1 #######################################################################################
2 # Copyright ETSI Contributors and Others.
4 # Licensed under the Apache License, Version 2.0 (the "License");
5 # you may not use this file except in compliance with the License.
6 # You may obtain a copy of the License at
8 # http://www.apache.org/licenses/LICENSE-2.0
10 # Unless required by applicable law or agreed to in writing, software
11 # distributed under the License is distributed on an "AS IS" BASIS,
12 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
14 # See the License for the specific language governing permissions and
15 # limitations under the License.
16 #######################################################################################
19 # This manifest was generated by flux. DO NOT EDIT.
20 # Flux Version: v2.1.2
21 # Components: source-controller,kustomize-controller,helm-controller,notification-controller
26 app.kubernetes.io/instance: flux-system
27 app.kubernetes.io/part-of: flux
28 app.kubernetes.io/version: v2.1.2
29 pod-security.kubernetes.io/warn: restricted
30 pod-security.kubernetes.io/warn-version: latest
33 apiVersion: networking.k8s.io/v1
37 app.kubernetes.io/instance: flux-system
38 app.kubernetes.io/part-of: flux
39 app.kubernetes.io/version: v2.1.2
41 namespace: flux-system
53 apiVersion: networking.k8s.io/v1
57 app.kubernetes.io/instance: flux-system
58 app.kubernetes.io/part-of: flux
59 app.kubernetes.io/version: v2.1.2
61 namespace: flux-system
65 - namespaceSelector: {}
73 apiVersion: networking.k8s.io/v1
77 app.kubernetes.io/instance: flux-system
78 app.kubernetes.io/part-of: flux
79 app.kubernetes.io/version: v2.1.2
81 namespace: flux-system
85 - namespaceSelector: {}
88 app: notification-controller
96 app.kubernetes.io/instance: flux-system
97 app.kubernetes.io/part-of: flux
98 app.kubernetes.io/version: v2.1.2
99 name: critical-pods-flux-system
100 namespace: flux-system
107 scopeName: PriorityClass
109 - system-node-critical
110 - system-cluster-critical
112 apiVersion: rbac.authorization.k8s.io/v1
116 app.kubernetes.io/instance: flux-system
117 app.kubernetes.io/part-of: flux
118 app.kubernetes.io/version: v2.1.2
119 name: crd-controller-flux-system
122 - source.toolkit.fluxcd.io
128 - kustomize.toolkit.fluxcd.io
134 - helm.toolkit.fluxcd.io
140 - notification.toolkit.fluxcd.io
146 - image.toolkit.fluxcd.io
190 - coordination.k8s.io
202 apiVersion: rbac.authorization.k8s.io/v1
206 app.kubernetes.io/instance: flux-system
207 app.kubernetes.io/part-of: flux
208 app.kubernetes.io/version: v2.1.2
209 rbac.authorization.k8s.io/aggregate-to-admin: "true"
210 rbac.authorization.k8s.io/aggregate-to-edit: "true"
211 name: flux-edit-flux-system
214 - notification.toolkit.fluxcd.io
215 - source.toolkit.fluxcd.io
216 - helm.toolkit.fluxcd.io
217 - image.toolkit.fluxcd.io
218 - kustomize.toolkit.fluxcd.io
228 apiVersion: rbac.authorization.k8s.io/v1
232 app.kubernetes.io/instance: flux-system
233 app.kubernetes.io/part-of: flux
234 app.kubernetes.io/version: v2.1.2
235 rbac.authorization.k8s.io/aggregate-to-admin: "true"
236 rbac.authorization.k8s.io/aggregate-to-edit: "true"
237 rbac.authorization.k8s.io/aggregate-to-view: "true"
238 name: flux-view-flux-system
241 - notification.toolkit.fluxcd.io
242 - source.toolkit.fluxcd.io
243 - helm.toolkit.fluxcd.io
244 - image.toolkit.fluxcd.io
245 - kustomize.toolkit.fluxcd.io
253 apiVersion: rbac.authorization.k8s.io/v1
254 kind: ClusterRoleBinding
257 app.kubernetes.io/instance: flux-system
258 app.kubernetes.io/part-of: flux
259 app.kubernetes.io/version: v2.1.2
260 name: cluster-reconciler-flux-system
262 apiGroup: rbac.authorization.k8s.io
266 - kind: ServiceAccount
267 name: kustomize-controller
268 namespace: flux-system
269 - kind: ServiceAccount
270 name: helm-controller
271 namespace: flux-system
273 apiVersion: rbac.authorization.k8s.io/v1
274 kind: ClusterRoleBinding
277 app.kubernetes.io/instance: flux-system
278 app.kubernetes.io/part-of: flux
279 app.kubernetes.io/version: v2.1.2
280 name: crd-controller-flux-system
282 apiGroup: rbac.authorization.k8s.io
284 name: crd-controller-flux-system
286 - kind: ServiceAccount
287 name: kustomize-controller
288 namespace: flux-system
289 - kind: ServiceAccount
290 name: helm-controller
291 namespace: flux-system
292 - kind: ServiceAccount
293 name: source-controller
294 namespace: flux-system
295 - kind: ServiceAccount
296 name: notification-controller
297 namespace: flux-system
298 - kind: ServiceAccount
299 name: image-reflector-controller
300 namespace: flux-system
301 - kind: ServiceAccount
302 name: image-automation-controller
303 namespace: flux-system
305 apiVersion: apiextensions.k8s.io/v1
306 kind: CustomResourceDefinition
309 controller-gen.kubebuilder.io/version: v0.12.0
311 app.kubernetes.io/component: source-controller
312 app.kubernetes.io/instance: flux-system
313 app.kubernetes.io/part-of: flux
314 app.kubernetes.io/version: v2.1.2
315 name: buckets.source.toolkit.fluxcd.io
317 group: source.toolkit.fluxcd.io
325 - additionalPrinterColumns:
326 - jsonPath: .spec.endpoint
329 - jsonPath: .status.conditions[?(@.type=="Ready")].status
332 - jsonPath: .status.conditions[?(@.type=="Ready")].message
335 - jsonPath: .metadata.creationTimestamp
341 description: Bucket is the Schema for the buckets API
344 description: 'APIVersion defines the versioned schema of this representation
345 of an object. Servers should convert recognized schemas to the latest
346 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
349 description: 'Kind is a string value representing the REST resource this
350 object represents. Servers may infer this from the endpoint the client
351 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
356 description: BucketSpec defines the desired state of an S3 compatible
360 description: AccessFrom defines an Access Control List for allowing
361 cross-namespace references to this object.
364 description: NamespaceSelectors is the list of namespace selectors
365 to which this ACL applies. Items in this list are evaluated
366 using a logical OR operation.
368 description: NamespaceSelector selects the namespaces to which
369 this ACL applies. An empty map of MatchLabels matches all
370 namespaces in a cluster.
373 additionalProperties:
375 description: MatchLabels is a map of {key,value} pairs.
376 A single {key,value} in the matchLabels map is equivalent
377 to an element of matchExpressions, whose key field is
378 "key", the operator is "In", and the values array contains
379 only "value". The requirements are ANDed.
387 description: The bucket name.
390 description: The bucket endpoint address.
393 description: Ignore overrides the set of excluded patterns in the
394 .sourceignore format (which is the same as .gitignore). If not provided,
395 a default will be used, consult the documentation for your version
396 to find out what those are.
399 description: Insecure allows connecting to a non-TLS S3 HTTP endpoint.
402 description: The interval at which to check for bucket updates.
406 description: The S3 compatible storage provider name, default ('generic').
413 description: The bucket region.
416 description: The name of the secret containing authentication credentials
420 description: Name of the referent.
426 description: This flag tells the controller to suspend the reconciliation
431 description: The timeout for download operations, defaults to 60s.
440 observedGeneration: -1
441 description: BucketStatus defines the observed state of a bucket
444 description: Artifact represents the output of the last successful
448 description: Checksum is the SHA256 checksum of the artifact.
451 description: LastUpdateTime is the timestamp corresponding to
452 the last update of this artifact.
456 description: Path is the relative file path of this artifact.
459 description: Revision is a human readable identifier traceable
460 in the origin source system. It can be a Git commit SHA, Git
461 tag, a Helm index timestamp, a Helm chart version, etc.
464 description: URL is the HTTP address of this artifact.
471 description: Conditions holds the conditions for the Bucket.
473 description: "Condition contains details for one aspect of the current
474 state of this API Resource. --- This struct is intended for direct
475 use as an array at the field path .status.conditions. For example,
476 \n type FooStatus struct{ // Represents the observations of a
477 foo's current state. // Known .status.conditions.type are: \"Available\",
478 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
479 // +listType=map // +listMapKey=type Conditions []metav1.Condition
480 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
481 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
484 description: lastTransitionTime is the last time the condition
485 transitioned from one status to another. This should be when
486 the underlying condition changed. If that is not known, then
487 using the time when the API field changed is acceptable.
491 description: message is a human readable message indicating
492 details about the transition. This may be an empty string.
496 description: observedGeneration represents the .metadata.generation
497 that the condition was set based upon. For instance, if .metadata.generation
498 is currently 12, but the .status.conditions[x].observedGeneration
499 is 9, the condition is out of date with respect to the current
500 state of the instance.
505 description: reason contains a programmatic identifier indicating
506 the reason for the condition's last transition. Producers
507 of specific condition types may define expected values and
508 meanings for this field, and whether the values are considered
509 a guaranteed API. The value should be a CamelCase string.
510 This field may not be empty.
513 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
516 description: status of the condition, one of True, False, Unknown.
523 description: type of condition in CamelCase or in foo.example.com/CamelCase.
524 --- Many .condition.type values are consistent across resources
525 like Available, but because arbitrary conditions can be useful
526 (see .node.status.conditions), the ability to deconflict is
527 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
529 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
539 lastHandledReconcileAt:
540 description: LastHandledReconcileAt holds the value of the most recent
541 reconcile request value, so a change of the annotation value can
545 description: ObservedGeneration is the last observed generation.
549 description: URL is the download link for the artifact output of the
558 - additionalPrinterColumns:
559 - jsonPath: .spec.endpoint
562 - jsonPath: .metadata.creationTimestamp
565 - jsonPath: .status.conditions[?(@.type=="Ready")].status
568 - jsonPath: .status.conditions[?(@.type=="Ready")].message
574 description: Bucket is the Schema for the buckets API.
577 description: 'APIVersion defines the versioned schema of this representation
578 of an object. Servers should convert recognized schemas to the latest
579 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
582 description: 'Kind is a string value representing the REST resource this
583 object represents. Servers may infer this from the endpoint the client
584 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
589 description: BucketSpec specifies the required configuration to produce
590 an Artifact for an object storage bucket.
593 description: 'AccessFrom specifies an Access Control List for allowing
594 cross-namespace references to this object. NOTE: Not implemented,
595 provisional as of https://github.com/fluxcd/flux2/pull/2092'
598 description: NamespaceSelectors is the list of namespace selectors
599 to which this ACL applies. Items in this list are evaluated
600 using a logical OR operation.
602 description: NamespaceSelector selects the namespaces to which
603 this ACL applies. An empty map of MatchLabels matches all
604 namespaces in a cluster.
607 additionalProperties:
609 description: MatchLabels is a map of {key,value} pairs.
610 A single {key,value} in the matchLabels map is equivalent
611 to an element of matchExpressions, whose key field is
612 "key", the operator is "In", and the values array contains
613 only "value". The requirements are ANDed.
621 description: BucketName is the name of the object storage bucket.
624 description: Endpoint is the object storage address the BucketName
628 description: Ignore overrides the set of excluded patterns in the
629 .sourceignore format (which is the same as .gitignore). If not provided,
630 a default will be used, consult the documentation for your version
631 to find out what those are.
634 description: Insecure allows connecting to a non-TLS HTTP Endpoint.
637 description: Interval at which the Bucket Endpoint is checked for
638 updates. This interval is approximate and may be subject to jitter
639 to ensure efficient use of resources.
640 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
644 description: Provider of the object storage bucket. Defaults to 'generic',
645 which expects an S3 (API) compatible object storage.
653 description: Region of the Endpoint where the BucketName is located
657 description: SecretRef specifies the Secret containing authentication
658 credentials for the Bucket.
661 description: Name of the referent.
667 description: Suspend tells the controller to suspend the reconciliation
672 description: Timeout for fetch operations, defaults to 60s.
673 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m))+$
682 observedGeneration: -1
683 description: BucketStatus records the observed state of a Bucket.
686 description: Artifact represents the last successful Bucket reconciliation.
689 description: Digest is the digest of the file in the form of '<algorithm>:<checksum>'.
690 pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$
693 description: LastUpdateTime is the timestamp corresponding to
694 the last update of the Artifact.
698 additionalProperties:
700 description: Metadata holds upstream information such as OCI annotations.
703 description: Path is the relative file path of the Artifact. It
704 can be used to locate the file in the root of the Artifact storage
705 on the local file system of the controller managing the Source.
708 description: Revision is a human-readable identifier traceable
709 in the origin source system. It can be a Git commit SHA, Git
710 tag, a Helm chart version, etc.
713 description: Size is the number of bytes in the file.
717 description: URL is the HTTP address of the Artifact as exposed
718 by the controller managing the Source. It can be used to retrieve
719 the Artifact for consumption, e.g. by another controller applying
720 the Artifact contents.
729 description: Conditions holds the conditions for the Bucket.
731 description: "Condition contains details for one aspect of the current
732 state of this API Resource. --- This struct is intended for direct
733 use as an array at the field path .status.conditions. For example,
734 \n type FooStatus struct{ // Represents the observations of a
735 foo's current state. // Known .status.conditions.type are: \"Available\",
736 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
737 // +listType=map // +listMapKey=type Conditions []metav1.Condition
738 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
739 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
742 description: lastTransitionTime is the last time the condition
743 transitioned from one status to another. This should be when
744 the underlying condition changed. If that is not known, then
745 using the time when the API field changed is acceptable.
749 description: message is a human readable message indicating
750 details about the transition. This may be an empty string.
754 description: observedGeneration represents the .metadata.generation
755 that the condition was set based upon. For instance, if .metadata.generation
756 is currently 12, but the .status.conditions[x].observedGeneration
757 is 9, the condition is out of date with respect to the current
758 state of the instance.
763 description: reason contains a programmatic identifier indicating
764 the reason for the condition's last transition. Producers
765 of specific condition types may define expected values and
766 meanings for this field, and whether the values are considered
767 a guaranteed API. The value should be a CamelCase string.
768 This field may not be empty.
771 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
774 description: status of the condition, one of True, False, Unknown.
781 description: type of condition in CamelCase or in foo.example.com/CamelCase.
782 --- Many .condition.type values are consistent across resources
783 like Available, but because arbitrary conditions can be useful
784 (see .node.status.conditions), the ability to deconflict is
785 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
787 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
797 lastHandledReconcileAt:
798 description: LastHandledReconcileAt holds the value of the most recent
799 reconcile request value, so a change of the annotation value can
803 description: ObservedGeneration is the last observed generation of
808 description: ObservedIgnore is the observed exclusion patterns used
809 for constructing the source artifact.
812 description: URL is the dynamic fetch link for the latest Artifact.
813 It is provided on a "best effort" basis, and using the precise BucketStatus.Artifact
823 apiVersion: apiextensions.k8s.io/v1
824 kind: CustomResourceDefinition
827 controller-gen.kubebuilder.io/version: v0.12.0
829 app.kubernetes.io/component: source-controller
830 app.kubernetes.io/instance: flux-system
831 app.kubernetes.io/part-of: flux
832 app.kubernetes.io/version: v2.1.2
833 name: gitrepositories.source.toolkit.fluxcd.io
835 group: source.toolkit.fluxcd.io
838 listKind: GitRepositoryList
839 plural: gitrepositories
842 singular: gitrepository
845 - additionalPrinterColumns:
846 - jsonPath: .spec.url
849 - jsonPath: .metadata.creationTimestamp
852 - jsonPath: .status.conditions[?(@.type=="Ready")].status
855 - jsonPath: .status.conditions[?(@.type=="Ready")].message
861 description: GitRepository is the Schema for the gitrepositories API.
864 description: 'APIVersion defines the versioned schema of this representation
865 of an object. Servers should convert recognized schemas to the latest
866 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
869 description: 'Kind is a string value representing the REST resource this
870 object represents. Servers may infer this from the endpoint the client
871 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
876 description: GitRepositorySpec specifies the required configuration to
877 produce an Artifact for a Git repository.
880 description: Ignore overrides the set of excluded patterns in the
881 .sourceignore format (which is the same as .gitignore). If not provided,
882 a default will be used, consult the documentation for your version
883 to find out what those are.
886 description: Include specifies a list of GitRepository resources which
887 Artifacts should be included in the Artifact produced for this GitRepository.
889 description: GitRepositoryInclude specifies a local reference to
890 a GitRepository which Artifact (sub-)contents must be included,
891 and where they should be placed.
894 description: FromPath specifies the path to copy contents from,
895 defaults to the root of the Artifact.
898 description: GitRepositoryRef specifies the GitRepository which
899 Artifact contents must be included.
902 description: Name of the referent.
908 description: ToPath specifies the path to copy contents to,
909 defaults to the name of the GitRepositoryRef.
916 description: Interval at which the GitRepository URL is checked for
917 updates. This interval is approximate and may be subject to jitter
918 to ensure efficient use of resources.
919 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
922 description: ProxySecretRef specifies the Secret containing the proxy
923 configuration to use while communicating with the Git server.
926 description: Name of the referent.
932 description: RecurseSubmodules enables the initialization of all submodules
933 within the GitRepository as cloned from the URL, using their default
937 description: Reference specifies the Git reference to resolve and
938 monitor for changes, defaults to the 'master' branch.
941 description: Branch to check out, defaults to 'master' if no other
945 description: "Commit SHA to check out, takes precedence over all
946 reference fields. \n This can be combined with Branch to shallow
947 clone the branch, in which the commit is expected to exist."
950 description: "Name of the reference to check out; takes precedence
951 over Branch, Tag and SemVer. \n It must be a valid Git reference:
952 https://git-scm.com/docs/git-check-ref-format#_description Examples:
953 \"refs/heads/main\", \"refs/tags/v0.1.0\", \"refs/pull/420/head\",
954 \"refs/merge-requests/1/head\""
957 description: SemVer tag expression to check out, takes precedence
961 description: Tag to check out, takes precedence over Branch.
965 description: SecretRef specifies the Secret containing authentication
966 credentials for the GitRepository. For HTTPS repositories the Secret
967 must contain 'username' and 'password' fields for basic auth or
968 'bearerToken' field for token auth. For SSH repositories the Secret
969 must contain 'identity' and 'known_hosts' fields.
972 description: Name of the referent.
978 description: Suspend tells the controller to suspend the reconciliation
979 of this GitRepository.
983 description: Timeout for Git operations like cloning, defaults to
985 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m))+$
988 description: URL specifies the Git repository URL, it can be an HTTP/S
990 pattern: ^(http|https|ssh)://.*$
993 description: Verification specifies the configuration to verify the
994 Git commit signature(s).
998 description: "Mode specifies which Git object(s) should be verified.
999 \n The variants \"head\" and \"HEAD\" both imply the same thing,
1000 i.e. verify the commit that the HEAD of the Git repository points
1001 to. The variant \"head\" solely exists to ensure backwards compatibility."
1009 description: SecretRef specifies the Secret containing the public
1010 keys of trusted Git authors.
1013 description: Name of the referent.
1027 observedGeneration: -1
1028 description: GitRepositoryStatus records the observed state of a Git repository.
1031 description: Artifact represents the last successful GitRepository
1035 description: Digest is the digest of the file in the form of '<algorithm>:<checksum>'.
1036 pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$
1039 description: LastUpdateTime is the timestamp corresponding to
1040 the last update of the Artifact.
1044 additionalProperties:
1046 description: Metadata holds upstream information such as OCI annotations.
1049 description: Path is the relative file path of the Artifact. It
1050 can be used to locate the file in the root of the Artifact storage
1051 on the local file system of the controller managing the Source.
1054 description: Revision is a human-readable identifier traceable
1055 in the origin source system. It can be a Git commit SHA, Git
1056 tag, a Helm chart version, etc.
1059 description: Size is the number of bytes in the file.
1063 description: URL is the HTTP address of the Artifact as exposed
1064 by the controller managing the Source. It can be used to retrieve
1065 the Artifact for consumption, e.g. by another controller applying
1066 the Artifact contents.
1075 description: Conditions holds the conditions for the GitRepository.
1077 description: "Condition contains details for one aspect of the current
1078 state of this API Resource. --- This struct is intended for direct
1079 use as an array at the field path .status.conditions. For example,
1080 \n type FooStatus struct{ // Represents the observations of a
1081 foo's current state. // Known .status.conditions.type are: \"Available\",
1082 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
1083 // +listType=map // +listMapKey=type Conditions []metav1.Condition
1084 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
1085 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
1088 description: lastTransitionTime is the last time the condition
1089 transitioned from one status to another. This should be when
1090 the underlying condition changed. If that is not known, then
1091 using the time when the API field changed is acceptable.
1095 description: message is a human readable message indicating
1096 details about the transition. This may be an empty string.
1100 description: observedGeneration represents the .metadata.generation
1101 that the condition was set based upon. For instance, if .metadata.generation
1102 is currently 12, but the .status.conditions[x].observedGeneration
1103 is 9, the condition is out of date with respect to the current
1104 state of the instance.
1109 description: reason contains a programmatic identifier indicating
1110 the reason for the condition's last transition. Producers
1111 of specific condition types may define expected values and
1112 meanings for this field, and whether the values are considered
1113 a guaranteed API. The value should be a CamelCase string.
1114 This field may not be empty.
1117 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
1120 description: status of the condition, one of True, False, Unknown.
1127 description: type of condition in CamelCase or in foo.example.com/CamelCase.
1128 --- Many .condition.type values are consistent across resources
1129 like Available, but because arbitrary conditions can be useful
1130 (see .node.status.conditions), the ability to deconflict is
1131 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
1133 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
1136 - lastTransitionTime
1144 description: IncludedArtifacts contains a list of the last successfully
1145 included Artifacts as instructed by GitRepositorySpec.Include.
1147 description: Artifact represents the output of a Source reconciliation.
1150 description: Digest is the digest of the file in the form of
1151 '<algorithm>:<checksum>'.
1152 pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$
1155 description: LastUpdateTime is the timestamp corresponding to
1156 the last update of the Artifact.
1160 additionalProperties:
1162 description: Metadata holds upstream information such as OCI
1166 description: Path is the relative file path of the Artifact.
1167 It can be used to locate the file in the root of the Artifact
1168 storage on the local file system of the controller managing
1172 description: Revision is a human-readable identifier traceable
1173 in the origin source system. It can be a Git commit SHA, Git
1174 tag, a Helm chart version, etc.
1177 description: Size is the number of bytes in the file.
1181 description: URL is the HTTP address of the Artifact as exposed
1182 by the controller managing the Source. It can be used to retrieve
1183 the Artifact for consumption, e.g. by another controller applying
1184 the Artifact contents.
1193 lastHandledReconcileAt:
1194 description: LastHandledReconcileAt holds the value of the most recent
1195 reconcile request value, so a change of the annotation value can
1199 description: ObservedGeneration is the last observed generation of
1200 the GitRepository object.
1204 description: ObservedIgnore is the observed exclusion patterns used
1205 for constructing the source artifact.
1208 description: ObservedInclude is the observed list of GitRepository
1209 resources used to produce the current Artifact.
1211 description: GitRepositoryInclude specifies a local reference to
1212 a GitRepository which Artifact (sub-)contents must be included,
1213 and where they should be placed.
1216 description: FromPath specifies the path to copy contents from,
1217 defaults to the root of the Artifact.
1220 description: GitRepositoryRef specifies the GitRepository which
1221 Artifact contents must be included.
1224 description: Name of the referent.
1230 description: ToPath specifies the path to copy contents to,
1231 defaults to the name of the GitRepositoryRef.
1237 observedRecurseSubmodules:
1238 description: ObservedRecurseSubmodules is the observed resource submodules
1239 configuration used to produce the current Artifact.
1241 sourceVerificationMode:
1242 description: SourceVerificationMode is the last used verification
1243 mode indicating which Git object(s) have been verified.
1251 - additionalPrinterColumns:
1252 - jsonPath: .spec.url
1255 - jsonPath: .status.conditions[?(@.type=="Ready")].status
1258 - jsonPath: .status.conditions[?(@.type=="Ready")].message
1261 - jsonPath: .metadata.creationTimestamp
1265 deprecationWarning: v1beta1 GitRepository is deprecated, upgrade to v1
1269 description: GitRepository is the Schema for the gitrepositories API
1272 description: 'APIVersion defines the versioned schema of this representation
1273 of an object. Servers should convert recognized schemas to the latest
1274 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
1277 description: 'Kind is a string value representing the REST resource this
1278 object represents. Servers may infer this from the endpoint the client
1279 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
1284 description: GitRepositorySpec defines the desired state of a Git repository.
1287 description: AccessFrom defines an Access Control List for allowing
1288 cross-namespace references to this object.
1291 description: NamespaceSelectors is the list of namespace selectors
1292 to which this ACL applies. Items in this list are evaluated
1293 using a logical OR operation.
1295 description: NamespaceSelector selects the namespaces to which
1296 this ACL applies. An empty map of MatchLabels matches all
1297 namespaces in a cluster.
1300 additionalProperties:
1302 description: MatchLabels is a map of {key,value} pairs.
1303 A single {key,value} in the matchLabels map is equivalent
1304 to an element of matchExpressions, whose key field is
1305 "key", the operator is "In", and the values array contains
1306 only "value". The requirements are ANDed.
1311 - namespaceSelectors
1315 description: Determines which git client library to use. Defaults
1316 to go-git, valid values are ('go-git', 'libgit2').
1322 description: Ignore overrides the set of excluded patterns in the
1323 .sourceignore format (which is the same as .gitignore). If not provided,
1324 a default will be used, consult the documentation for your version
1325 to find out what those are.
1328 description: Extra git repositories to map into the repository
1330 description: GitRepositoryInclude defines a source with a from and
1334 description: The path to copy contents from, defaults to the
1338 description: Reference to a GitRepository to include.
1341 description: Name of the referent.
1347 description: The path to copy contents to, defaults to the name
1355 description: The interval at which to check for repository updates.
1358 description: When enabled, after the clone is created, initializes
1359 all submodules within, using their default settings. This option
1360 is available only when using the 'go-git' GitImplementation.
1363 description: The Git reference to checkout and monitor for changes,
1364 defaults to master branch.
1367 description: The Git branch to checkout, defaults to master.
1370 description: The Git commit SHA to checkout, if specified Tag
1371 filters will be ignored.
1374 description: The Git tag semver expression, takes precedence over
1378 description: The Git tag to checkout, takes precedence over Branch.
1382 description: The secret name containing the Git credentials. For HTTPS
1383 repositories the secret must contain username and password fields.
1384 For SSH repositories the secret must contain identity and known_hosts
1388 description: Name of the referent.
1394 description: This flag tells the controller to suspend the reconciliation
1399 description: The timeout for remote Git operations like cloning, defaults
1403 description: The repository URL, can be a HTTP/S or SSH address.
1404 pattern: ^(http|https|ssh)://.*$
1407 description: Verify OpenPGP signature for the Git commit HEAD points
1411 description: Mode describes what git object should be verified,
1417 description: The secret name containing the public keys of all
1418 trusted Git authors.
1421 description: Name of the referent.
1435 observedGeneration: -1
1436 description: GitRepositoryStatus defines the observed state of a Git repository.
1439 description: Artifact represents the output of the last successful
1443 description: Checksum is the SHA256 checksum of the artifact.
1446 description: LastUpdateTime is the timestamp corresponding to
1447 the last update of this artifact.
1451 description: Path is the relative file path of this artifact.
1454 description: Revision is a human readable identifier traceable
1455 in the origin source system. It can be a Git commit SHA, Git
1456 tag, a Helm index timestamp, a Helm chart version, etc.
1459 description: URL is the HTTP address of this artifact.
1466 description: Conditions holds the conditions for the GitRepository.
1468 description: "Condition contains details for one aspect of the current
1469 state of this API Resource. --- This struct is intended for direct
1470 use as an array at the field path .status.conditions. For example,
1471 \n type FooStatus struct{ // Represents the observations of a
1472 foo's current state. // Known .status.conditions.type are: \"Available\",
1473 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
1474 // +listType=map // +listMapKey=type Conditions []metav1.Condition
1475 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
1476 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
1479 description: lastTransitionTime is the last time the condition
1480 transitioned from one status to another. This should be when
1481 the underlying condition changed. If that is not known, then
1482 using the time when the API field changed is acceptable.
1486 description: message is a human readable message indicating
1487 details about the transition. This may be an empty string.
1491 description: observedGeneration represents the .metadata.generation
1492 that the condition was set based upon. For instance, if .metadata.generation
1493 is currently 12, but the .status.conditions[x].observedGeneration
1494 is 9, the condition is out of date with respect to the current
1495 state of the instance.
1500 description: reason contains a programmatic identifier indicating
1501 the reason for the condition's last transition. Producers
1502 of specific condition types may define expected values and
1503 meanings for this field, and whether the values are considered
1504 a guaranteed API. The value should be a CamelCase string.
1505 This field may not be empty.
1508 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
1511 description: status of the condition, one of True, False, Unknown.
1518 description: type of condition in CamelCase or in foo.example.com/CamelCase.
1519 --- Many .condition.type values are consistent across resources
1520 like Available, but because arbitrary conditions can be useful
1521 (see .node.status.conditions), the ability to deconflict is
1522 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
1524 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
1527 - lastTransitionTime
1535 description: IncludedArtifacts represents the included artifacts from
1536 the last successful repository sync.
1538 description: Artifact represents the output of a source synchronisation.
1541 description: Checksum is the SHA256 checksum of the artifact.
1544 description: LastUpdateTime is the timestamp corresponding to
1545 the last update of this artifact.
1549 description: Path is the relative file path of this artifact.
1552 description: Revision is a human readable identifier traceable
1553 in the origin source system. It can be a Git commit SHA, Git
1554 tag, a Helm index timestamp, a Helm chart version, etc.
1557 description: URL is the HTTP address of this artifact.
1564 lastHandledReconcileAt:
1565 description: LastHandledReconcileAt holds the value of the most recent
1566 reconcile request value, so a change of the annotation value can
1570 description: ObservedGeneration is the last observed generation.
1574 description: URL is the download link for the artifact output of the
1575 last repository sync.
1583 - additionalPrinterColumns:
1584 - jsonPath: .spec.url
1587 - jsonPath: .metadata.creationTimestamp
1590 - jsonPath: .status.conditions[?(@.type=="Ready")].status
1593 - jsonPath: .status.conditions[?(@.type=="Ready")].message
1597 deprecationWarning: v1beta2 GitRepository is deprecated, upgrade to v1
1601 description: GitRepository is the Schema for the gitrepositories API.
1604 description: 'APIVersion defines the versioned schema of this representation
1605 of an object. Servers should convert recognized schemas to the latest
1606 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
1609 description: 'Kind is a string value representing the REST resource this
1610 object represents. Servers may infer this from the endpoint the client
1611 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
1616 description: GitRepositorySpec specifies the required configuration to
1617 produce an Artifact for a Git repository.
1620 description: 'AccessFrom specifies an Access Control List for allowing
1621 cross-namespace references to this object. NOTE: Not implemented,
1622 provisional as of https://github.com/fluxcd/flux2/pull/2092'
1625 description: NamespaceSelectors is the list of namespace selectors
1626 to which this ACL applies. Items in this list are evaluated
1627 using a logical OR operation.
1629 description: NamespaceSelector selects the namespaces to which
1630 this ACL applies. An empty map of MatchLabels matches all
1631 namespaces in a cluster.
1634 additionalProperties:
1636 description: MatchLabels is a map of {key,value} pairs.
1637 A single {key,value} in the matchLabels map is equivalent
1638 to an element of matchExpressions, whose key field is
1639 "key", the operator is "In", and the values array contains
1640 only "value". The requirements are ANDed.
1645 - namespaceSelectors
1649 description: 'GitImplementation specifies which Git client library
1650 implementation to use. Defaults to ''go-git'', valid values are
1651 (''go-git'', ''libgit2''). Deprecated: gitImplementation is deprecated
1652 now that ''go-git'' is the only supported implementation.'
1658 description: Ignore overrides the set of excluded patterns in the
1659 .sourceignore format (which is the same as .gitignore). If not provided,
1660 a default will be used, consult the documentation for your version
1661 to find out what those are.
1664 description: Include specifies a list of GitRepository resources which
1665 Artifacts should be included in the Artifact produced for this GitRepository.
1667 description: GitRepositoryInclude specifies a local reference to
1668 a GitRepository which Artifact (sub-)contents must be included,
1669 and where they should be placed.
1672 description: FromPath specifies the path to copy contents from,
1673 defaults to the root of the Artifact.
1676 description: GitRepositoryRef specifies the GitRepository which
1677 Artifact contents must be included.
1680 description: Name of the referent.
1686 description: ToPath specifies the path to copy contents to,
1687 defaults to the name of the GitRepositoryRef.
1694 description: Interval at which to check the GitRepository for updates.
1695 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
1698 description: RecurseSubmodules enables the initialization of all submodules
1699 within the GitRepository as cloned from the URL, using their default
1703 description: Reference specifies the Git reference to resolve and
1704 monitor for changes, defaults to the 'master' branch.
1707 description: Branch to check out, defaults to 'master' if no other
1711 description: "Commit SHA to check out, takes precedence over all
1712 reference fields. \n This can be combined with Branch to shallow
1713 clone the branch, in which the commit is expected to exist."
1716 description: "Name of the reference to check out; takes precedence
1717 over Branch, Tag and SemVer. \n It must be a valid Git reference:
1718 https://git-scm.com/docs/git-check-ref-format#_description Examples:
1719 \"refs/heads/main\", \"refs/tags/v0.1.0\", \"refs/pull/420/head\",
1720 \"refs/merge-requests/1/head\""
1723 description: SemVer tag expression to check out, takes precedence
1727 description: Tag to check out, takes precedence over Branch.
1731 description: SecretRef specifies the Secret containing authentication
1732 credentials for the GitRepository. For HTTPS repositories the Secret
1733 must contain 'username' and 'password' fields for basic auth or
1734 'bearerToken' field for token auth. For SSH repositories the Secret
1735 must contain 'identity' and 'known_hosts' fields.
1738 description: Name of the referent.
1744 description: Suspend tells the controller to suspend the reconciliation
1745 of this GitRepository.
1749 description: Timeout for Git operations like cloning, defaults to
1751 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m))+$
1754 description: URL specifies the Git repository URL, it can be an HTTP/S
1756 pattern: ^(http|https|ssh)://.*$
1759 description: Verification specifies the configuration to verify the
1760 Git commit signature(s).
1763 description: Mode specifies what Git object should be verified,
1769 description: SecretRef specifies the Secret containing the public
1770 keys of trusted Git authors.
1773 description: Name of the referent.
1788 observedGeneration: -1
1789 description: GitRepositoryStatus records the observed state of a Git repository.
1792 description: Artifact represents the last successful GitRepository
1796 description: Digest is the digest of the file in the form of '<algorithm>:<checksum>'.
1797 pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$
1800 description: LastUpdateTime is the timestamp corresponding to
1801 the last update of the Artifact.
1805 additionalProperties:
1807 description: Metadata holds upstream information such as OCI annotations.
1810 description: Path is the relative file path of the Artifact. It
1811 can be used to locate the file in the root of the Artifact storage
1812 on the local file system of the controller managing the Source.
1815 description: Revision is a human-readable identifier traceable
1816 in the origin source system. It can be a Git commit SHA, Git
1817 tag, a Helm chart version, etc.
1820 description: Size is the number of bytes in the file.
1824 description: URL is the HTTP address of the Artifact as exposed
1825 by the controller managing the Source. It can be used to retrieve
1826 the Artifact for consumption, e.g. by another controller applying
1827 the Artifact contents.
1836 description: Conditions holds the conditions for the GitRepository.
1838 description: "Condition contains details for one aspect of the current
1839 state of this API Resource. --- This struct is intended for direct
1840 use as an array at the field path .status.conditions. For example,
1841 \n type FooStatus struct{ // Represents the observations of a
1842 foo's current state. // Known .status.conditions.type are: \"Available\",
1843 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
1844 // +listType=map // +listMapKey=type Conditions []metav1.Condition
1845 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
1846 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
1849 description: lastTransitionTime is the last time the condition
1850 transitioned from one status to another. This should be when
1851 the underlying condition changed. If that is not known, then
1852 using the time when the API field changed is acceptable.
1856 description: message is a human readable message indicating
1857 details about the transition. This may be an empty string.
1861 description: observedGeneration represents the .metadata.generation
1862 that the condition was set based upon. For instance, if .metadata.generation
1863 is currently 12, but the .status.conditions[x].observedGeneration
1864 is 9, the condition is out of date with respect to the current
1865 state of the instance.
1870 description: reason contains a programmatic identifier indicating
1871 the reason for the condition's last transition. Producers
1872 of specific condition types may define expected values and
1873 meanings for this field, and whether the values are considered
1874 a guaranteed API. The value should be a CamelCase string.
1875 This field may not be empty.
1878 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
1881 description: status of the condition, one of True, False, Unknown.
1888 description: type of condition in CamelCase or in foo.example.com/CamelCase.
1889 --- Many .condition.type values are consistent across resources
1890 like Available, but because arbitrary conditions can be useful
1891 (see .node.status.conditions), the ability to deconflict is
1892 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
1894 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
1897 - lastTransitionTime
1904 contentConfigChecksum:
1905 description: "ContentConfigChecksum is a checksum of all the configurations
1906 related to the content of the source artifact: - .spec.ignore -
1907 .spec.recurseSubmodules - .spec.included and the checksum of the
1908 included artifacts observed in .status.observedGeneration version
1909 of the object. This can be used to determine if the content of the
1910 included repository has changed. It has the format of `<algo>:<checksum>`,
1911 for example: `sha256:<checksum>`. \n Deprecated: Replaced with explicit
1912 fields for observed artifact content config in the status."
1915 description: IncludedArtifacts contains a list of the last successfully
1916 included Artifacts as instructed by GitRepositorySpec.Include.
1918 description: Artifact represents the output of a Source reconciliation.
1921 description: Digest is the digest of the file in the form of
1922 '<algorithm>:<checksum>'.
1923 pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$
1926 description: LastUpdateTime is the timestamp corresponding to
1927 the last update of the Artifact.
1931 additionalProperties:
1933 description: Metadata holds upstream information such as OCI
1937 description: Path is the relative file path of the Artifact.
1938 It can be used to locate the file in the root of the Artifact
1939 storage on the local file system of the controller managing
1943 description: Revision is a human-readable identifier traceable
1944 in the origin source system. It can be a Git commit SHA, Git
1945 tag, a Helm chart version, etc.
1948 description: Size is the number of bytes in the file.
1952 description: URL is the HTTP address of the Artifact as exposed
1953 by the controller managing the Source. It can be used to retrieve
1954 the Artifact for consumption, e.g. by another controller applying
1955 the Artifact contents.
1964 lastHandledReconcileAt:
1965 description: LastHandledReconcileAt holds the value of the most recent
1966 reconcile request value, so a change of the annotation value can
1970 description: ObservedGeneration is the last observed generation of
1971 the GitRepository object.
1975 description: ObservedIgnore is the observed exclusion patterns used
1976 for constructing the source artifact.
1979 description: ObservedInclude is the observed list of GitRepository
1980 resources used to to produce the current Artifact.
1982 description: GitRepositoryInclude specifies a local reference to
1983 a GitRepository which Artifact (sub-)contents must be included,
1984 and where they should be placed.
1987 description: FromPath specifies the path to copy contents from,
1988 defaults to the root of the Artifact.
1991 description: GitRepositoryRef specifies the GitRepository which
1992 Artifact contents must be included.
1995 description: Name of the referent.
2001 description: ToPath specifies the path to copy contents to,
2002 defaults to the name of the GitRepositoryRef.
2008 observedRecurseSubmodules:
2009 description: ObservedRecurseSubmodules is the observed resource submodules
2010 configuration used to produce the current Artifact.
2013 description: URL is the dynamic fetch link for the latest Artifact.
2014 It is provided on a "best effort" basis, and using the precise GitRepositoryStatus.Artifact
2015 data is recommended.
2024 apiVersion: apiextensions.k8s.io/v1
2025 kind: CustomResourceDefinition
2028 controller-gen.kubebuilder.io/version: v0.12.0
2030 app.kubernetes.io/component: source-controller
2031 app.kubernetes.io/instance: flux-system
2032 app.kubernetes.io/part-of: flux
2033 app.kubernetes.io/version: v2.1.2
2034 name: helmcharts.source.toolkit.fluxcd.io
2036 group: source.toolkit.fluxcd.io
2039 listKind: HelmChartList
2046 - additionalPrinterColumns:
2047 - jsonPath: .spec.chart
2050 - jsonPath: .spec.version
2053 - jsonPath: .spec.sourceRef.kind
2056 - jsonPath: .spec.sourceRef.name
2059 - jsonPath: .status.conditions[?(@.type=="Ready")].status
2062 - jsonPath: .status.conditions[?(@.type=="Ready")].message
2065 - jsonPath: .metadata.creationTimestamp
2071 description: HelmChart is the Schema for the helmcharts API
2074 description: 'APIVersion defines the versioned schema of this representation
2075 of an object. Servers should convert recognized schemas to the latest
2076 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
2079 description: 'Kind is a string value representing the REST resource this
2080 object represents. Servers may infer this from the endpoint the client
2081 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
2086 description: HelmChartSpec defines the desired state of a Helm chart.
2089 description: AccessFrom defines an Access Control List for allowing
2090 cross-namespace references to this object.
2093 description: NamespaceSelectors is the list of namespace selectors
2094 to which this ACL applies. Items in this list are evaluated
2095 using a logical OR operation.
2097 description: NamespaceSelector selects the namespaces to which
2098 this ACL applies. An empty map of MatchLabels matches all
2099 namespaces in a cluster.
2102 additionalProperties:
2104 description: MatchLabels is a map of {key,value} pairs.
2105 A single {key,value} in the matchLabels map is equivalent
2106 to an element of matchExpressions, whose key field is
2107 "key", the operator is "In", and the values array contains
2108 only "value". The requirements are ANDed.
2113 - namespaceSelectors
2116 description: The name or path the Helm chart is available at in the
2120 description: The interval at which to check the Source for updates.
2123 default: ChartVersion
2124 description: Determines what enables the creation of a new artifact.
2125 Valid values are ('ChartVersion', 'Revision'). See the documentation
2126 of the values for an explanation on their behavior. Defaults to
2127 ChartVersion when omitted.
2133 description: The reference to the Source the chart is available at.
2136 description: APIVersion of the referent.
2139 description: Kind of the referent, valid values are ('HelmRepository',
2140 'GitRepository', 'Bucket').
2147 description: Name of the referent.
2154 description: This flag tells the controller to suspend the reconciliation
2158 description: Alternative values file to use as the default chart values,
2159 expected to be a relative path in the SourceRef. Deprecated in favor
2160 of ValuesFiles, for backwards compatibility the file defined here
2161 is merged before the ValuesFiles items. Ignored when omitted.
2164 description: Alternative list of values files to use as the chart
2165 values (values.yaml is not included by default), expected to be
2166 a relative path in the SourceRef. Values files are merged in the
2167 order of this list with the last file overriding the first. Ignored
2174 description: The chart version semver expression, ignored for charts
2175 from GitRepository and Bucket sources. Defaults to latest when omitted.
2184 observedGeneration: -1
2185 description: HelmChartStatus defines the observed state of the HelmChart.
2188 description: Artifact represents the output of the last successful
2192 description: Checksum is the SHA256 checksum of the artifact.
2195 description: LastUpdateTime is the timestamp corresponding to
2196 the last update of this artifact.
2200 description: Path is the relative file path of this artifact.
2203 description: Revision is a human readable identifier traceable
2204 in the origin source system. It can be a Git commit SHA, Git
2205 tag, a Helm index timestamp, a Helm chart version, etc.
2208 description: URL is the HTTP address of this artifact.
2215 description: Conditions holds the conditions for the HelmChart.
2217 description: "Condition contains details for one aspect of the current
2218 state of this API Resource. --- This struct is intended for direct
2219 use as an array at the field path .status.conditions. For example,
2220 \n type FooStatus struct{ // Represents the observations of a
2221 foo's current state. // Known .status.conditions.type are: \"Available\",
2222 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
2223 // +listType=map // +listMapKey=type Conditions []metav1.Condition
2224 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
2225 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
2228 description: lastTransitionTime is the last time the condition
2229 transitioned from one status to another. This should be when
2230 the underlying condition changed. If that is not known, then
2231 using the time when the API field changed is acceptable.
2235 description: message is a human readable message indicating
2236 details about the transition. This may be an empty string.
2240 description: observedGeneration represents the .metadata.generation
2241 that the condition was set based upon. For instance, if .metadata.generation
2242 is currently 12, but the .status.conditions[x].observedGeneration
2243 is 9, the condition is out of date with respect to the current
2244 state of the instance.
2249 description: reason contains a programmatic identifier indicating
2250 the reason for the condition's last transition. Producers
2251 of specific condition types may define expected values and
2252 meanings for this field, and whether the values are considered
2253 a guaranteed API. The value should be a CamelCase string.
2254 This field may not be empty.
2257 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
2260 description: status of the condition, one of True, False, Unknown.
2267 description: type of condition in CamelCase or in foo.example.com/CamelCase.
2268 --- Many .condition.type values are consistent across resources
2269 like Available, but because arbitrary conditions can be useful
2270 (see .node.status.conditions), the ability to deconflict is
2271 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
2273 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
2276 - lastTransitionTime
2283 lastHandledReconcileAt:
2284 description: LastHandledReconcileAt holds the value of the most recent
2285 reconcile request value, so a change of the annotation value can
2289 description: ObservedGeneration is the last observed generation.
2293 description: URL is the download link for the last chart pulled.
2301 - additionalPrinterColumns:
2302 - jsonPath: .spec.chart
2305 - jsonPath: .spec.version
2308 - jsonPath: .spec.sourceRef.kind
2311 - jsonPath: .spec.sourceRef.name
2314 - jsonPath: .metadata.creationTimestamp
2317 - jsonPath: .status.conditions[?(@.type=="Ready")].status
2320 - jsonPath: .status.conditions[?(@.type=="Ready")].message
2326 description: HelmChart is the Schema for the helmcharts API.
2329 description: 'APIVersion defines the versioned schema of this representation
2330 of an object. Servers should convert recognized schemas to the latest
2331 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
2334 description: 'Kind is a string value representing the REST resource this
2335 object represents. Servers may infer this from the endpoint the client
2336 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
2341 description: HelmChartSpec specifies the desired state of a Helm chart.
2344 description: 'AccessFrom specifies an Access Control List for allowing
2345 cross-namespace references to this object. NOTE: Not implemented,
2346 provisional as of https://github.com/fluxcd/flux2/pull/2092'
2349 description: NamespaceSelectors is the list of namespace selectors
2350 to which this ACL applies. Items in this list are evaluated
2351 using a logical OR operation.
2353 description: NamespaceSelector selects the namespaces to which
2354 this ACL applies. An empty map of MatchLabels matches all
2355 namespaces in a cluster.
2358 additionalProperties:
2360 description: MatchLabels is a map of {key,value} pairs.
2361 A single {key,value} in the matchLabels map is equivalent
2362 to an element of matchExpressions, whose key field is
2363 "key", the operator is "In", and the values array contains
2364 only "value". The requirements are ANDed.
2369 - namespaceSelectors
2372 description: Chart is the name or path the Helm chart is available
2373 at in the SourceRef.
2376 description: Interval at which the HelmChart SourceRef is checked
2377 for updates. This interval is approximate and may be subject to
2378 jitter to ensure efficient use of resources.
2379 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
2382 default: ChartVersion
2383 description: ReconcileStrategy determines what enables the creation
2384 of a new artifact. Valid values are ('ChartVersion', 'Revision').
2385 See the documentation of the values for an explanation on their
2386 behavior. Defaults to ChartVersion when omitted.
2392 description: SourceRef is the reference to the Source the chart is
2396 description: APIVersion of the referent.
2399 description: Kind of the referent, valid values are ('HelmRepository',
2400 'GitRepository', 'Bucket').
2407 description: Name of the referent.
2414 description: Suspend tells the controller to suspend the reconciliation
2418 description: ValuesFile is an alternative values file to use as the
2419 default chart values, expected to be a relative path in the SourceRef.
2420 Deprecated in favor of ValuesFiles, for backwards compatibility
2421 the file specified here is merged before the ValuesFiles items.
2422 Ignored when omitted.
2425 description: ValuesFiles is an alternative list of values files to
2426 use as the chart values (values.yaml is not included by default),
2427 expected to be a relative path in the SourceRef. Values files are
2428 merged in the order of this list with the last file overriding the
2429 first. Ignored when omitted.
2434 description: Verify contains the secret name containing the trusted
2435 public keys used to verify the signature and specifies which provider
2436 to use to check whether OCI image is authentic. This field is only
2437 supported when using HelmRepository source with spec.type 'oci'.
2438 Chart dependencies, which are not bundled in the umbrella chart
2439 artifact, are not verified.
2443 description: Provider specifies the technology used to sign the
2449 description: SecretRef specifies the Kubernetes Secret containing
2450 the trusted public keys.
2453 description: Name of the referent.
2463 description: Version is the chart version semver expression, ignored
2464 for charts from GitRepository and Bucket sources. Defaults to latest
2474 observedGeneration: -1
2475 description: HelmChartStatus records the observed state of the HelmChart.
2478 description: Artifact represents the output of the last successful
2482 description: Digest is the digest of the file in the form of '<algorithm>:<checksum>'.
2483 pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$
2486 description: LastUpdateTime is the timestamp corresponding to
2487 the last update of the Artifact.
2491 additionalProperties:
2493 description: Metadata holds upstream information such as OCI annotations.
2496 description: Path is the relative file path of the Artifact. It
2497 can be used to locate the file in the root of the Artifact storage
2498 on the local file system of the controller managing the Source.
2501 description: Revision is a human-readable identifier traceable
2502 in the origin source system. It can be a Git commit SHA, Git
2503 tag, a Helm chart version, etc.
2506 description: Size is the number of bytes in the file.
2510 description: URL is the HTTP address of the Artifact as exposed
2511 by the controller managing the Source. It can be used to retrieve
2512 the Artifact for consumption, e.g. by another controller applying
2513 the Artifact contents.
2522 description: Conditions holds the conditions for the HelmChart.
2524 description: "Condition contains details for one aspect of the current
2525 state of this API Resource. --- This struct is intended for direct
2526 use as an array at the field path .status.conditions. For example,
2527 \n type FooStatus struct{ // Represents the observations of a
2528 foo's current state. // Known .status.conditions.type are: \"Available\",
2529 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
2530 // +listType=map // +listMapKey=type Conditions []metav1.Condition
2531 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
2532 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
2535 description: lastTransitionTime is the last time the condition
2536 transitioned from one status to another. This should be when
2537 the underlying condition changed. If that is not known, then
2538 using the time when the API field changed is acceptable.
2542 description: message is a human readable message indicating
2543 details about the transition. This may be an empty string.
2547 description: observedGeneration represents the .metadata.generation
2548 that the condition was set based upon. For instance, if .metadata.generation
2549 is currently 12, but the .status.conditions[x].observedGeneration
2550 is 9, the condition is out of date with respect to the current
2551 state of the instance.
2556 description: reason contains a programmatic identifier indicating
2557 the reason for the condition's last transition. Producers
2558 of specific condition types may define expected values and
2559 meanings for this field, and whether the values are considered
2560 a guaranteed API. The value should be a CamelCase string.
2561 This field may not be empty.
2564 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
2567 description: status of the condition, one of True, False, Unknown.
2574 description: type of condition in CamelCase or in foo.example.com/CamelCase.
2575 --- Many .condition.type values are consistent across resources
2576 like Available, but because arbitrary conditions can be useful
2577 (see .node.status.conditions), the ability to deconflict is
2578 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
2580 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
2583 - lastTransitionTime
2590 lastHandledReconcileAt:
2591 description: LastHandledReconcileAt holds the value of the most recent
2592 reconcile request value, so a change of the annotation value can
2596 description: ObservedChartName is the last observed chart name as
2597 specified by the resolved chart reference.
2600 description: ObservedGeneration is the last observed generation of
2601 the HelmChart object.
2604 observedSourceArtifactRevision:
2605 description: ObservedSourceArtifactRevision is the last observed Artifact.Revision
2606 of the HelmChartSpec.SourceRef.
2609 description: URL is the dynamic fetch link for the latest Artifact.
2610 It is provided on a "best effort" basis, and using the precise BucketStatus.Artifact
2611 data is recommended.
2620 apiVersion: apiextensions.k8s.io/v1
2621 kind: CustomResourceDefinition
2624 controller-gen.kubebuilder.io/version: v0.12.0
2626 app.kubernetes.io/component: source-controller
2627 app.kubernetes.io/instance: flux-system
2628 app.kubernetes.io/part-of: flux
2629 app.kubernetes.io/version: v2.1.2
2630 name: helmrepositories.source.toolkit.fluxcd.io
2632 group: source.toolkit.fluxcd.io
2634 kind: HelmRepository
2635 listKind: HelmRepositoryList
2636 plural: helmrepositories
2639 singular: helmrepository
2642 - additionalPrinterColumns:
2643 - jsonPath: .spec.url
2646 - jsonPath: .status.conditions[?(@.type=="Ready")].status
2649 - jsonPath: .status.conditions[?(@.type=="Ready")].message
2652 - jsonPath: .metadata.creationTimestamp
2658 description: HelmRepository is the Schema for the helmrepositories API
2661 description: 'APIVersion defines the versioned schema of this representation
2662 of an object. Servers should convert recognized schemas to the latest
2663 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
2666 description: 'Kind is a string value representing the REST resource this
2667 object represents. Servers may infer this from the endpoint the client
2668 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
2673 description: HelmRepositorySpec defines the reference to a Helm repository.
2676 description: AccessFrom defines an Access Control List for allowing
2677 cross-namespace references to this object.
2680 description: NamespaceSelectors is the list of namespace selectors
2681 to which this ACL applies. Items in this list are evaluated
2682 using a logical OR operation.
2684 description: NamespaceSelector selects the namespaces to which
2685 this ACL applies. An empty map of MatchLabels matches all
2686 namespaces in a cluster.
2689 additionalProperties:
2691 description: MatchLabels is a map of {key,value} pairs.
2692 A single {key,value} in the matchLabels map is equivalent
2693 to an element of matchExpressions, whose key field is
2694 "key", the operator is "In", and the values array contains
2695 only "value". The requirements are ANDed.
2700 - namespaceSelectors
2703 description: The interval at which to check the upstream for updates.
2706 description: PassCredentials allows the credentials from the SecretRef
2707 to be passed on to a host that does not match the host as defined
2708 in URL. This may be required if the host of the advertised chart
2709 URLs in the index differ from the defined URL. Enabling this should
2710 be done with caution, as it can potentially result in credentials
2711 getting stolen in a MITM-attack.
2714 description: The name of the secret containing authentication credentials
2715 for the Helm repository. For HTTP/S basic auth the secret must contain
2716 username and password fields. For TLS the secret must contain a
2717 certFile and keyFile, and/or caFile fields.
2720 description: Name of the referent.
2726 description: This flag tells the controller to suspend the reconciliation
2731 description: The timeout of index downloading, defaults to 60s.
2734 description: The Helm repository URL, a valid URL contains at least
2735 a protocol and host.
2743 observedGeneration: -1
2744 description: HelmRepositoryStatus defines the observed state of the HelmRepository.
2747 description: Artifact represents the output of the last successful
2751 description: Checksum is the SHA256 checksum of the artifact.
2754 description: LastUpdateTime is the timestamp corresponding to
2755 the last update of this artifact.
2759 description: Path is the relative file path of this artifact.
2762 description: Revision is a human readable identifier traceable
2763 in the origin source system. It can be a Git commit SHA, Git
2764 tag, a Helm index timestamp, a Helm chart version, etc.
2767 description: URL is the HTTP address of this artifact.
2774 description: Conditions holds the conditions for the HelmRepository.
2776 description: "Condition contains details for one aspect of the current
2777 state of this API Resource. --- This struct is intended for direct
2778 use as an array at the field path .status.conditions. For example,
2779 \n type FooStatus struct{ // Represents the observations of a
2780 foo's current state. // Known .status.conditions.type are: \"Available\",
2781 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
2782 // +listType=map // +listMapKey=type Conditions []metav1.Condition
2783 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
2784 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
2787 description: lastTransitionTime is the last time the condition
2788 transitioned from one status to another. This should be when
2789 the underlying condition changed. If that is not known, then
2790 using the time when the API field changed is acceptable.
2794 description: message is a human readable message indicating
2795 details about the transition. This may be an empty string.
2799 description: observedGeneration represents the .metadata.generation
2800 that the condition was set based upon. For instance, if .metadata.generation
2801 is currently 12, but the .status.conditions[x].observedGeneration
2802 is 9, the condition is out of date with respect to the current
2803 state of the instance.
2808 description: reason contains a programmatic identifier indicating
2809 the reason for the condition's last transition. Producers
2810 of specific condition types may define expected values and
2811 meanings for this field, and whether the values are considered
2812 a guaranteed API. The value should be a CamelCase string.
2813 This field may not be empty.
2816 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
2819 description: status of the condition, one of True, False, Unknown.
2826 description: type of condition in CamelCase or in foo.example.com/CamelCase.
2827 --- Many .condition.type values are consistent across resources
2828 like Available, but because arbitrary conditions can be useful
2829 (see .node.status.conditions), the ability to deconflict is
2830 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
2832 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
2835 - lastTransitionTime
2842 lastHandledReconcileAt:
2843 description: LastHandledReconcileAt holds the value of the most recent
2844 reconcile request value, so a change of the annotation value can
2848 description: ObservedGeneration is the last observed generation.
2852 description: URL is the download link for the last index fetched.
2860 - additionalPrinterColumns:
2861 - jsonPath: .spec.url
2864 - jsonPath: .metadata.creationTimestamp
2867 - jsonPath: .status.conditions[?(@.type=="Ready")].status
2870 - jsonPath: .status.conditions[?(@.type=="Ready")].message
2876 description: HelmRepository is the Schema for the helmrepositories API.
2879 description: 'APIVersion defines the versioned schema of this representation
2880 of an object. Servers should convert recognized schemas to the latest
2881 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
2884 description: 'Kind is a string value representing the REST resource this
2885 object represents. Servers may infer this from the endpoint the client
2886 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
2891 description: HelmRepositorySpec specifies the required configuration to
2892 produce an Artifact for a Helm repository index YAML.
2895 description: 'AccessFrom specifies an Access Control List for allowing
2896 cross-namespace references to this object. NOTE: Not implemented,
2897 provisional as of https://github.com/fluxcd/flux2/pull/2092'
2900 description: NamespaceSelectors is the list of namespace selectors
2901 to which this ACL applies. Items in this list are evaluated
2902 using a logical OR operation.
2904 description: NamespaceSelector selects the namespaces to which
2905 this ACL applies. An empty map of MatchLabels matches all
2906 namespaces in a cluster.
2909 additionalProperties:
2911 description: MatchLabels is a map of {key,value} pairs.
2912 A single {key,value} in the matchLabels map is equivalent
2913 to an element of matchExpressions, whose key field is
2914 "key", the operator is "In", and the values array contains
2915 only "value". The requirements are ANDed.
2920 - namespaceSelectors
2923 description: "CertSecretRef can be given the name of a Secret containing
2924 either or both of \n - a PEM-encoded client certificate (`tls.crt`)
2925 and private key (`tls.key`); - a PEM-encoded CA certificate (`ca.crt`)
2926 \n and whichever are supplied, will be used for connecting to the
2927 registry. The client cert and key are useful if you are authenticating
2928 with a certificate; the CA cert is useful if you are using a self-signed
2929 server certificate. The Secret must be of type `Opaque` or `kubernetes.io/tls`.
2930 \n It takes precedence over the values specified in the Secret referred
2931 to by `.spec.secretRef`."
2934 description: Name of the referent.
2940 description: Interval at which the HelmRepository URL is checked for
2941 updates. This interval is approximate and may be subject to jitter
2942 to ensure efficient use of resources.
2943 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
2946 description: PassCredentials allows the credentials from the SecretRef
2947 to be passed on to a host that does not match the host as defined
2948 in URL. This may be required if the host of the advertised chart
2949 URLs in the index differ from the defined URL. Enabling this should
2950 be done with caution, as it can potentially result in credentials
2951 getting stolen in a MITM-attack.
2955 description: Provider used for authentication, can be 'aws', 'azure',
2956 'gcp' or 'generic'. This field is optional, and only taken into
2957 account if the .spec.type field is set to 'oci'. When not specified,
2958 defaults to 'generic'.
2966 description: SecretRef specifies the Secret containing authentication
2967 credentials for the HelmRepository. For HTTP/S basic auth the secret
2968 must contain 'username' and 'password' fields. Support for TLS auth
2969 using the 'certFile' and 'keyFile', and/or 'caFile' keys is deprecated.
2970 Please use `.spec.certSecretRef` instead.
2973 description: Name of the referent.
2979 description: Suspend tells the controller to suspend the reconciliation
2980 of this HelmRepository.
2984 description: Timeout is used for the index fetch operation for an
2985 HTTPS helm repository, and for remote OCI Repository operations
2986 like pulling for an OCI helm repository. Its default value is 60s.
2987 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m))+$
2990 description: Type of the HelmRepository. When this field is set to "oci",
2991 the URL field value must be prefixed with "oci://".
2997 description: URL of the Helm repository, a valid URL contains at least
2998 a protocol and host.
3006 observedGeneration: -1
3007 description: HelmRepositoryStatus records the observed state of the HelmRepository.
3010 description: Artifact represents the last successful HelmRepository
3014 description: Digest is the digest of the file in the form of '<algorithm>:<checksum>'.
3015 pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$
3018 description: LastUpdateTime is the timestamp corresponding to
3019 the last update of the Artifact.
3023 additionalProperties:
3025 description: Metadata holds upstream information such as OCI annotations.
3028 description: Path is the relative file path of the Artifact. It
3029 can be used to locate the file in the root of the Artifact storage
3030 on the local file system of the controller managing the Source.
3033 description: Revision is a human-readable identifier traceable
3034 in the origin source system. It can be a Git commit SHA, Git
3035 tag, a Helm chart version, etc.
3038 description: Size is the number of bytes in the file.
3042 description: URL is the HTTP address of the Artifact as exposed
3043 by the controller managing the Source. It can be used to retrieve
3044 the Artifact for consumption, e.g. by another controller applying
3045 the Artifact contents.
3054 description: Conditions holds the conditions for the HelmRepository.
3056 description: "Condition contains details for one aspect of the current
3057 state of this API Resource. --- This struct is intended for direct
3058 use as an array at the field path .status.conditions. For example,
3059 \n type FooStatus struct{ // Represents the observations of a
3060 foo's current state. // Known .status.conditions.type are: \"Available\",
3061 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
3062 // +listType=map // +listMapKey=type Conditions []metav1.Condition
3063 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
3064 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
3067 description: lastTransitionTime is the last time the condition
3068 transitioned from one status to another. This should be when
3069 the underlying condition changed. If that is not known, then
3070 using the time when the API field changed is acceptable.
3074 description: message is a human readable message indicating
3075 details about the transition. This may be an empty string.
3079 description: observedGeneration represents the .metadata.generation
3080 that the condition was set based upon. For instance, if .metadata.generation
3081 is currently 12, but the .status.conditions[x].observedGeneration
3082 is 9, the condition is out of date with respect to the current
3083 state of the instance.
3088 description: reason contains a programmatic identifier indicating
3089 the reason for the condition's last transition. Producers
3090 of specific condition types may define expected values and
3091 meanings for this field, and whether the values are considered
3092 a guaranteed API. The value should be a CamelCase string.
3093 This field may not be empty.
3096 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
3099 description: status of the condition, one of True, False, Unknown.
3106 description: type of condition in CamelCase or in foo.example.com/CamelCase.
3107 --- Many .condition.type values are consistent across resources
3108 like Available, but because arbitrary conditions can be useful
3109 (see .node.status.conditions), the ability to deconflict is
3110 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
3112 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
3115 - lastTransitionTime
3122 lastHandledReconcileAt:
3123 description: LastHandledReconcileAt holds the value of the most recent
3124 reconcile request value, so a change of the annotation value can
3128 description: ObservedGeneration is the last observed generation of
3129 the HelmRepository object.
3133 description: URL is the dynamic fetch link for the latest Artifact.
3134 It is provided on a "best effort" basis, and using the precise HelmRepositoryStatus.Artifact
3135 data is recommended.
3144 apiVersion: apiextensions.k8s.io/v1
3145 kind: CustomResourceDefinition
3148 controller-gen.kubebuilder.io/version: v0.12.0
3150 app.kubernetes.io/component: source-controller
3151 app.kubernetes.io/instance: flux-system
3152 app.kubernetes.io/part-of: flux
3153 app.kubernetes.io/version: v2.1.2
3154 name: ocirepositories.source.toolkit.fluxcd.io
3156 group: source.toolkit.fluxcd.io
3159 listKind: OCIRepositoryList
3160 plural: ocirepositories
3163 singular: ocirepository
3166 - additionalPrinterColumns:
3167 - jsonPath: .spec.url
3170 - jsonPath: .status.conditions[?(@.type=="Ready")].status
3173 - jsonPath: .status.conditions[?(@.type=="Ready")].message
3176 - jsonPath: .metadata.creationTimestamp
3182 description: OCIRepository is the Schema for the ocirepositories API
3185 description: 'APIVersion defines the versioned schema of this representation
3186 of an object. Servers should convert recognized schemas to the latest
3187 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
3190 description: 'Kind is a string value representing the REST resource this
3191 object represents. Servers may infer this from the endpoint the client
3192 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
3197 description: OCIRepositorySpec defines the desired state of OCIRepository
3200 description: "CertSecretRef can be given the name of a Secret containing
3201 either or both of \n - a PEM-encoded client certificate (`tls.crt`)
3202 and private key (`tls.key`); - a PEM-encoded CA certificate (`ca.crt`)
3203 \n and whichever are supplied, will be used for connecting to the
3204 registry. The client cert and key are useful if you are authenticating
3205 with a certificate; the CA cert is useful if you are using a self-signed
3206 server certificate. The Secret must be of type `Opaque` or `kubernetes.io/tls`.
3207 \n Note: Support for the `caFile`, `certFile` and `keyFile` keys
3208 have been deprecated."
3211 description: Name of the referent.
3217 description: Ignore overrides the set of excluded patterns in the
3218 .sourceignore format (which is the same as .gitignore). If not provided,
3219 a default will be used, consult the documentation for your version
3220 to find out what those are.
3223 description: Insecure allows connecting to a non-TLS HTTP container
3227 description: Interval at which the OCIRepository URL is checked for
3228 updates. This interval is approximate and may be subject to jitter
3229 to ensure efficient use of resources.
3230 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
3233 description: LayerSelector specifies which layer should be extracted
3234 from the OCI artifact. When not specified, the first layer found
3235 in the artifact is selected.
3238 description: MediaType specifies the OCI media type of the layer
3239 which should be extracted from the OCI Artifact. The first layer
3240 matching this type is selected.
3243 description: Operation specifies how the selected layer should
3244 be processed. By default, the layer compressed content is extracted
3245 to storage. When the operation is set to 'copy', the layer compressed
3246 content is persisted to storage as it is.
3254 description: The provider used for authentication, can be 'aws', 'azure',
3255 'gcp' or 'generic'. When not specified, defaults to 'generic'.
3263 description: The OCI reference to pull and monitor for changes, defaults
3267 description: Digest is the image digest to pull, takes precedence
3268 over SemVer. The value should be in the format 'sha256:<HASH>'.
3271 description: SemVer is the range of tags to pull selecting the
3272 latest within the range, takes precedence over Tag.
3275 description: Tag is the image tag to pull, defaults to latest.
3279 description: SecretRef contains the secret name containing the registry
3280 login credentials to resolve image metadata. The secret must be
3281 of type kubernetes.io/dockerconfigjson.
3284 description: Name of the referent.
3290 description: 'ServiceAccountName is the name of the Kubernetes ServiceAccount
3291 used to authenticate the image pull if the service account has attached
3292 pull secrets. For more information: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/#add-imagepullsecrets-to-a-service-account'
3295 description: This flag tells the controller to suspend the reconciliation
3300 description: The timeout for remote OCI Repository operations like
3301 pulling, defaults to 60s.
3302 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m))+$
3305 description: URL is a reference to an OCI artifact repository hosted
3306 on a remote container registry.
3310 description: Verify contains the secret name containing the trusted
3311 public keys used to verify the signature and specifies which provider
3312 to use to check whether OCI image is authentic.
3316 description: Provider specifies the technology used to sign the
3322 description: SecretRef specifies the Kubernetes Secret containing
3323 the trusted public keys.
3326 description: Name of the referent.
3340 observedGeneration: -1
3341 description: OCIRepositoryStatus defines the observed state of OCIRepository
3344 description: Artifact represents the output of the last successful
3345 OCI Repository sync.
3348 description: Digest is the digest of the file in the form of '<algorithm>:<checksum>'.
3349 pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$
3352 description: LastUpdateTime is the timestamp corresponding to
3353 the last update of the Artifact.
3357 additionalProperties:
3359 description: Metadata holds upstream information such as OCI annotations.
3362 description: Path is the relative file path of the Artifact. It
3363 can be used to locate the file in the root of the Artifact storage
3364 on the local file system of the controller managing the Source.
3367 description: Revision is a human-readable identifier traceable
3368 in the origin source system. It can be a Git commit SHA, Git
3369 tag, a Helm chart version, etc.
3372 description: Size is the number of bytes in the file.
3376 description: URL is the HTTP address of the Artifact as exposed
3377 by the controller managing the Source. It can be used to retrieve
3378 the Artifact for consumption, e.g. by another controller applying
3379 the Artifact contents.
3388 description: Conditions holds the conditions for the OCIRepository.
3390 description: "Condition contains details for one aspect of the current
3391 state of this API Resource. --- This struct is intended for direct
3392 use as an array at the field path .status.conditions. For example,
3393 \n type FooStatus struct{ // Represents the observations of a
3394 foo's current state. // Known .status.conditions.type are: \"Available\",
3395 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
3396 // +listType=map // +listMapKey=type Conditions []metav1.Condition
3397 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
3398 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
3401 description: lastTransitionTime is the last time the condition
3402 transitioned from one status to another. This should be when
3403 the underlying condition changed. If that is not known, then
3404 using the time when the API field changed is acceptable.
3408 description: message is a human readable message indicating
3409 details about the transition. This may be an empty string.
3413 description: observedGeneration represents the .metadata.generation
3414 that the condition was set based upon. For instance, if .metadata.generation
3415 is currently 12, but the .status.conditions[x].observedGeneration
3416 is 9, the condition is out of date with respect to the current
3417 state of the instance.
3422 description: reason contains a programmatic identifier indicating
3423 the reason for the condition's last transition. Producers
3424 of specific condition types may define expected values and
3425 meanings for this field, and whether the values are considered
3426 a guaranteed API. The value should be a CamelCase string.
3427 This field may not be empty.
3430 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
3433 description: status of the condition, one of True, False, Unknown.
3440 description: type of condition in CamelCase or in foo.example.com/CamelCase.
3441 --- Many .condition.type values are consistent across resources
3442 like Available, but because arbitrary conditions can be useful
3443 (see .node.status.conditions), the ability to deconflict is
3444 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
3446 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
3449 - lastTransitionTime
3456 contentConfigChecksum:
3457 description: "ContentConfigChecksum is a checksum of all the configurations
3458 related to the content of the source artifact: - .spec.ignore -
3459 .spec.layerSelector observed in .status.observedGeneration version
3460 of the object. This can be used to determine if the content configuration
3461 has changed and the artifact needs to be rebuilt. It has the format
3462 of `<algo>:<checksum>`, for example: `sha256:<checksum>`. \n Deprecated:
3463 Replaced with explicit fields for observed artifact content config
3466 lastHandledReconcileAt:
3467 description: LastHandledReconcileAt holds the value of the most recent
3468 reconcile request value, so a change of the annotation value can
3472 description: ObservedGeneration is the last observed generation.
3476 description: ObservedIgnore is the observed exclusion patterns used
3477 for constructing the source artifact.
3479 observedLayerSelector:
3480 description: ObservedLayerSelector is the observed layer selector
3481 used for constructing the source artifact.
3484 description: MediaType specifies the OCI media type of the layer
3485 which should be extracted from the OCI Artifact. The first layer
3486 matching this type is selected.
3489 description: Operation specifies how the selected layer should
3490 be processed. By default, the layer compressed content is extracted
3491 to storage. When the operation is set to 'copy', the layer compressed
3492 content is persisted to storage as it is.
3499 description: URL is the download link for the artifact output of the
3500 last OCI Repository sync.
3510 kind: ServiceAccount
3513 app.kubernetes.io/component: source-controller
3514 app.kubernetes.io/instance: flux-system
3515 app.kubernetes.io/part-of: flux
3516 app.kubernetes.io/version: v2.1.2
3517 name: source-controller
3518 namespace: flux-system
3524 app.kubernetes.io/component: source-controller
3525 app.kubernetes.io/instance: flux-system
3526 app.kubernetes.io/part-of: flux
3527 app.kubernetes.io/version: v2.1.2
3528 control-plane: controller
3529 name: source-controller
3530 namespace: flux-system
3538 app: source-controller
3545 app.kubernetes.io/component: source-controller
3546 app.kubernetes.io/instance: flux-system
3547 app.kubernetes.io/part-of: flux
3548 app.kubernetes.io/version: v2.1.2
3549 control-plane: controller
3550 name: source-controller
3551 namespace: flux-system
3556 app: source-controller
3562 prometheus.io/port: "8080"
3563 prometheus.io/scrape: "true"
3565 app: source-controller
3569 - --events-addr=http://notification-controller.flux-system.svc.cluster.local./
3570 - --watch-all-namespaces=true
3572 - --log-encoding=json
3573 - --enable-leader-election
3574 - --storage-path=/data
3575 - --storage-adv-addr=source-controller.$(RUNTIME_NAMESPACE).svc.cluster.local.
3577 - name: RUNTIME_NAMESPACE
3580 fieldPath: metadata.namespace
3582 value: /tmp/.sigstore
3583 image: ghcr.io/fluxcd/source-controller:v1.1.2
3584 imagePullPolicy: IfNotPresent
3591 - containerPort: 9090
3594 - containerPort: 8080
3597 - containerPort: 9440
3612 allowPrivilegeEscalation: false
3616 readOnlyRootFilesystem: true
3619 type: RuntimeDefault
3626 kubernetes.io/os: linux
3627 priorityClassName: system-cluster-critical
3630 serviceAccountName: source-controller
3631 terminationGracePeriodSeconds: 10
3638 apiVersion: apiextensions.k8s.io/v1
3639 kind: CustomResourceDefinition
3642 controller-gen.kubebuilder.io/version: v0.12.0
3644 app.kubernetes.io/component: kustomize-controller
3645 app.kubernetes.io/instance: flux-system
3646 app.kubernetes.io/part-of: flux
3647 app.kubernetes.io/version: v2.1.2
3648 name: kustomizations.kustomize.toolkit.fluxcd.io
3650 group: kustomize.toolkit.fluxcd.io
3653 listKind: KustomizationList
3654 plural: kustomizations
3657 singular: kustomization
3660 - additionalPrinterColumns:
3661 - jsonPath: .metadata.creationTimestamp
3664 - jsonPath: .status.conditions[?(@.type=="Ready")].status
3667 - jsonPath: .status.conditions[?(@.type=="Ready")].message
3673 description: Kustomization is the Schema for the kustomizations API.
3676 description: 'APIVersion defines the versioned schema of this representation
3677 of an object. Servers should convert recognized schemas to the latest
3678 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
3681 description: 'Kind is a string value representing the REST resource this
3682 object represents. Servers may infer this from the endpoint the client
3683 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
3688 description: KustomizationSpec defines the configuration to calculate
3689 the desired state from a Source using Kustomize.
3692 description: CommonMetadata specifies the common labels and annotations
3693 that are applied to all resources. Any existing label or annotation
3694 will be overridden if its key matches a common one.
3697 additionalProperties:
3699 description: Annotations to be added to the object's metadata.
3702 additionalProperties:
3704 description: Labels to be added to the object's metadata.
3708 description: Components specifies relative paths to specifications
3709 of other Components.
3714 description: Decrypt Kubernetes secrets before applying them on the
3718 description: Provider is the name of the decryption engine.
3723 description: The secret name containing the private OpenPGP keys
3724 used for decryption.
3727 description: Name of the referent.
3736 description: DependsOn may contain a meta.NamespacedObjectReference
3737 slice with references to Kustomization resources that must be ready
3738 before this Kustomization can be reconciled.
3740 description: NamespacedObjectReference contains enough information
3741 to locate the referenced Kubernetes resource object in any namespace.
3744 description: Name of the referent.
3747 description: Namespace of the referent, when not specified it
3748 acts as LocalObjectReference.
3756 description: Force instructs the controller to recreate resources
3757 when patching fails due to an immutable field change.
3760 description: A list of resources to be included in the health assessment.
3762 description: NamespacedObjectKindReference contains enough information
3763 to locate the typed referenced Kubernetes resource object in any
3767 description: API version of the referent, if not specified the
3768 Kubernetes preferred version will be used.
3771 description: Kind of the referent.
3774 description: Name of the referent.
3777 description: Namespace of the referent, when not specified it
3778 acts as LocalObjectReference.
3786 description: Images is a list of (image name, new name, new tag or
3787 digest) for changing image names, tags or digests. This can also
3788 be achieved with a patch, but this operator is simpler to specify.
3790 description: Image contains an image name, a new name, a new tag
3791 or digest, which will replace the original name and tag.
3794 description: Digest is the value used to replace the original
3795 image tag. If digest is present NewTag value is ignored.
3798 description: Name is a tag-less image name.
3801 description: NewName is the value used to replace the original
3805 description: NewTag is the value used to replace the original
3813 description: The interval at which to reconcile the Kustomization.
3814 This interval is approximate and may be subject to jitter to ensure
3815 efficient use of resources.
3816 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
3819 description: The KubeConfig for reconciling the Kustomization on a
3820 remote cluster. When used in combination with KustomizationSpec.ServiceAccountName,
3821 forces the controller to act on behalf of that Service Account at
3822 the target cluster. If the --default-service-account flag is set,
3823 its value will be used as a controller level fallback for when KustomizationSpec.ServiceAccountName
3827 description: SecretRef holds the name of a secret that contains
3828 a key with the kubeconfig file as the value. If no key is set,
3829 the key will default to 'value'. It is recommended that the
3830 kubeconfig is self-contained, and the secret is regularly updated
3831 if credentials such as a cloud-access-token expire. Cloud specific
3832 `cmd-path` auth helpers will not function without adding binaries
3833 and credentials to the Pod that is responsible for reconciling
3834 Kubernetes resources.
3837 description: Key in the Secret, when not specified an implementation-specific
3838 default key is used.
3841 description: Name of the Secret.
3850 description: Strategic merge and JSON patches, defined as inline YAML
3851 objects, capable of targeting objects based on kind, label and annotation
3854 description: Patch contains an inline StrategicMerge or JSON6902
3855 patch, and the target the patch should be applied to.
3858 description: Patch contains an inline StrategicMerge patch or
3859 an inline JSON6902 patch with an array of operation objects.
3862 description: Target points to the resources that the patch document
3863 should be applied to.
3866 description: AnnotationSelector is a string that follows
3867 the label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
3868 It matches with the resource annotations.
3871 description: Group is the API group to select resources
3872 from. Together with Version and Kind it is capable of
3873 unambiguously identifying and/or selecting resources.
3874 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
3877 description: Kind of the API Group to select resources from.
3878 Together with Group and Version it is capable of unambiguously
3879 identifying and/or selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
3882 description: LabelSelector is a string that follows the
3883 label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
3884 It matches with the resource labels.
3887 description: Name to match resources with.
3890 description: Namespace to select resources from.
3893 description: Version of the API Group to select resources
3894 from. Together with Group and Kind it is capable of unambiguously
3895 identifying and/or selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
3903 description: Path to the directory containing the kustomization.yaml
3904 file, or the set of plain YAMLs a kustomization.yaml should be generated
3905 for. Defaults to 'None', which translates to the root path of the
3909 description: PostBuild describes which actions to perform on the YAML
3910 manifest generated by building the kustomize overlay.
3913 additionalProperties:
3915 description: Substitute holds a map of key/value pairs. The variables
3916 defined in your YAML manifests that match any of the keys defined
3917 in the map will be substituted with the set value. Includes
3918 support for bash string replacement functions e.g. ${var:=default},
3919 ${var:position} and ${var/substring/replacement}.
3922 description: SubstituteFrom holds references to ConfigMaps and
3923 Secrets containing the variables and their values to be substituted
3924 in the YAML manifests. The ConfigMap and the Secret data keys
3925 represent the var names, and they must match the vars declared
3926 in the manifests for the substitution to happen.
3928 description: SubstituteReference contains a reference to a resource
3929 containing the variables name and value.
3932 description: Kind of the values referent, valid values are
3933 ('Secret', 'ConfigMap').
3939 description: Name of the values referent. Should reside
3940 in the same namespace as the referring resource.
3946 description: Optional indicates whether the referenced resource
3947 must exist, or whether to tolerate its absence. If true
3948 and the referenced resource is absent, proceed as if the
3949 resource was present but empty, without any variables
3959 description: Prune enables garbage collection.
3962 description: The interval at which to retry a previously failed reconciliation.
3963 When not specified, the controller uses the KustomizationSpec.Interval
3964 value to retry failures.
3965 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
3968 description: The name of the Kubernetes service account to impersonate
3969 when reconciling this Kustomization.
3972 description: Reference of the source where the kustomization file
3976 description: API version of the referent.
3979 description: Kind of the referent.
3986 description: Name of the referent.
3989 description: Namespace of the referent, defaults to the namespace
3990 of the Kubernetes resource object that contains the reference.
3997 description: This flag tells the controller to suspend subsequent
3998 kustomize executions, it does not apply to already started executions.
4002 description: TargetNamespace sets or overrides the namespace in the
4003 kustomization.yaml file.
4008 description: Timeout for validation, apply and health checking operations.
4009 Defaults to 'Interval' duration.
4010 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
4013 description: Wait instructs the controller to check the health of
4014 all the reconciled resources. When enabled, the HealthChecks are
4015 ignored. Defaults to false.
4024 observedGeneration: -1
4025 description: KustomizationStatus defines the observed state of a kustomization.
4029 description: "Condition contains details for one aspect of the current
4030 state of this API Resource. --- This struct is intended for direct
4031 use as an array at the field path .status.conditions. For example,
4032 \n type FooStatus struct{ // Represents the observations of a
4033 foo's current state. // Known .status.conditions.type are: \"Available\",
4034 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
4035 // +listType=map // +listMapKey=type Conditions []metav1.Condition
4036 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
4037 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
4040 description: lastTransitionTime is the last time the condition
4041 transitioned from one status to another. This should be when
4042 the underlying condition changed. If that is not known, then
4043 using the time when the API field changed is acceptable.
4047 description: message is a human readable message indicating
4048 details about the transition. This may be an empty string.
4052 description: observedGeneration represents the .metadata.generation
4053 that the condition was set based upon. For instance, if .metadata.generation
4054 is currently 12, but the .status.conditions[x].observedGeneration
4055 is 9, the condition is out of date with respect to the current
4056 state of the instance.
4061 description: reason contains a programmatic identifier indicating
4062 the reason for the condition's last transition. Producers
4063 of specific condition types may define expected values and
4064 meanings for this field, and whether the values are considered
4065 a guaranteed API. The value should be a CamelCase string.
4066 This field may not be empty.
4069 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
4072 description: status of the condition, one of True, False, Unknown.
4079 description: type of condition in CamelCase or in foo.example.com/CamelCase.
4080 --- Many .condition.type values are consistent across resources
4081 like Available, but because arbitrary conditions can be useful
4082 (see .node.status.conditions), the ability to deconflict is
4083 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
4085 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
4088 - lastTransitionTime
4096 description: Inventory contains the list of Kubernetes resource object
4097 references that have been successfully applied.
4100 description: Entries of Kubernetes resource object references.
4102 description: ResourceRef contains the information necessary
4103 to locate a resource within a cluster.
4106 description: ID is the string representation of the Kubernetes
4107 resource object's metadata, in the format '<namespace>_<name>_<group>_<kind>'.
4110 description: Version is the API version of the Kubernetes
4111 resource object's kind.
4121 lastAppliedRevision:
4122 description: The last successfully applied revision. Equals the Revision
4123 of the applied Artifact from the referenced Source.
4125 lastAttemptedRevision:
4126 description: LastAttemptedRevision is the revision of the last reconciliation
4129 lastHandledReconcileAt:
4130 description: LastHandledReconcileAt holds the value of the most recent
4131 reconcile request value, so a change of the annotation value can
4135 description: ObservedGeneration is the last reconciled generation.
4144 - additionalPrinterColumns:
4145 - jsonPath: .status.conditions[?(@.type=="Ready")].status
4148 - jsonPath: .status.conditions[?(@.type=="Ready")].message
4151 - jsonPath: .metadata.creationTimestamp
4155 deprecationWarning: v1beta1 Kustomization is deprecated, upgrade to v1
4159 description: Kustomization is the Schema for the kustomizations API.
4162 description: 'APIVersion defines the versioned schema of this representation
4163 of an object. Servers should convert recognized schemas to the latest
4164 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
4167 description: 'Kind is a string value representing the REST resource this
4168 object represents. Servers may infer this from the endpoint the client
4169 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
4174 description: KustomizationSpec defines the desired state of a kustomization.
4177 description: Decrypt Kubernetes secrets before applying them on the
4181 description: Provider is the name of the decryption engine.
4186 description: The secret name containing the private OpenPGP keys
4187 used for decryption.
4190 description: Name of the referent.
4199 description: DependsOn may contain a meta.NamespacedObjectReference
4200 slice with references to Kustomization resources that must be ready
4201 before this Kustomization can be reconciled.
4203 description: NamespacedObjectReference contains enough information
4204 to locate the referenced Kubernetes resource object in any namespace.
4207 description: Name of the referent.
4210 description: Namespace of the referent, when not specified it
4211 acts as LocalObjectReference.
4219 description: Force instructs the controller to recreate resources
4220 when patching fails due to an immutable field change.
4223 description: A list of resources to be included in the health assessment.
4225 description: NamespacedObjectKindReference contains enough information
4226 to locate the typed referenced Kubernetes resource object in any
4230 description: API version of the referent, if not specified the
4231 Kubernetes preferred version will be used.
4234 description: Kind of the referent.
4237 description: Name of the referent.
4240 description: Namespace of the referent, when not specified it
4241 acts as LocalObjectReference.
4249 description: Images is a list of (image name, new name, new tag or
4250 digest) for changing image names, tags or digests. This can also
4251 be achieved with a patch, but this operator is simpler to specify.
4253 description: Image contains an image name, a new name, a new tag
4254 or digest, which will replace the original name and tag.
4257 description: Digest is the value used to replace the original
4258 image tag. If digest is present NewTag value is ignored.
4261 description: Name is a tag-less image name.
4264 description: NewName is the value used to replace the original
4268 description: NewTag is the value used to replace the original
4276 description: The interval at which to reconcile the Kustomization.
4279 description: The KubeConfig for reconciling the Kustomization on a
4280 remote cluster. When specified, KubeConfig takes precedence over
4284 description: SecretRef holds the name to a secret that contains
4285 a 'value' key with the kubeconfig file as the value. It must
4286 be in the same namespace as the Kustomization. It is recommended
4287 that the kubeconfig is self-contained, and the secret is regularly
4288 updated if credentials such as a cloud-access-token expire.
4289 Cloud specific `cmd-path` auth helpers will not function without
4290 adding binaries and credentials to the Pod that is responsible
4291 for reconciling the Kustomization.
4294 description: Name of the referent.
4301 description: Strategic merge and JSON patches, defined as inline YAML
4302 objects, capable of targeting objects based on kind, label and annotation
4305 description: Patch contains an inline StrategicMerge or JSON6902
4306 patch, and the target the patch should be applied to.
4309 description: Patch contains an inline StrategicMerge patch or
4310 an inline JSON6902 patch with an array of operation objects.
4313 description: Target points to the resources that the patch document
4314 should be applied to.
4317 description: AnnotationSelector is a string that follows
4318 the label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
4319 It matches with the resource annotations.
4322 description: Group is the API group to select resources
4323 from. Together with Version and Kind it is capable of
4324 unambiguously identifying and/or selecting resources.
4325 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
4328 description: Kind of the API Group to select resources from.
4329 Together with Group and Version it is capable of unambiguously
4330 identifying and/or selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
4333 description: LabelSelector is a string that follows the
4334 label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
4335 It matches with the resource labels.
4338 description: Name to match resources with.
4341 description: Namespace to select resources from.
4344 description: Version of the API Group to select resources
4345 from. Together with Group and Kind it is capable of unambiguously
4346 identifying and/or selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
4354 description: JSON 6902 patches, defined as inline YAML objects.
4356 description: JSON6902Patch contains a JSON6902 patch and the target
4357 the patch should be applied to.
4360 description: Patch contains the JSON6902 patch document with
4361 an array of operation objects.
4363 description: JSON6902 is a JSON6902 operation object. https://datatracker.ietf.org/doc/html/rfc6902#section-4
4366 description: From contains a JSON-pointer value that references
4367 a location within the target document where the operation
4368 is performed. The meaning of the value depends on the
4369 value of Op, and is NOT taken into account by all operations.
4372 description: Op indicates the operation to perform. Its
4373 value MUST be one of "add", "remove", "replace", "move",
4374 "copy", or "test". https://datatracker.ietf.org/doc/html/rfc6902#section-4
4384 description: Path contains the JSON-pointer value that
4385 references a location within the target document where
4386 the operation is performed. The meaning of the value
4387 depends on the value of Op.
4390 description: Value contains a valid JSON structure. The
4391 meaning of the value depends on the value of Op, and
4392 is NOT taken into account by all operations.
4393 x-kubernetes-preserve-unknown-fields: true
4400 description: Target points to the resources that the patch document
4401 should be applied to.
4404 description: AnnotationSelector is a string that follows
4405 the label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
4406 It matches with the resource annotations.
4409 description: Group is the API group to select resources
4410 from. Together with Version and Kind it is capable of
4411 unambiguously identifying and/or selecting resources.
4412 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
4415 description: Kind of the API Group to select resources from.
4416 Together with Group and Version it is capable of unambiguously
4417 identifying and/or selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
4420 description: LabelSelector is a string that follows the
4421 label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
4422 It matches with the resource labels.
4425 description: Name to match resources with.
4428 description: Namespace to select resources from.
4431 description: Version of the API Group to select resources
4432 from. Together with Group and Kind it is capable of unambiguously
4433 identifying and/or selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
4441 patchesStrategicMerge:
4442 description: Strategic merge patches, defined as inline YAML objects.
4444 x-kubernetes-preserve-unknown-fields: true
4447 description: Path to the directory containing the kustomization.yaml
4448 file, or the set of plain YAMLs a kustomization.yaml should be generated
4449 for. Defaults to 'None', which translates to the root path of the
4453 description: PostBuild describes which actions to perform on the YAML
4454 manifest generated by building the kustomize overlay.
4457 additionalProperties:
4459 description: Substitute holds a map of key/value pairs. The variables
4460 defined in your YAML manifests that match any of the keys defined
4461 in the map will be substituted with the set value. Includes
4462 support for bash string replacement functions e.g. ${var:=default},
4463 ${var:position} and ${var/substring/replacement}.
4466 description: SubstituteFrom holds references to ConfigMaps and
4467 Secrets containing the variables and their values to be substituted
4468 in the YAML manifests. The ConfigMap and the Secret data keys
4469 represent the var names and they must match the vars declared
4470 in the manifests for the substitution to happen.
4472 description: SubstituteReference contains a reference to a resource
4473 containing the variables name and value.
4476 description: Kind of the values referent, valid values are
4477 ('Secret', 'ConfigMap').
4483 description: Name of the values referent. Should reside
4484 in the same namespace as the referring resource.
4495 description: Prune enables garbage collection.
4498 description: The interval at which to retry a previously failed reconciliation.
4499 When not specified, the controller uses the KustomizationSpec.Interval
4500 value to retry failures.
4503 description: The name of the Kubernetes service account to impersonate
4504 when reconciling this Kustomization.
4507 description: Reference of the source where the kustomization file
4511 description: API version of the referent
4514 description: Kind of the referent
4520 description: Name of the referent
4523 description: Namespace of the referent, defaults to the Kustomization
4531 description: This flag tells the controller to suspend subsequent
4532 kustomize executions, it does not apply to already started executions.
4536 description: TargetNamespace sets or overrides the namespace in the
4537 kustomization.yaml file.
4542 description: Timeout for validation, apply and health checking operations.
4543 Defaults to 'Interval' duration.
4546 description: Validate the Kubernetes objects before applying them
4547 on the cluster. The validation strategy can be 'client' (local dry-run),
4548 'server' (APIServer dry-run) or 'none'. When 'Force' is 'true',
4549 validation will fallback to 'client' if set to 'server' because
4550 server-side validation is not supported in this scenario.
4563 observedGeneration: -1
4564 description: KustomizationStatus defines the observed state of a kustomization.
4568 description: "Condition contains details for one aspect of the current
4569 state of this API Resource. --- This struct is intended for direct
4570 use as an array at the field path .status.conditions. For example,
4571 \n type FooStatus struct{ // Represents the observations of a
4572 foo's current state. // Known .status.conditions.type are: \"Available\",
4573 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
4574 // +listType=map // +listMapKey=type Conditions []metav1.Condition
4575 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
4576 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
4579 description: lastTransitionTime is the last time the condition
4580 transitioned from one status to another. This should be when
4581 the underlying condition changed. If that is not known, then
4582 using the time when the API field changed is acceptable.
4586 description: message is a human readable message indicating
4587 details about the transition. This may be an empty string.
4591 description: observedGeneration represents the .metadata.generation
4592 that the condition was set based upon. For instance, if .metadata.generation
4593 is currently 12, but the .status.conditions[x].observedGeneration
4594 is 9, the condition is out of date with respect to the current
4595 state of the instance.
4600 description: reason contains a programmatic identifier indicating
4601 the reason for the condition's last transition. Producers
4602 of specific condition types may define expected values and
4603 meanings for this field, and whether the values are considered
4604 a guaranteed API. The value should be a CamelCase string.
4605 This field may not be empty.
4608 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
4611 description: status of the condition, one of True, False, Unknown.
4618 description: type of condition in CamelCase or in foo.example.com/CamelCase.
4619 --- Many .condition.type values are consistent across resources
4620 like Available, but because arbitrary conditions can be useful
4621 (see .node.status.conditions), the ability to deconflict is
4622 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
4624 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
4627 - lastTransitionTime
4634 lastAppliedRevision:
4635 description: The last successfully applied revision. The revision
4636 format for Git sources is <branch|tag>/<commit-sha>.
4638 lastAttemptedRevision:
4639 description: LastAttemptedRevision is the revision of the last reconciliation
4642 lastHandledReconcileAt:
4643 description: LastHandledReconcileAt holds the value of the most recent
4644 reconcile request value, so a change of the annotation value can
4648 description: ObservedGeneration is the last reconciled generation.
4652 description: The last successfully applied revision metadata.
4655 description: The manifests sha1 checksum.
4658 description: A list of Kubernetes kinds grouped by namespace.
4660 description: Snapshot holds the metadata of namespaced Kubernetes
4664 additionalProperties:
4666 description: The list of Kubernetes kinds.
4669 description: The namespace of this entry.
4685 - additionalPrinterColumns:
4686 - jsonPath: .metadata.creationTimestamp
4689 - jsonPath: .status.conditions[?(@.type=="Ready")].status
4692 - jsonPath: .status.conditions[?(@.type=="Ready")].message
4696 deprecationWarning: v1beta2 Kustomization is deprecated, upgrade to v1
4700 description: Kustomization is the Schema for the kustomizations API.
4703 description: 'APIVersion defines the versioned schema of this representation
4704 of an object. Servers should convert recognized schemas to the latest
4705 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
4708 description: 'Kind is a string value representing the REST resource this
4709 object represents. Servers may infer this from the endpoint the client
4710 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
4715 description: KustomizationSpec defines the configuration to calculate
4716 the desired state from a Source using Kustomize.
4719 description: CommonMetadata specifies the common labels and annotations
4720 that are applied to all resources. Any existing label or annotation
4721 will be overridden if its key matches a common one.
4724 additionalProperties:
4726 description: Annotations to be added to the object's metadata.
4729 additionalProperties:
4731 description: Labels to be added to the object's metadata.
4735 description: Components specifies relative paths to specifications
4736 of other Components.
4741 description: Decrypt Kubernetes secrets before applying them on the
4745 description: Provider is the name of the decryption engine.
4750 description: The secret name containing the private OpenPGP keys
4751 used for decryption.
4754 description: Name of the referent.
4763 description: DependsOn may contain a meta.NamespacedObjectReference
4764 slice with references to Kustomization resources that must be ready
4765 before this Kustomization can be reconciled.
4767 description: NamespacedObjectReference contains enough information
4768 to locate the referenced Kubernetes resource object in any namespace.
4771 description: Name of the referent.
4774 description: Namespace of the referent, when not specified it
4775 acts as LocalObjectReference.
4783 description: Force instructs the controller to recreate resources
4784 when patching fails due to an immutable field change.
4787 description: A list of resources to be included in the health assessment.
4789 description: NamespacedObjectKindReference contains enough information
4790 to locate the typed referenced Kubernetes resource object in any
4794 description: API version of the referent, if not specified the
4795 Kubernetes preferred version will be used.
4798 description: Kind of the referent.
4801 description: Name of the referent.
4804 description: Namespace of the referent, when not specified it
4805 acts as LocalObjectReference.
4813 description: Images is a list of (image name, new name, new tag or
4814 digest) for changing image names, tags or digests. This can also
4815 be achieved with a patch, but this operator is simpler to specify.
4817 description: Image contains an image name, a new name, a new tag
4818 or digest, which will replace the original name and tag.
4821 description: Digest is the value used to replace the original
4822 image tag. If digest is present NewTag value is ignored.
4825 description: Name is a tag-less image name.
4828 description: NewName is the value used to replace the original
4832 description: NewTag is the value used to replace the original
4840 description: The interval at which to reconcile the Kustomization.
4841 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
4844 description: The KubeConfig for reconciling the Kustomization on a
4845 remote cluster. When used in combination with KustomizationSpec.ServiceAccountName,
4846 forces the controller to act on behalf of that Service Account at
4847 the target cluster. If the --default-service-account flag is set,
4848 its value will be used as a controller level fallback for when KustomizationSpec.ServiceAccountName
4852 description: SecretRef holds the name of a secret that contains
4853 a key with the kubeconfig file as the value. If no key is set,
4854 the key will default to 'value'. It is recommended that the
4855 kubeconfig is self-contained, and the secret is regularly updated
4856 if credentials such as a cloud-access-token expire. Cloud specific
4857 `cmd-path` auth helpers will not function without adding binaries
4858 and credentials to the Pod that is responsible for reconciling
4859 Kubernetes resources.
4862 description: Key in the Secret, when not specified an implementation-specific
4863 default key is used.
4866 description: Name of the Secret.
4875 description: Strategic merge and JSON patches, defined as inline YAML
4876 objects, capable of targeting objects based on kind, label and annotation
4879 description: Patch contains an inline StrategicMerge or JSON6902
4880 patch, and the target the patch should be applied to.
4883 description: Patch contains an inline StrategicMerge patch or
4884 an inline JSON6902 patch with an array of operation objects.
4887 description: Target points to the resources that the patch document
4888 should be applied to.
4891 description: AnnotationSelector is a string that follows
4892 the label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
4893 It matches with the resource annotations.
4896 description: Group is the API group to select resources
4897 from. Together with Version and Kind it is capable of
4898 unambiguously identifying and/or selecting resources.
4899 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
4902 description: Kind of the API Group to select resources from.
4903 Together with Group and Version it is capable of unambiguously
4904 identifying and/or selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
4907 description: LabelSelector is a string that follows the
4908 label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
4909 It matches with the resource labels.
4912 description: Name to match resources with.
4915 description: Namespace to select resources from.
4918 description: Version of the API Group to select resources
4919 from. Together with Group and Kind it is capable of unambiguously
4920 identifying and/or selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
4928 description: 'JSON 6902 patches, defined as inline YAML objects. Deprecated:
4929 Use Patches instead.'
4931 description: JSON6902Patch contains a JSON6902 patch and the target
4932 the patch should be applied to.
4935 description: Patch contains the JSON6902 patch document with
4936 an array of operation objects.
4938 description: JSON6902 is a JSON6902 operation object. https://datatracker.ietf.org/doc/html/rfc6902#section-4
4941 description: From contains a JSON-pointer value that references
4942 a location within the target document where the operation
4943 is performed. The meaning of the value depends on the
4944 value of Op, and is NOT taken into account by all operations.
4947 description: Op indicates the operation to perform. Its
4948 value MUST be one of "add", "remove", "replace", "move",
4949 "copy", or "test". https://datatracker.ietf.org/doc/html/rfc6902#section-4
4959 description: Path contains the JSON-pointer value that
4960 references a location within the target document where
4961 the operation is performed. The meaning of the value
4962 depends on the value of Op.
4965 description: Value contains a valid JSON structure. The
4966 meaning of the value depends on the value of Op, and
4967 is NOT taken into account by all operations.
4968 x-kubernetes-preserve-unknown-fields: true
4975 description: Target points to the resources that the patch document
4976 should be applied to.
4979 description: AnnotationSelector is a string that follows
4980 the label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
4981 It matches with the resource annotations.
4984 description: Group is the API group to select resources
4985 from. Together with Version and Kind it is capable of
4986 unambiguously identifying and/or selecting resources.
4987 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
4990 description: Kind of the API Group to select resources from.
4991 Together with Group and Version it is capable of unambiguously
4992 identifying and/or selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
4995 description: LabelSelector is a string that follows the
4996 label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
4997 It matches with the resource labels.
5000 description: Name to match resources with.
5003 description: Namespace to select resources from.
5006 description: Version of the API Group to select resources
5007 from. Together with Group and Kind it is capable of unambiguously
5008 identifying and/or selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
5016 patchesStrategicMerge:
5017 description: 'Strategic merge patches, defined as inline YAML objects.
5018 Deprecated: Use Patches instead.'
5020 x-kubernetes-preserve-unknown-fields: true
5023 description: Path to the directory containing the kustomization.yaml
5024 file, or the set of plain YAMLs a kustomization.yaml should be generated
5025 for. Defaults to 'None', which translates to the root path of the
5029 description: PostBuild describes which actions to perform on the YAML
5030 manifest generated by building the kustomize overlay.
5033 additionalProperties:
5035 description: Substitute holds a map of key/value pairs. The variables
5036 defined in your YAML manifests that match any of the keys defined
5037 in the map will be substituted with the set value. Includes
5038 support for bash string replacement functions e.g. ${var:=default},
5039 ${var:position} and ${var/substring/replacement}.
5042 description: SubstituteFrom holds references to ConfigMaps and
5043 Secrets containing the variables and their values to be substituted
5044 in the YAML manifests. The ConfigMap and the Secret data keys
5045 represent the var names and they must match the vars declared
5046 in the manifests for the substitution to happen.
5048 description: SubstituteReference contains a reference to a resource
5049 containing the variables name and value.
5052 description: Kind of the values referent, valid values are
5053 ('Secret', 'ConfigMap').
5059 description: Name of the values referent. Should reside
5060 in the same namespace as the referring resource.
5066 description: Optional indicates whether the referenced resource
5067 must exist, or whether to tolerate its absence. If true
5068 and the referenced resource is absent, proceed as if the
5069 resource was present but empty, without any variables
5079 description: Prune enables garbage collection.
5082 description: The interval at which to retry a previously failed reconciliation.
5083 When not specified, the controller uses the KustomizationSpec.Interval
5084 value to retry failures.
5085 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
5088 description: The name of the Kubernetes service account to impersonate
5089 when reconciling this Kustomization.
5092 description: Reference of the source where the kustomization file
5096 description: API version of the referent.
5099 description: Kind of the referent.
5106 description: Name of the referent.
5109 description: Namespace of the referent, defaults to the namespace
5110 of the Kubernetes resource object that contains the reference.
5117 description: This flag tells the controller to suspend subsequent
5118 kustomize executions, it does not apply to already started executions.
5122 description: TargetNamespace sets or overrides the namespace in the
5123 kustomization.yaml file.
5128 description: Timeout for validation, apply and health checking operations.
5129 Defaults to 'Interval' duration.
5130 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
5133 description: 'Deprecated: Not used in v1beta2.'
5140 description: Wait instructs the controller to check the health of
5141 all the reconciled resources. When enabled, the HealthChecks are
5142 ignored. Defaults to false.
5151 observedGeneration: -1
5152 description: KustomizationStatus defines the observed state of a kustomization.
5156 description: "Condition contains details for one aspect of the current
5157 state of this API Resource. --- This struct is intended for direct
5158 use as an array at the field path .status.conditions. For example,
5159 \n type FooStatus struct{ // Represents the observations of a
5160 foo's current state. // Known .status.conditions.type are: \"Available\",
5161 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
5162 // +listType=map // +listMapKey=type Conditions []metav1.Condition
5163 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
5164 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
5167 description: lastTransitionTime is the last time the condition
5168 transitioned from one status to another. This should be when
5169 the underlying condition changed. If that is not known, then
5170 using the time when the API field changed is acceptable.
5174 description: message is a human readable message indicating
5175 details about the transition. This may be an empty string.
5179 description: observedGeneration represents the .metadata.generation
5180 that the condition was set based upon. For instance, if .metadata.generation
5181 is currently 12, but the .status.conditions[x].observedGeneration
5182 is 9, the condition is out of date with respect to the current
5183 state of the instance.
5188 description: reason contains a programmatic identifier indicating
5189 the reason for the condition's last transition. Producers
5190 of specific condition types may define expected values and
5191 meanings for this field, and whether the values are considered
5192 a guaranteed API. The value should be a CamelCase string.
5193 This field may not be empty.
5196 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
5199 description: status of the condition, one of True, False, Unknown.
5206 description: type of condition in CamelCase or in foo.example.com/CamelCase.
5207 --- Many .condition.type values are consistent across resources
5208 like Available, but because arbitrary conditions can be useful
5209 (see .node.status.conditions), the ability to deconflict is
5210 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
5212 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
5215 - lastTransitionTime
5223 description: Inventory contains the list of Kubernetes resource object
5224 references that have been successfully applied.
5227 description: Entries of Kubernetes resource object references.
5229 description: ResourceRef contains the information necessary
5230 to locate a resource within a cluster.
5233 description: ID is the string representation of the Kubernetes
5234 resource object's metadata, in the format '<namespace>_<name>_<group>_<kind>'.
5237 description: Version is the API version of the Kubernetes
5238 resource object's kind.
5248 lastAppliedRevision:
5249 description: The last successfully applied revision. Equals the Revision
5250 of the applied Artifact from the referenced Source.
5252 lastAttemptedRevision:
5253 description: LastAttemptedRevision is the revision of the last reconciliation
5256 lastHandledReconcileAt:
5257 description: LastHandledReconcileAt holds the value of the most recent
5258 reconcile request value, so a change of the annotation value can
5262 description: ObservedGeneration is the last reconciled generation.
5273 kind: ServiceAccount
5276 app.kubernetes.io/component: kustomize-controller
5277 app.kubernetes.io/instance: flux-system
5278 app.kubernetes.io/part-of: flux
5279 app.kubernetes.io/version: v2.1.2
5280 name: kustomize-controller
5281 namespace: flux-system
5287 app.kubernetes.io/component: kustomize-controller
5288 app.kubernetes.io/instance: flux-system
5289 app.kubernetes.io/part-of: flux
5290 app.kubernetes.io/version: v2.1.2
5291 control-plane: controller
5292 name: kustomize-controller
5293 namespace: flux-system
5298 app: kustomize-controller
5302 prometheus.io/port: "8080"
5303 prometheus.io/scrape: "true"
5305 app: kustomize-controller
5309 - --events-addr=http://notification-controller.flux-system.svc.cluster.local./
5310 - --watch-all-namespaces=true
5312 - --log-encoding=json
5313 - --enable-leader-election
5315 - name: RUNTIME_NAMESPACE
5318 fieldPath: metadata.namespace
5319 image: ghcr.io/fluxcd/kustomize-controller:v1.1.1
5320 imagePullPolicy: IfNotPresent
5327 - containerPort: 8080
5330 - containerPort: 9440
5345 allowPrivilegeEscalation: false
5349 readOnlyRootFilesystem: true
5352 type: RuntimeDefault
5357 kubernetes.io/os: linux
5358 priorityClassName: system-cluster-critical
5361 serviceAccountName: kustomize-controller
5362 terminationGracePeriodSeconds: 60
5367 apiVersion: apiextensions.k8s.io/v1
5368 kind: CustomResourceDefinition
5371 controller-gen.kubebuilder.io/version: v0.12.0
5373 app.kubernetes.io/component: helm-controller
5374 app.kubernetes.io/instance: flux-system
5375 app.kubernetes.io/part-of: flux
5376 app.kubernetes.io/version: v2.1.2
5377 name: helmreleases.helm.toolkit.fluxcd.io
5379 group: helm.toolkit.fluxcd.io
5382 listKind: HelmReleaseList
5383 plural: helmreleases
5386 singular: helmrelease
5389 - additionalPrinterColumns:
5390 - jsonPath: .metadata.creationTimestamp
5393 - jsonPath: .status.conditions[?(@.type=="Ready")].status
5396 - jsonPath: .status.conditions[?(@.type=="Ready")].message
5402 description: HelmRelease is the Schema for the helmreleases API
5405 description: 'APIVersion defines the versioned schema of this representation
5406 of an object. Servers should convert recognized schemas to the latest
5407 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
5410 description: 'Kind is a string value representing the REST resource this
5411 object represents. Servers may infer this from the endpoint the client
5412 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
5417 description: HelmReleaseSpec defines the desired state of a Helm release.
5420 description: Chart defines the template of the v1beta2.HelmChart that
5421 should be created for this HelmRelease.
5424 description: ObjectMeta holds the template for metadata like labels
5428 additionalProperties:
5430 description: 'Annotations is an unstructured key value map
5431 stored with a resource that may be set by external tools
5432 to store and retrieve arbitrary metadata. They are not queryable
5433 and should be preserved when modifying objects. More info:
5434 https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/'
5437 additionalProperties:
5439 description: 'Map of string keys and values that can be used
5440 to organize and categorize (scope and select) objects. More
5441 info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/'
5445 description: Spec holds the template for the v1beta2.HelmChartSpec
5446 for this HelmRelease.
5449 description: The name or path the Helm chart is available
5450 at in the SourceRef.
5453 description: Interval at which to check the v1beta2.Source
5454 for updates. Defaults to 'HelmReleaseSpec.Interval'.
5455 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
5458 default: ChartVersion
5459 description: Determines what enables the creation of a new
5460 artifact. Valid values are ('ChartVersion', 'Revision').
5461 See the documentation of the values for an explanation on
5462 their behavior. Defaults to ChartVersion when omitted.
5468 description: The name and namespace of the v1beta2.Source
5469 the chart is available at.
5472 description: APIVersion of the referent.
5475 description: Kind of the referent.
5482 description: Name of the referent.
5487 description: Namespace of the referent.
5495 description: Alternative values file to use as the default
5496 chart values, expected to be a relative path in the SourceRef.
5497 Deprecated in favor of ValuesFiles, for backwards compatibility
5498 the file defined here is merged before the ValuesFiles items.
5499 Ignored when omitted.
5502 description: Alternative list of values files to use as the
5503 chart values (values.yaml is not included by default), expected
5504 to be a relative path in the SourceRef. Values files are
5505 merged in the order of this list with the last file overriding
5506 the first. Ignored when omitted.
5511 description: Verify contains the secret name containing the
5512 trusted public keys used to verify the signature and specifies
5513 which provider to use to check whether OCI image is authentic.
5514 This field is only supported for OCI sources. Chart dependencies,
5515 which are not bundled in the umbrella chart artifact, are
5520 description: Provider specifies the technology used to
5521 sign the OCI Helm chart.
5526 description: SecretRef specifies the Kubernetes Secret
5527 containing the trusted public keys.
5530 description: Name of the referent.
5540 description: Version semver expression, ignored for charts
5541 from v1beta2.GitRepository and v1beta2.Bucket sources. Defaults
5542 to latest when omitted.
5552 description: DependsOn may contain a meta.NamespacedObjectReference
5553 slice with references to HelmRelease resources that must be ready
5554 before this HelmRelease can be reconciled.
5556 description: NamespacedObjectReference contains enough information
5557 to locate the referenced Kubernetes resource object in any namespace.
5560 description: Name of the referent.
5563 description: Namespace of the referent, when not specified it
5564 acts as LocalObjectReference.
5571 description: Install holds the configuration for Helm install actions
5572 for this HelmRelease.
5575 description: "CRDs upgrade CRDs from the Helm Chart's crds directory
5576 according to the CRD upgrade policy provided here. Valid values
5577 are `Skip`, `Create` or `CreateReplace`. Default is `Create`
5578 and if omitted CRDs are installed but not updated. \n Skip:
5579 do neither install nor replace (update) any CRDs. \n Create:
5580 new CRDs are created, existing CRDs are neither updated nor
5581 deleted. \n CreateReplace: new CRDs are created, existing CRDs
5582 are updated (replaced) but not deleted. \n By default, CRDs
5583 are applied (installed) during Helm install action. With this
5584 option users can opt-in to CRD replace existing CRDs on Helm
5585 install actions, which is not (yet) natively supported by Helm.
5586 https://helm.sh/docs/chart_best_practices/custom_resource_definitions."
5593 description: CreateNamespace tells the Helm install action to
5594 create the HelmReleaseSpec.TargetNamespace if it does not exist
5595 yet. On uninstall, the namespace will not be garbage collected.
5598 description: DisableHooks prevents hooks from running during the
5599 Helm install action.
5601 disableOpenAPIValidation:
5602 description: DisableOpenAPIValidation prevents the Helm install
5603 action from validating rendered templates against the Kubernetes
5607 description: DisableWait disables the waiting for resources to
5608 be ready after a Helm install has been performed.
5611 description: DisableWaitForJobs disables waiting for jobs to complete
5612 after a Helm install has been performed.
5615 description: Remediation holds the remediation configuration for
5616 when the Helm install action for the HelmRelease fails. The
5617 default is to not perform any action.
5620 description: IgnoreTestFailures tells the controller to skip
5621 remediation when the Helm tests are run after an install
5622 action but fail. Defaults to 'Test.IgnoreFailures'.
5624 remediateLastFailure:
5625 description: RemediateLastFailure tells the controller to
5626 remediate the last failure, when no retries remain. Defaults
5630 description: Retries is the number of retries that should
5631 be attempted on failures before bailing. Remediation, using
5632 an uninstall, is performed between each attempt. Defaults
5633 to '0', a negative integer equals to unlimited retries.
5637 description: Replace tells the Helm install action to re-use the
5638 'ReleaseName', but only if that name is a deleted release which
5639 remains in the history.
5642 description: "SkipCRDs tells the Helm install action to not install
5643 any CRDs. By default, CRDs are installed if not already present.
5644 \n Deprecated use CRD policy (`crds`) attribute with value `Skip`
5648 description: Timeout is the time to wait for any individual Kubernetes
5649 operation (like Jobs for hooks) during the performance of a
5650 Helm install action. Defaults to 'HelmReleaseSpec.Timeout'.
5651 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
5655 description: Interval at which to reconcile the Helm release. This
5656 interval is approximate and may be subject to jitter to ensure efficient
5658 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
5661 description: KubeConfig for reconciling the HelmRelease on a remote
5662 cluster. When used in combination with HelmReleaseSpec.ServiceAccountName,
5663 forces the controller to act on behalf of that Service Account at
5664 the target cluster. If the --default-service-account flag is set,
5665 its value will be used as a controller level fallback for when HelmReleaseSpec.ServiceAccountName
5669 description: SecretRef holds the name of a secret that contains
5670 a key with the kubeconfig file as the value. If no key is set,
5671 the key will default to 'value'. It is recommended that the
5672 kubeconfig is self-contained, and the secret is regularly updated
5673 if credentials such as a cloud-access-token expire. Cloud specific
5674 `cmd-path` auth helpers will not function without adding binaries
5675 and credentials to the Pod that is responsible for reconciling
5676 Kubernetes resources.
5679 description: Key in the Secret, when not specified an implementation-specific
5680 default key is used.
5683 description: Name of the Secret.
5692 description: MaxHistory is the number of revisions saved by Helm for
5693 this HelmRelease. Use '0' for an unlimited number of revisions;
5697 description: "PersistentClient tells the controller to use a persistent
5698 Kubernetes client for this release. When enabled, the client will
5699 be reused for the duration of the reconciliation, instead of being
5700 created and destroyed for each (step of a) Helm action. \n This
5701 can improve performance, but may cause issues with some Helm charts
5702 that for example do create Custom Resource Definitions during installation
5703 outside Helm's CRD lifecycle hooks, which are then not observed
5704 to be available by e.g. post-install hooks. \n If not set, it defaults
5708 description: PostRenderers holds an array of Helm PostRenderers, which
5709 will be applied in order of their definition.
5711 description: PostRenderer contains a Helm PostRenderer specification.
5714 description: Kustomization to apply as PostRenderer.
5717 description: Images is a list of (image name, new name,
5718 new tag or digest) for changing image names, tags or digests.
5719 This can also be achieved with a patch, but this operator
5720 is simpler to specify.
5722 description: Image contains an image name, a new name,
5723 a new tag or digest, which will replace the original
5727 description: Digest is the value used to replace the
5728 original image tag. If digest is present NewTag
5732 description: Name is a tag-less image name.
5735 description: NewName is the value used to replace
5739 description: NewTag is the value used to replace the
5747 description: Strategic merge and JSON patches, defined as
5748 inline YAML objects, capable of targeting objects based
5749 on kind, label and annotation selectors.
5751 description: Patch contains an inline StrategicMerge or
5752 JSON6902 patch, and the target the patch should be applied
5756 description: Patch contains an inline StrategicMerge
5757 patch or an inline JSON6902 patch with an array
5758 of operation objects.
5761 description: Target points to the resources that the
5762 patch document should be applied to.
5765 description: AnnotationSelector is a string that
5766 follows the label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
5767 It matches with the resource annotations.
5770 description: Group is the API group to select
5771 resources from. Together with Version and Kind
5772 it is capable of unambiguously identifying and/or
5773 selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
5776 description: Kind of the API Group to select resources
5777 from. Together with Group and Version it is
5778 capable of unambiguously identifying and/or
5779 selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
5782 description: LabelSelector is a string that follows
5783 the label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
5784 It matches with the resource labels.
5787 description: Name to match resources with.
5790 description: Namespace to select resources from.
5793 description: Version of the API Group to select
5794 resources from. Together with Group and Kind
5795 it is capable of unambiguously identifying and/or
5796 selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
5804 description: JSON 6902 patches, defined as inline YAML objects.
5806 description: JSON6902Patch contains a JSON6902 patch and
5807 the target the patch should be applied to.
5810 description: Patch contains the JSON6902 patch document
5811 with an array of operation objects.
5813 description: JSON6902 is a JSON6902 operation object.
5814 https://datatracker.ietf.org/doc/html/rfc6902#section-4
5817 description: From contains a JSON-pointer value
5818 that references a location within the target
5819 document where the operation is performed.
5820 The meaning of the value depends on the value
5821 of Op, and is NOT taken into account by all
5825 description: Op indicates the operation to perform.
5826 Its value MUST be one of "add", "remove",
5827 "replace", "move", "copy", or "test". https://datatracker.ietf.org/doc/html/rfc6902#section-4
5837 description: Path contains the JSON-pointer
5838 value that references a location within the
5839 target document where the operation is performed.
5840 The meaning of the value depends on the value
5844 description: Value contains a valid JSON structure.
5845 The meaning of the value depends on the value
5846 of Op, and is NOT taken into account by all
5848 x-kubernetes-preserve-unknown-fields: true
5855 description: Target points to the resources that the
5856 patch document should be applied to.
5859 description: AnnotationSelector is a string that
5860 follows the label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
5861 It matches with the resource annotations.
5864 description: Group is the API group to select
5865 resources from. Together with Version and Kind
5866 it is capable of unambiguously identifying and/or
5867 selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
5870 description: Kind of the API Group to select resources
5871 from. Together with Group and Version it is
5872 capable of unambiguously identifying and/or
5873 selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
5876 description: LabelSelector is a string that follows
5877 the label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
5878 It matches with the resource labels.
5881 description: Name to match resources with.
5884 description: Namespace to select resources from.
5887 description: Version of the API Group to select
5888 resources from. Together with Group and Kind
5889 it is capable of unambiguously identifying and/or
5890 selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
5898 patchesStrategicMerge:
5899 description: Strategic merge patches, defined as inline
5902 x-kubernetes-preserve-unknown-fields: true
5908 description: ReleaseName used for the Helm release. Defaults to a
5909 composition of '[TargetNamespace-]Name'.
5914 description: Rollback holds the configuration for Helm rollback actions
5915 for this HelmRelease.
5918 description: CleanupOnFail allows deletion of new resources created
5919 during the Helm rollback action when it fails.
5922 description: DisableHooks prevents hooks from running during the
5923 Helm rollback action.
5926 description: DisableWait disables the waiting for resources to
5927 be ready after a Helm rollback has been performed.
5930 description: DisableWaitForJobs disables waiting for jobs to complete
5931 after a Helm rollback has been performed.
5934 description: Force forces resource updates through a replacement
5938 description: Recreate performs pod restarts for the resource if
5942 description: Timeout is the time to wait for any individual Kubernetes
5943 operation (like Jobs for hooks) during the performance of a
5944 Helm rollback action. Defaults to 'HelmReleaseSpec.Timeout'.
5945 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
5949 description: The name of the Kubernetes service account to impersonate
5950 when reconciling this HelmRelease.
5953 description: StorageNamespace used for the Helm storage. Defaults
5954 to the namespace of the HelmRelease.
5959 description: Suspend tells the controller to suspend reconciliation
5960 for this HelmRelease, it does not apply to already started reconciliations.
5964 description: TargetNamespace to target when performing operations
5965 for the HelmRelease. Defaults to the namespace of the HelmRelease.
5970 description: Test holds the configuration for Helm test actions for
5974 description: Enable enables Helm test actions for this HelmRelease
5975 after an Helm install or upgrade action has been performed.
5978 description: IgnoreFailures tells the controller to skip remediation
5979 when the Helm tests are run but fail. Can be overwritten for
5980 tests run after install or upgrade actions in 'Install.IgnoreTestFailures'
5981 and 'Upgrade.IgnoreTestFailures'.
5984 description: Timeout is the time to wait for any individual Kubernetes
5985 operation during the performance of a Helm test action. Defaults
5986 to 'HelmReleaseSpec.Timeout'.
5987 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
5991 description: Timeout is the time to wait for any individual Kubernetes
5992 operation (like Jobs for hooks) during the performance of a Helm
5993 action. Defaults to '5m0s'.
5994 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
5997 description: Uninstall holds the configuration for Helm uninstall
5998 actions for this HelmRelease.
6000 deletionPropagation:
6002 description: DeletionPropagation specifies the deletion propagation
6003 policy when a Helm uninstall is performed.
6010 description: DisableHooks prevents hooks from running during the
6011 Helm rollback action.
6014 description: DisableWait disables waiting for all the resources
6015 to be deleted after a Helm uninstall is performed.
6018 description: KeepHistory tells Helm to remove all associated resources
6019 and mark the release as deleted, but retain the release history.
6022 description: Timeout is the time to wait for any individual Kubernetes
6023 operation (like Jobs for hooks) during the performance of a
6024 Helm uninstall action. Defaults to 'HelmReleaseSpec.Timeout'.
6025 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
6029 description: Upgrade holds the configuration for Helm upgrade actions
6030 for this HelmRelease.
6033 description: CleanupOnFail allows deletion of new resources created
6034 during the Helm upgrade action when it fails.
6037 description: "CRDs upgrade CRDs from the Helm Chart's crds directory
6038 according to the CRD upgrade policy provided here. Valid values
6039 are `Skip`, `Create` or `CreateReplace`. Default is `Skip` and
6040 if omitted CRDs are neither installed nor upgraded. \n Skip:
6041 do neither install nor replace (update) any CRDs. \n Create:
6042 new CRDs are created, existing CRDs are neither updated nor
6043 deleted. \n CreateReplace: new CRDs are created, existing CRDs
6044 are updated (replaced) but not deleted. \n By default, CRDs
6045 are not applied during Helm upgrade action. With this option
6046 users can opt-in to CRD upgrade, which is not (yet) natively
6047 supported by Helm. https://helm.sh/docs/chart_best_practices/custom_resource_definitions."
6054 description: DisableHooks prevents hooks from running during the
6055 Helm upgrade action.
6057 disableOpenAPIValidation:
6058 description: DisableOpenAPIValidation prevents the Helm upgrade
6059 action from validating rendered templates against the Kubernetes
6063 description: DisableWait disables the waiting for resources to
6064 be ready after a Helm upgrade has been performed.
6067 description: DisableWaitForJobs disables waiting for jobs to complete
6068 after a Helm upgrade has been performed.
6071 description: Force forces resource updates through a replacement
6075 description: PreserveValues will make Helm reuse the last release's
6076 values and merge in overrides from 'Values'. Setting this flag
6077 makes the HelmRelease non-declarative.
6080 description: Remediation holds the remediation configuration for
6081 when the Helm upgrade action for the HelmRelease fails. The
6082 default is to not perform any action.
6085 description: IgnoreTestFailures tells the controller to skip
6086 remediation when the Helm tests are run after an upgrade
6087 action but fail. Defaults to 'Test.IgnoreFailures'.
6089 remediateLastFailure:
6090 description: RemediateLastFailure tells the controller to
6091 remediate the last failure, when no retries remain. Defaults
6092 to 'false' unless 'Retries' is greater than 0.
6095 description: Retries is the number of retries that should
6096 be attempted on failures before bailing. Remediation, using
6097 'Strategy', is performed between each attempt. Defaults
6098 to '0', a negative integer equals to unlimited retries.
6101 description: Strategy to use for failure remediation. Defaults
6109 description: Timeout is the time to wait for any individual Kubernetes
6110 operation (like Jobs for hooks) during the performance of a
6111 Helm upgrade action. Defaults to 'HelmReleaseSpec.Timeout'.
6112 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
6116 description: Values holds the values for this Helm release.
6117 x-kubernetes-preserve-unknown-fields: true
6119 description: ValuesFrom holds references to resources containing Helm
6120 values for this HelmRelease, and information about how they should
6123 description: ValuesReference contains a reference to a resource
6124 containing Helm values, and optionally the key they can be found
6128 description: Kind of the values referent, valid values are ('Secret',
6135 description: Name of the values referent. Should reside in the
6136 same namespace as the referring resource.
6141 description: Optional marks this ValuesReference as optional.
6142 When set, a not found error for the values reference is ignored,
6143 but any ValuesKey, TargetPath or transient error will still
6144 result in a reconciliation failure.
6147 description: TargetPath is the YAML dot notation path the value
6148 should be merged at. When set, the ValuesKey is expected to
6149 be a single flat value. Defaults to 'None', which results
6150 in the values getting merged at the root.
6152 pattern: ^([a-zA-Z0-9_\-.\\\/]|\[[0-9]{1,5}\])+$
6155 description: ValuesKey is the data key where the values.yaml
6156 or a specific value can be found at. Defaults to 'values.yaml'.
6157 When set, must be a valid Data Key, consisting of alphanumeric
6158 characters, '-', '_' or '.'.
6160 pattern: ^[\-._a-zA-Z0-9]+$
6173 observedGeneration: -1
6174 description: HelmReleaseStatus defines the observed state of a HelmRelease.
6177 description: Conditions holds the conditions for the HelmRelease.
6179 description: "Condition contains details for one aspect of the current
6180 state of this API Resource. --- This struct is intended for direct
6181 use as an array at the field path .status.conditions. For example,
6182 \n type FooStatus struct{ // Represents the observations of a
6183 foo's current state. // Known .status.conditions.type are: \"Available\",
6184 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
6185 // +listType=map // +listMapKey=type Conditions []metav1.Condition
6186 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
6187 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
6190 description: lastTransitionTime is the last time the condition
6191 transitioned from one status to another. This should be when
6192 the underlying condition changed. If that is not known, then
6193 using the time when the API field changed is acceptable.
6197 description: message is a human readable message indicating
6198 details about the transition. This may be an empty string.
6202 description: observedGeneration represents the .metadata.generation
6203 that the condition was set based upon. For instance, if .metadata.generation
6204 is currently 12, but the .status.conditions[x].observedGeneration
6205 is 9, the condition is out of date with respect to the current
6206 state of the instance.
6211 description: reason contains a programmatic identifier indicating
6212 the reason for the condition's last transition. Producers
6213 of specific condition types may define expected values and
6214 meanings for this field, and whether the values are considered
6215 a guaranteed API. The value should be a CamelCase string.
6216 This field may not be empty.
6219 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
6222 description: status of the condition, one of True, False, Unknown.
6229 description: type of condition in CamelCase or in foo.example.com/CamelCase.
6230 --- Many .condition.type values are consistent across resources
6231 like Available, but because arbitrary conditions can be useful
6232 (see .node.status.conditions), the ability to deconflict is
6233 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
6235 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
6238 - lastTransitionTime
6246 description: Failures is the reconciliation failure count against
6247 the latest desired state. It is reset after a successful reconciliation.
6251 description: HelmChart is the namespaced name of the HelmChart resource
6252 created by the controller for the HelmRelease.
6255 description: InstallFailures is the install failure count against
6256 the latest desired state. It is reset after a successful reconciliation.
6259 lastAppliedRevision:
6260 description: LastAppliedRevision is the revision of the last successfully
6263 lastAttemptedRevision:
6264 description: LastAttemptedRevision is the revision of the last reconciliation
6267 lastAttemptedValuesChecksum:
6268 description: LastAttemptedValuesChecksum is the SHA1 checksum of the
6269 values of the last reconciliation attempt.
6271 lastHandledReconcileAt:
6272 description: LastHandledReconcileAt holds the value of the most recent
6273 reconcile request value, so a change of the annotation value can
6276 lastReleaseRevision:
6277 description: LastReleaseRevision is the revision of the last successful
6281 description: ObservedGeneration is the last observed generation.
6285 description: UpgradeFailures is the upgrade failure count against
6286 the latest desired state. It is reset after a successful reconciliation.
6297 kind: ServiceAccount
6300 app.kubernetes.io/component: helm-controller
6301 app.kubernetes.io/instance: flux-system
6302 app.kubernetes.io/part-of: flux
6303 app.kubernetes.io/version: v2.1.2
6304 name: helm-controller
6305 namespace: flux-system
6311 app.kubernetes.io/component: helm-controller
6312 app.kubernetes.io/instance: flux-system
6313 app.kubernetes.io/part-of: flux
6314 app.kubernetes.io/version: v2.1.2
6315 control-plane: controller
6316 name: helm-controller
6317 namespace: flux-system
6322 app: helm-controller
6326 prometheus.io/port: "8080"
6327 prometheus.io/scrape: "true"
6329 app: helm-controller
6333 - --events-addr=http://notification-controller.flux-system.svc.cluster.local./
6334 - --watch-all-namespaces=true
6336 - --log-encoding=json
6337 - --enable-leader-election
6339 - name: RUNTIME_NAMESPACE
6342 fieldPath: metadata.namespace
6343 image: ghcr.io/fluxcd/helm-controller:v0.36.2
6344 imagePullPolicy: IfNotPresent
6351 - containerPort: 8080
6354 - containerPort: 9440
6369 allowPrivilegeEscalation: false
6373 readOnlyRootFilesystem: true
6376 type: RuntimeDefault
6381 kubernetes.io/os: linux
6382 priorityClassName: system-cluster-critical
6385 serviceAccountName: helm-controller
6386 terminationGracePeriodSeconds: 600
6391 apiVersion: apiextensions.k8s.io/v1
6392 kind: CustomResourceDefinition
6395 controller-gen.kubebuilder.io/version: v0.12.0
6397 app.kubernetes.io/component: notification-controller
6398 app.kubernetes.io/instance: flux-system
6399 app.kubernetes.io/part-of: flux
6400 app.kubernetes.io/version: v2.1.2
6401 name: alerts.notification.toolkit.fluxcd.io
6403 group: notification.toolkit.fluxcd.io
6411 - additionalPrinterColumns:
6412 - jsonPath: .metadata.creationTimestamp
6415 - jsonPath: .status.conditions[?(@.type=="Ready")].status
6418 - jsonPath: .status.conditions[?(@.type=="Ready")].message
6424 description: Alert is the Schema for the alerts API
6427 description: 'APIVersion defines the versioned schema of this representation
6428 of an object. Servers should convert recognized schemas to the latest
6429 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
6432 description: 'Kind is a string value representing the REST resource this
6433 object represents. Servers may infer this from the endpoint the client
6434 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
6439 description: AlertSpec defines an alerting rule for events involving a
6444 description: Filter events based on severity, defaults to ('info').
6445 If set to 'info' no events will be filtered.
6451 description: Filter events based on the involved objects.
6453 description: CrossNamespaceObjectReference contains enough information
6454 to let you locate the typed referenced object at cluster level
6457 description: API version of the referent
6460 description: Kind of the referent
6470 - ImageUpdateAutomation
6474 additionalProperties:
6476 description: MatchLabels is a map of {key,value} pairs. A single
6477 {key,value} in the matchLabels map is equivalent to an element
6478 of matchExpressions, whose key field is "key", the operator
6479 is "In", and the values array contains only "value". The requirements
6483 description: Name of the referent
6488 description: Namespace of the referent
6497 description: A list of Golang regular expressions to be used for excluding
6503 description: Send events using this provider.
6506 description: Name of the referent.
6512 description: Short description of the impact and affected cluster.
6515 description: This flag tells the controller to suspend subsequent
6516 events dispatching. Defaults to false.
6524 observedGeneration: -1
6525 description: AlertStatus defines the observed state of Alert
6529 description: "Condition contains details for one aspect of the current
6530 state of this API Resource. --- This struct is intended for direct
6531 use as an array at the field path .status.conditions. For example,
6532 \n type FooStatus struct{ // Represents the observations of a
6533 foo's current state. // Known .status.conditions.type are: \"Available\",
6534 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
6535 // +listType=map // +listMapKey=type Conditions []metav1.Condition
6536 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
6537 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
6540 description: lastTransitionTime is the last time the condition
6541 transitioned from one status to another. This should be when
6542 the underlying condition changed. If that is not known, then
6543 using the time when the API field changed is acceptable.
6547 description: message is a human readable message indicating
6548 details about the transition. This may be an empty string.
6552 description: observedGeneration represents the .metadata.generation
6553 that the condition was set based upon. For instance, if .metadata.generation
6554 is currently 12, but the .status.conditions[x].observedGeneration
6555 is 9, the condition is out of date with respect to the current
6556 state of the instance.
6561 description: reason contains a programmatic identifier indicating
6562 the reason for the condition's last transition. Producers
6563 of specific condition types may define expected values and
6564 meanings for this field, and whether the values are considered
6565 a guaranteed API. The value should be a CamelCase string.
6566 This field may not be empty.
6569 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
6572 description: status of the condition, one of True, False, Unknown.
6579 description: type of condition in CamelCase or in foo.example.com/CamelCase.
6580 --- Many .condition.type values are consistent across resources
6581 like Available, but because arbitrary conditions can be useful
6582 (see .node.status.conditions), the ability to deconflict is
6583 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
6585 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
6588 - lastTransitionTime
6596 description: ObservedGeneration is the last observed generation.
6605 - additionalPrinterColumns:
6606 - jsonPath: .metadata.creationTimestamp
6609 - jsonPath: .status.conditions[?(@.type=="Ready")].status
6612 - jsonPath: .status.conditions[?(@.type=="Ready")].message
6618 description: Alert is the Schema for the alerts API
6621 description: 'APIVersion defines the versioned schema of this representation
6622 of an object. Servers should convert recognized schemas to the latest
6623 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
6626 description: 'Kind is a string value representing the REST resource this
6627 object represents. Servers may infer this from the endpoint the client
6628 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
6633 description: AlertSpec defines an alerting rule for events involving a
6637 additionalProperties:
6639 description: EventMetadata is an optional field for adding metadata
6640 to events dispatched by the controller. This can be used for enhancing
6641 the context of the event. If a field would override one already
6642 present on the original event as generated by the emitter, then
6643 the override doesn't happen, i.e. the original value is preserved,
6644 and an info log is printed.
6648 description: EventSeverity specifies how to filter events based on
6649 severity. If set to 'info' no events will be filtered.
6655 description: EventSources specifies how to filter events based on
6656 the involved object kind, name and namespace.
6658 description: CrossNamespaceObjectReference contains enough information
6659 to let you locate the typed referenced object at cluster level
6662 description: API version of the referent
6665 description: Kind of the referent
6675 - ImageUpdateAutomation
6679 additionalProperties:
6681 description: MatchLabels is a map of {key,value} pairs. A single
6682 {key,value} in the matchLabels map is equivalent to an element
6683 of matchExpressions, whose key field is "key", the operator
6684 is "In", and the values array contains only "value". The requirements
6685 are ANDed. MatchLabels requires the name to be set to `*`.
6688 description: Name of the referent If multiple resources are
6689 targeted `*` may be set.
6694 description: Namespace of the referent
6704 description: ExclusionList specifies a list of Golang regular expressions
6705 to be used for excluding messages.
6710 description: InclusionList specifies a list of Golang regular expressions
6711 to be used for including messages.
6716 description: ProviderRef specifies which Provider this Alert should
6720 description: Name of the referent.
6726 description: Summary holds a short description of the impact and affected
6731 description: Suspend tells the controller to suspend subsequent events
6732 handling for this Alert.
6740 observedGeneration: -1
6741 description: AlertStatus defines the observed state of the Alert.
6744 description: Conditions holds the conditions for the Alert.
6746 description: "Condition contains details for one aspect of the current
6747 state of this API Resource. --- This struct is intended for direct
6748 use as an array at the field path .status.conditions. For example,
6749 \n type FooStatus struct{ // Represents the observations of a
6750 foo's current state. // Known .status.conditions.type are: \"Available\",
6751 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
6752 // +listType=map // +listMapKey=type Conditions []metav1.Condition
6753 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
6754 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
6757 description: lastTransitionTime is the last time the condition
6758 transitioned from one status to another. This should be when
6759 the underlying condition changed. If that is not known, then
6760 using the time when the API field changed is acceptable.
6764 description: message is a human readable message indicating
6765 details about the transition. This may be an empty string.
6769 description: observedGeneration represents the .metadata.generation
6770 that the condition was set based upon. For instance, if .metadata.generation
6771 is currently 12, but the .status.conditions[x].observedGeneration
6772 is 9, the condition is out of date with respect to the current
6773 state of the instance.
6778 description: reason contains a programmatic identifier indicating
6779 the reason for the condition's last transition. Producers
6780 of specific condition types may define expected values and
6781 meanings for this field, and whether the values are considered
6782 a guaranteed API. The value should be a CamelCase string.
6783 This field may not be empty.
6786 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
6789 description: status of the condition, one of True, False, Unknown.
6796 description: type of condition in CamelCase or in foo.example.com/CamelCase.
6797 --- Many .condition.type values are consistent across resources
6798 like Available, but because arbitrary conditions can be useful
6799 (see .node.status.conditions), the ability to deconflict is
6800 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
6802 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
6805 - lastTransitionTime
6812 lastHandledReconcileAt:
6813 description: LastHandledReconcileAt holds the value of the most recent
6814 reconcile request value, so a change of the annotation value can
6818 description: ObservedGeneration is the last observed generation.
6828 apiVersion: apiextensions.k8s.io/v1
6829 kind: CustomResourceDefinition
6832 controller-gen.kubebuilder.io/version: v0.12.0
6834 app.kubernetes.io/component: notification-controller
6835 app.kubernetes.io/instance: flux-system
6836 app.kubernetes.io/part-of: flux
6837 app.kubernetes.io/version: v2.1.2
6838 name: providers.notification.toolkit.fluxcd.io
6840 group: notification.toolkit.fluxcd.io
6843 listKind: ProviderList
6848 - additionalPrinterColumns:
6849 - jsonPath: .metadata.creationTimestamp
6852 - jsonPath: .status.conditions[?(@.type=="Ready")].status
6855 - jsonPath: .status.conditions[?(@.type=="Ready")].message
6861 description: Provider is the Schema for the providers API
6864 description: 'APIVersion defines the versioned schema of this representation
6865 of an object. Servers should convert recognized schemas to the latest
6866 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
6869 description: 'Kind is a string value representing the REST resource this
6870 object represents. Servers may infer this from the endpoint the client
6871 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
6876 description: ProviderSpec defines the desired state of Provider
6879 description: HTTP/S webhook address of this provider
6880 pattern: ^(http|https)://
6883 description: CertSecretRef can be given the name of a secret containing
6884 a PEM-encoded CA certificate (`caFile`)
6887 description: Name of the referent.
6893 description: Alert channel for this provider
6896 description: HTTP/S address of the proxy
6897 pattern: ^(http|https)://
6900 description: Secret reference containing the provider webhook URL
6901 using "address" as data key
6904 description: Name of the referent.
6910 description: This flag tells the controller to suspend subsequent
6911 events handling. Defaults to false.
6914 description: Timeout for sending alerts to the provider.
6915 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m))+$
6918 description: Type of provider
6943 description: Bot username for this provider
6950 observedGeneration: -1
6951 description: ProviderStatus defines the observed state of Provider
6955 description: "Condition contains details for one aspect of the current
6956 state of this API Resource. --- This struct is intended for direct
6957 use as an array at the field path .status.conditions. For example,
6958 \n type FooStatus struct{ // Represents the observations of a
6959 foo's current state. // Known .status.conditions.type are: \"Available\",
6960 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
6961 // +listType=map // +listMapKey=type Conditions []metav1.Condition
6962 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
6963 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
6966 description: lastTransitionTime is the last time the condition
6967 transitioned from one status to another. This should be when
6968 the underlying condition changed. If that is not known, then
6969 using the time when the API field changed is acceptable.
6973 description: message is a human readable message indicating
6974 details about the transition. This may be an empty string.
6978 description: observedGeneration represents the .metadata.generation
6979 that the condition was set based upon. For instance, if .metadata.generation
6980 is currently 12, but the .status.conditions[x].observedGeneration
6981 is 9, the condition is out of date with respect to the current
6982 state of the instance.
6987 description: reason contains a programmatic identifier indicating
6988 the reason for the condition's last transition. Producers
6989 of specific condition types may define expected values and
6990 meanings for this field, and whether the values are considered
6991 a guaranteed API. The value should be a CamelCase string.
6992 This field may not be empty.
6995 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
6998 description: status of the condition, one of True, False, Unknown.
7005 description: type of condition in CamelCase or in foo.example.com/CamelCase.
7006 --- Many .condition.type values are consistent across resources
7007 like Available, but because arbitrary conditions can be useful
7008 (see .node.status.conditions), the ability to deconflict is
7009 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
7011 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
7014 - lastTransitionTime
7022 description: ObservedGeneration is the last reconciled generation.
7031 - additionalPrinterColumns:
7032 - jsonPath: .metadata.creationTimestamp
7035 - jsonPath: .status.conditions[?(@.type=="Ready")].status
7038 - jsonPath: .status.conditions[?(@.type=="Ready")].message
7044 description: Provider is the Schema for the providers API.
7047 description: 'APIVersion defines the versioned schema of this representation
7048 of an object. Servers should convert recognized schemas to the latest
7049 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
7052 description: 'Kind is a string value representing the REST resource this
7053 object represents. Servers may infer this from the endpoint the client
7054 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
7059 description: ProviderSpec defines the desired state of the Provider.
7062 description: Address specifies the endpoint, in a generic sense, to
7063 where alerts are sent. What kind of endpoint depends on the specific
7064 Provider type being used. For the generic Provider, for example,
7065 this is an HTTP/S address. For other Provider types this could be
7066 a project ID or a namespace.
7070 description: "CertSecretRef specifies the Secret containing a PEM-encoded
7071 CA certificate (in the `ca.crt` key). \n Note: Support for the `caFile`
7072 key has been deprecated."
7075 description: Name of the referent.
7081 description: Channel specifies the destination channel where events
7086 description: Interval at which to reconcile the Provider with its
7088 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
7091 description: Proxy the HTTP/S address of the proxy server.
7093 pattern: ^(http|https)://.*$
7096 description: SecretRef specifies the Secret containing the authentication
7097 credentials for this Provider.
7100 description: Name of the referent.
7106 description: Suspend tells the controller to suspend subsequent events
7107 handling for this Provider.
7110 description: Timeout for sending alerts to the Provider.
7111 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m))+$
7114 description: Type specifies which Provider implementation to use.
7143 description: Username specifies the name under which events are posted.
7151 observedGeneration: -1
7152 description: ProviderStatus defines the observed state of the Provider.
7155 description: Conditions holds the conditions for the Provider.
7157 description: "Condition contains details for one aspect of the current
7158 state of this API Resource. --- This struct is intended for direct
7159 use as an array at the field path .status.conditions. For example,
7160 \n type FooStatus struct{ // Represents the observations of a
7161 foo's current state. // Known .status.conditions.type are: \"Available\",
7162 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
7163 // +listType=map // +listMapKey=type Conditions []metav1.Condition
7164 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
7165 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
7168 description: lastTransitionTime is the last time the condition
7169 transitioned from one status to another. This should be when
7170 the underlying condition changed. If that is not known, then
7171 using the time when the API field changed is acceptable.
7175 description: message is a human readable message indicating
7176 details about the transition. This may be an empty string.
7180 description: observedGeneration represents the .metadata.generation
7181 that the condition was set based upon. For instance, if .metadata.generation
7182 is currently 12, but the .status.conditions[x].observedGeneration
7183 is 9, the condition is out of date with respect to the current
7184 state of the instance.
7189 description: reason contains a programmatic identifier indicating
7190 the reason for the condition's last transition. Producers
7191 of specific condition types may define expected values and
7192 meanings for this field, and whether the values are considered
7193 a guaranteed API. The value should be a CamelCase string.
7194 This field may not be empty.
7197 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
7200 description: status of the condition, one of True, False, Unknown.
7207 description: type of condition in CamelCase or in foo.example.com/CamelCase.
7208 --- Many .condition.type values are consistent across resources
7209 like Available, but because arbitrary conditions can be useful
7210 (see .node.status.conditions), the ability to deconflict is
7211 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
7213 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
7216 - lastTransitionTime
7223 lastHandledReconcileAt:
7224 description: LastHandledReconcileAt holds the value of the most recent
7225 reconcile request value, so a change of the annotation value can
7229 description: ObservedGeneration is the last reconciled generation.
7239 apiVersion: apiextensions.k8s.io/v1
7240 kind: CustomResourceDefinition
7243 controller-gen.kubebuilder.io/version: v0.12.0
7245 app.kubernetes.io/component: notification-controller
7246 app.kubernetes.io/instance: flux-system
7247 app.kubernetes.io/part-of: flux
7248 app.kubernetes.io/version: v2.1.2
7249 name: receivers.notification.toolkit.fluxcd.io
7251 group: notification.toolkit.fluxcd.io
7254 listKind: ReceiverList
7259 - additionalPrinterColumns:
7260 - jsonPath: .metadata.creationTimestamp
7263 - jsonPath: .status.conditions[?(@.type=="Ready")].status
7266 - jsonPath: .status.conditions[?(@.type=="Ready")].message
7272 description: Receiver is the Schema for the receivers API.
7275 description: 'APIVersion defines the versioned schema of this representation
7276 of an object. Servers should convert recognized schemas to the latest
7277 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
7280 description: 'Kind is a string value representing the REST resource this
7281 object represents. Servers may infer this from the endpoint the client
7282 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
7287 description: ReceiverSpec defines the desired state of the Receiver.
7290 description: Events specifies the list of event types to handle, e.g.
7291 'push' for GitHub or 'Push Hook' for GitLab.
7297 description: Interval at which to reconcile the Receiver with its
7299 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
7302 description: A list of resources to be notified about changes.
7304 description: CrossNamespaceObjectReference contains enough information
7305 to let you locate the typed referenced object at cluster level
7308 description: API version of the referent
7311 description: Kind of the referent
7321 - ImageUpdateAutomation
7325 additionalProperties:
7327 description: MatchLabels is a map of {key,value} pairs. A single
7328 {key,value} in the matchLabels map is equivalent to an element
7329 of matchExpressions, whose key field is "key", the operator
7330 is "In", and the values array contains only "value". The requirements
7331 are ANDed. MatchLabels requires the name to be set to `*`.
7334 description: Name of the referent If multiple resources are
7335 targeted `*` may be set.
7340 description: Namespace of the referent
7350 description: SecretRef specifies the Secret containing the token used
7351 to validate the payload authenticity.
7354 description: Name of the referent.
7360 description: Suspend tells the controller to suspend subsequent events
7361 handling for this receiver.
7364 description: Type of webhook sender, used to determine the validation
7365 procedure and payload deserialization.
7386 observedGeneration: -1
7387 description: ReceiverStatus defines the observed state of the Receiver.
7390 description: Conditions holds the conditions for the Receiver.
7392 description: "Condition contains details for one aspect of the current
7393 state of this API Resource. --- This struct is intended for direct
7394 use as an array at the field path .status.conditions. For example,
7395 \n type FooStatus struct{ // Represents the observations of a
7396 foo's current state. // Known .status.conditions.type are: \"Available\",
7397 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
7398 // +listType=map // +listMapKey=type Conditions []metav1.Condition
7399 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
7400 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
7403 description: lastTransitionTime is the last time the condition
7404 transitioned from one status to another. This should be when
7405 the underlying condition changed. If that is not known, then
7406 using the time when the API field changed is acceptable.
7410 description: message is a human readable message indicating
7411 details about the transition. This may be an empty string.
7415 description: observedGeneration represents the .metadata.generation
7416 that the condition was set based upon. For instance, if .metadata.generation
7417 is currently 12, but the .status.conditions[x].observedGeneration
7418 is 9, the condition is out of date with respect to the current
7419 state of the instance.
7424 description: reason contains a programmatic identifier indicating
7425 the reason for the condition's last transition. Producers
7426 of specific condition types may define expected values and
7427 meanings for this field, and whether the values are considered
7428 a guaranteed API. The value should be a CamelCase string.
7429 This field may not be empty.
7432 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
7435 description: status of the condition, one of True, False, Unknown.
7442 description: type of condition in CamelCase or in foo.example.com/CamelCase.
7443 --- Many .condition.type values are consistent across resources
7444 like Available, but because arbitrary conditions can be useful
7445 (see .node.status.conditions), the ability to deconflict is
7446 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
7448 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
7451 - lastTransitionTime
7458 lastHandledReconcileAt:
7459 description: LastHandledReconcileAt holds the value of the most recent
7460 reconcile request value, so a change of the annotation value can
7464 description: ObservedGeneration is the last observed generation of
7465 the Receiver object.
7469 description: WebhookPath is the generated incoming webhook address
7470 in the format of '/hook/sha256sum(token+name+namespace)'.
7478 - additionalPrinterColumns:
7479 - jsonPath: .metadata.creationTimestamp
7482 - jsonPath: .status.conditions[?(@.type=="Ready")].status
7485 - jsonPath: .status.conditions[?(@.type=="Ready")].message
7489 deprecationWarning: v1beta1 Receiver is deprecated, upgrade to v1
7493 description: Receiver is the Schema for the receivers API
7496 description: 'APIVersion defines the versioned schema of this representation
7497 of an object. Servers should convert recognized schemas to the latest
7498 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
7501 description: 'Kind is a string value representing the REST resource this
7502 object represents. Servers may infer this from the endpoint the client
7503 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
7508 description: ReceiverSpec defines the desired state of Receiver
7511 description: A list of events to handle, e.g. 'push' for GitHub or
7512 'Push Hook' for GitLab.
7517 description: A list of resources to be notified about changes.
7519 description: CrossNamespaceObjectReference contains enough information
7520 to let you locate the typed referenced object at cluster level
7523 description: API version of the referent
7526 description: Kind of the referent
7536 - ImageUpdateAutomation
7540 additionalProperties:
7542 description: MatchLabels is a map of {key,value} pairs. A single
7543 {key,value} in the matchLabels map is equivalent to an element
7544 of matchExpressions, whose key field is "key", the operator
7545 is "In", and the values array contains only "value". The requirements
7549 description: Name of the referent
7554 description: Namespace of the referent
7563 description: Secret reference containing the token used to validate
7564 the payload authenticity
7567 description: Name of the referent.
7573 description: This flag tells the controller to suspend subsequent
7574 events handling. Defaults to false.
7577 description: Type of webhook sender, used to determine the validation
7578 procedure and payload deserialization.
7598 observedGeneration: -1
7599 description: ReceiverStatus defines the observed state of Receiver
7603 description: "Condition contains details for one aspect of the current
7604 state of this API Resource. --- This struct is intended for direct
7605 use as an array at the field path .status.conditions. For example,
7606 \n type FooStatus struct{ // Represents the observations of a
7607 foo's current state. // Known .status.conditions.type are: \"Available\",
7608 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
7609 // +listType=map // +listMapKey=type Conditions []metav1.Condition
7610 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
7611 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
7614 description: lastTransitionTime is the last time the condition
7615 transitioned from one status to another. This should be when
7616 the underlying condition changed. If that is not known, then
7617 using the time when the API field changed is acceptable.
7621 description: message is a human readable message indicating
7622 details about the transition. This may be an empty string.
7626 description: observedGeneration represents the .metadata.generation
7627 that the condition was set based upon. For instance, if .metadata.generation
7628 is currently 12, but the .status.conditions[x].observedGeneration
7629 is 9, the condition is out of date with respect to the current
7630 state of the instance.
7635 description: reason contains a programmatic identifier indicating
7636 the reason for the condition's last transition. Producers
7637 of specific condition types may define expected values and
7638 meanings for this field, and whether the values are considered
7639 a guaranteed API. The value should be a CamelCase string.
7640 This field may not be empty.
7643 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
7646 description: status of the condition, one of True, False, Unknown.
7653 description: type of condition in CamelCase or in foo.example.com/CamelCase.
7654 --- Many .condition.type values are consistent across resources
7655 like Available, but because arbitrary conditions can be useful
7656 (see .node.status.conditions), the ability to deconflict is
7657 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
7659 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
7662 - lastTransitionTime
7670 description: ObservedGeneration is the last observed generation.
7674 description: Generated webhook URL in the format of '/hook/sha256sum(token+name+namespace)'.
7682 - additionalPrinterColumns:
7683 - jsonPath: .metadata.creationTimestamp
7686 - jsonPath: .status.conditions[?(@.type=="Ready")].status
7689 - jsonPath: .status.conditions[?(@.type=="Ready")].message
7693 deprecationWarning: v1beta2 Receiver is deprecated, upgrade to v1
7697 description: Receiver is the Schema for the receivers API.
7700 description: 'APIVersion defines the versioned schema of this representation
7701 of an object. Servers should convert recognized schemas to the latest
7702 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
7705 description: 'Kind is a string value representing the REST resource this
7706 object represents. Servers may infer this from the endpoint the client
7707 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
7712 description: ReceiverSpec defines the desired state of the Receiver.
7715 description: Events specifies the list of event types to handle, e.g.
7716 'push' for GitHub or 'Push Hook' for GitLab.
7721 description: Interval at which to reconcile the Receiver with its
7723 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
7726 description: A list of resources to be notified about changes.
7728 description: CrossNamespaceObjectReference contains enough information
7729 to let you locate the typed referenced object at cluster level
7732 description: API version of the referent
7735 description: Kind of the referent
7745 - ImageUpdateAutomation
7749 additionalProperties:
7751 description: MatchLabels is a map of {key,value} pairs. A single
7752 {key,value} in the matchLabels map is equivalent to an element
7753 of matchExpressions, whose key field is "key", the operator
7754 is "In", and the values array contains only "value". The requirements
7755 are ANDed. MatchLabels requires the name to be set to `*`.
7758 description: Name of the referent If multiple resources are
7759 targeted `*` may be set.
7764 description: Namespace of the referent
7774 description: SecretRef specifies the Secret containing the token used
7775 to validate the payload authenticity.
7778 description: Name of the referent.
7784 description: Suspend tells the controller to suspend subsequent events
7785 handling for this receiver.
7788 description: Type of webhook sender, used to determine the validation
7789 procedure and payload deserialization.
7809 observedGeneration: -1
7810 description: ReceiverStatus defines the observed state of the Receiver.
7813 description: Conditions holds the conditions for the Receiver.
7815 description: "Condition contains details for one aspect of the current
7816 state of this API Resource. --- This struct is intended for direct
7817 use as an array at the field path .status.conditions. For example,
7818 \n type FooStatus struct{ // Represents the observations of a
7819 foo's current state. // Known .status.conditions.type are: \"Available\",
7820 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
7821 // +listType=map // +listMapKey=type Conditions []metav1.Condition
7822 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
7823 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
7826 description: lastTransitionTime is the last time the condition
7827 transitioned from one status to another. This should be when
7828 the underlying condition changed. If that is not known, then
7829 using the time when the API field changed is acceptable.
7833 description: message is a human readable message indicating
7834 details about the transition. This may be an empty string.
7838 description: observedGeneration represents the .metadata.generation
7839 that the condition was set based upon. For instance, if .metadata.generation
7840 is currently 12, but the .status.conditions[x].observedGeneration
7841 is 9, the condition is out of date with respect to the current
7842 state of the instance.
7847 description: reason contains a programmatic identifier indicating
7848 the reason for the condition's last transition. Producers
7849 of specific condition types may define expected values and
7850 meanings for this field, and whether the values are considered
7851 a guaranteed API. The value should be a CamelCase string.
7852 This field may not be empty.
7855 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
7858 description: status of the condition, one of True, False, Unknown.
7865 description: type of condition in CamelCase or in foo.example.com/CamelCase.
7866 --- Many .condition.type values are consistent across resources
7867 like Available, but because arbitrary conditions can be useful
7868 (see .node.status.conditions), the ability to deconflict is
7869 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
7871 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
7874 - lastTransitionTime
7881 lastHandledReconcileAt:
7882 description: LastHandledReconcileAt holds the value of the most recent
7883 reconcile request value, so a change of the annotation value can
7887 description: ObservedGeneration is the last observed generation of
7888 the Receiver object.
7892 description: 'URL is the generated incoming webhook address in the
7893 format of ''/hook/sha256sum(token+name+namespace)''. Deprecated:
7894 Replaced by WebhookPath.'
7897 description: WebhookPath is the generated incoming webhook address
7898 in the format of '/hook/sha256sum(token+name+namespace)'.
7908 kind: ServiceAccount
7911 app.kubernetes.io/component: notification-controller
7912 app.kubernetes.io/instance: flux-system
7913 app.kubernetes.io/part-of: flux
7914 app.kubernetes.io/version: v2.1.2
7915 name: notification-controller
7916 namespace: flux-system
7922 app.kubernetes.io/component: notification-controller
7923 app.kubernetes.io/instance: flux-system
7924 app.kubernetes.io/part-of: flux
7925 app.kubernetes.io/version: v2.1.2
7926 control-plane: controller
7927 name: notification-controller
7928 namespace: flux-system
7936 app: notification-controller
7943 app.kubernetes.io/component: notification-controller
7944 app.kubernetes.io/instance: flux-system
7945 app.kubernetes.io/part-of: flux
7946 app.kubernetes.io/version: v2.1.2
7947 control-plane: controller
7948 name: webhook-receiver
7949 namespace: flux-system
7955 targetPort: http-webhook
7957 app: notification-controller
7964 app.kubernetes.io/component: notification-controller
7965 app.kubernetes.io/instance: flux-system
7966 app.kubernetes.io/part-of: flux
7967 app.kubernetes.io/version: v2.1.2
7968 control-plane: controller
7969 name: notification-controller
7970 namespace: flux-system
7975 app: notification-controller
7979 prometheus.io/port: "8080"
7980 prometheus.io/scrape: "true"
7982 app: notification-controller
7986 - --watch-all-namespaces=true
7988 - --log-encoding=json
7989 - --enable-leader-election
7991 - name: RUNTIME_NAMESPACE
7994 fieldPath: metadata.namespace
7995 image: ghcr.io/fluxcd/notification-controller:v1.1.0
7996 imagePullPolicy: IfNotPresent
8003 - containerPort: 9090
8006 - containerPort: 9292
8009 - containerPort: 8080
8012 - containerPort: 9440
8027 allowPrivilegeEscalation: false
8031 readOnlyRootFilesystem: true
8034 type: RuntimeDefault
8039 kubernetes.io/os: linux
8042 serviceAccountName: notification-controller
8043 terminationGracePeriodSeconds: 10
projects / osm / devops.git / blob