the matchLabels map is equivalent to an element
176
-
of matchExpressions, whose key field is "key", the operator
177
-
is "In", and the values array contains only "value". The requirements
178
-
are ANDed.
132
+
description: matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is "key", the operator is "In", and the values array contains only "value". The requirements are ANDed.
179
133
type: object
180
134
type: object
181
135
namespaces:
182
136
items:
183
137
type: string
184
138
type: array
185
139
scope:
186
-
description: ResourceScope is an enum defining the different scopes
187
-
available to a custom resource
140
+
description: ResourceScope is an enum defining the different scopes available to a custom resource
188
141
type: string
189
142
type: object
190
143
parameters:
@@ -194,24 +147,14 @@ spec:
194
147
type: object
195
148
x-kubernetes-preserve-unknown-fields: true
196
149
assignIf:
197
-
description: once https://github.com/kubernetes-sigs/controller-tools/pull/528
198
-
is merged, we can use an actual object
150
+
description: once https://github.com/kubernetes-sigs/controller-tools/pull/528 is merged, we can use an actual object
199
151
type: object
200
152
pathTests:
201
153
items:
202
-
description: "PathTest allows the user to customize how the mutation
203
-
works if parent paths are missing. It traverses the list in
204
-
order. All sub paths are tested against the provided condition,
205
-
if the test fails, the mutation is not applied. All `subPath`
206
-
entries must be a prefix of `location`. Any glob characters
207
-
will take on the same value as was used to expand the matching
208
-
glob in `location`. \n Available Tests: * MustExist - the
209
-
path must exist or do not mutate * MustNotExist - the path must
210
-
not exist or do not mutate"
154
+
description: "PathTest allows the user to customize how the mutation works if parent paths are missing. It traverses the list in order. All sub paths are tested against the provided condition, if the test fails, the mutation is not applied. All `subPath` entries must be a prefix of `location`. Any glob characters will take on the same value as was used to expand the matching glob in `location`. \n Available Tests: * MustExist - the path must exist or do not mutate * MustNotExist - the path must not exist or do not mutate"
211
155
properties:
212
156
condition:
213
-
description: Condition describes whether the path either MustExist
214
-
or MustNotExist in the original object
157
+
description: Condition describes whether the path either MustExist or MustNotExist in the original object
0 commit comments