2 # This manifest was generated by flux. DO NOT EDIT.
4 # Components: source-controller,kustomize-controller,helm-controller,notification-controller
9 app.kubernetes.io/instance: flux-system
10 app.kubernetes.io/part-of: flux
11 app.kubernetes.io/version: v2.1.2
12 pod-security.kubernetes.io/warn: restricted
13 pod-security.kubernetes.io/warn-version: latest
16 apiVersion: networking.k8s.io/v1
20 app.kubernetes.io/instance: flux-system
21 app.kubernetes.io/part-of: flux
22 app.kubernetes.io/version: v2.1.2
24 namespace: flux-system
36 apiVersion: networking.k8s.io/v1
40 app.kubernetes.io/instance: flux-system
41 app.kubernetes.io/part-of: flux
42 app.kubernetes.io/version: v2.1.2
44 namespace: flux-system
48 - namespaceSelector: {}
56 apiVersion: networking.k8s.io/v1
60 app.kubernetes.io/instance: flux-system
61 app.kubernetes.io/part-of: flux
62 app.kubernetes.io/version: v2.1.2
64 namespace: flux-system
68 - namespaceSelector: {}
71 app: notification-controller
79 app.kubernetes.io/instance: flux-system
80 app.kubernetes.io/part-of: flux
81 app.kubernetes.io/version: v2.1.2
82 name: critical-pods-flux-system
83 namespace: flux-system
90 scopeName: PriorityClass
92 - system-node-critical
93 - system-cluster-critical
95 apiVersion: rbac.authorization.k8s.io/v1
99 app.kubernetes.io/instance: flux-system
100 app.kubernetes.io/part-of: flux
101 app.kubernetes.io/version: v2.1.2
102 name: crd-controller-flux-system
105 - source.toolkit.fluxcd.io
111 - kustomize.toolkit.fluxcd.io
117 - helm.toolkit.fluxcd.io
123 - notification.toolkit.fluxcd.io
129 - image.toolkit.fluxcd.io
173 - coordination.k8s.io
185 apiVersion: rbac.authorization.k8s.io/v1
189 app.kubernetes.io/instance: flux-system
190 app.kubernetes.io/part-of: flux
191 app.kubernetes.io/version: v2.1.2
192 rbac.authorization.k8s.io/aggregate-to-admin: "true"
193 rbac.authorization.k8s.io/aggregate-to-edit: "true"
194 name: flux-edit-flux-system
197 - notification.toolkit.fluxcd.io
198 - source.toolkit.fluxcd.io
199 - helm.toolkit.fluxcd.io
200 - image.toolkit.fluxcd.io
201 - kustomize.toolkit.fluxcd.io
211 apiVersion: rbac.authorization.k8s.io/v1
215 app.kubernetes.io/instance: flux-system
216 app.kubernetes.io/part-of: flux
217 app.kubernetes.io/version: v2.1.2
218 rbac.authorization.k8s.io/aggregate-to-admin: "true"
219 rbac.authorization.k8s.io/aggregate-to-edit: "true"
220 rbac.authorization.k8s.io/aggregate-to-view: "true"
221 name: flux-view-flux-system
224 - notification.toolkit.fluxcd.io
225 - source.toolkit.fluxcd.io
226 - helm.toolkit.fluxcd.io
227 - image.toolkit.fluxcd.io
228 - kustomize.toolkit.fluxcd.io
236 apiVersion: rbac.authorization.k8s.io/v1
237 kind: ClusterRoleBinding
240 app.kubernetes.io/instance: flux-system
241 app.kubernetes.io/part-of: flux
242 app.kubernetes.io/version: v2.1.2
243 name: cluster-reconciler-flux-system
245 apiGroup: rbac.authorization.k8s.io
249 - kind: ServiceAccount
250 name: kustomize-controller
251 namespace: flux-system
252 - kind: ServiceAccount
253 name: helm-controller
254 namespace: flux-system
256 apiVersion: rbac.authorization.k8s.io/v1
257 kind: ClusterRoleBinding
260 app.kubernetes.io/instance: flux-system
261 app.kubernetes.io/part-of: flux
262 app.kubernetes.io/version: v2.1.2
263 name: crd-controller-flux-system
265 apiGroup: rbac.authorization.k8s.io
267 name: crd-controller-flux-system
269 - kind: ServiceAccount
270 name: kustomize-controller
271 namespace: flux-system
272 - kind: ServiceAccount
273 name: helm-controller
274 namespace: flux-system
275 - kind: ServiceAccount
276 name: source-controller
277 namespace: flux-system
278 - kind: ServiceAccount
279 name: notification-controller
280 namespace: flux-system
281 - kind: ServiceAccount
282 name: image-reflector-controller
283 namespace: flux-system
284 - kind: ServiceAccount
285 name: image-automation-controller
286 namespace: flux-system
288 apiVersion: apiextensions.k8s.io/v1
289 kind: CustomResourceDefinition
292 controller-gen.kubebuilder.io/version: v0.12.0
294 app.kubernetes.io/component: source-controller
295 app.kubernetes.io/instance: flux-system
296 app.kubernetes.io/part-of: flux
297 app.kubernetes.io/version: v2.1.2
298 name: buckets.source.toolkit.fluxcd.io
300 group: source.toolkit.fluxcd.io
308 - additionalPrinterColumns:
309 - jsonPath: .spec.endpoint
312 - jsonPath: .status.conditions[?(@.type=="Ready")].status
315 - jsonPath: .status.conditions[?(@.type=="Ready")].message
318 - jsonPath: .metadata.creationTimestamp
324 description: Bucket is the Schema for the buckets API
327 description: 'APIVersion defines the versioned schema of this representation
328 of an object. Servers should convert recognized schemas to the latest
329 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
332 description: 'Kind is a string value representing the REST resource this
333 object represents. Servers may infer this from the endpoint the client
334 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
339 description: BucketSpec defines the desired state of an S3 compatible
343 description: AccessFrom defines an Access Control List for allowing
344 cross-namespace references to this object.
347 description: NamespaceSelectors is the list of namespace selectors
348 to which this ACL applies. Items in this list are evaluated
349 using a logical OR operation.
351 description: NamespaceSelector selects the namespaces to which
352 this ACL applies. An empty map of MatchLabels matches all
353 namespaces in a cluster.
356 additionalProperties:
358 description: MatchLabels is a map of {key,value} pairs.
359 A single {key,value} in the matchLabels map is equivalent
360 to an element of matchExpressions, whose key field is
361 "key", the operator is "In", and the values array contains
362 only "value". The requirements are ANDed.
370 description: The bucket name.
373 description: The bucket endpoint address.
376 description: Ignore overrides the set of excluded patterns in the
377 .sourceignore format (which is the same as .gitignore). If not provided,
378 a default will be used, consult the documentation for your version
379 to find out what those are.
382 description: Insecure allows connecting to a non-TLS S3 HTTP endpoint.
385 description: The interval at which to check for bucket updates.
389 description: The S3 compatible storage provider name, default ('generic').
396 description: The bucket region.
399 description: The name of the secret containing authentication credentials
403 description: Name of the referent.
409 description: This flag tells the controller to suspend the reconciliation
414 description: The timeout for download operations, defaults to 60s.
423 observedGeneration: -1
424 description: BucketStatus defines the observed state of a bucket
427 description: Artifact represents the output of the last successful
431 description: Checksum is the SHA256 checksum of the artifact.
434 description: LastUpdateTime is the timestamp corresponding to
435 the last update of this artifact.
439 description: Path is the relative file path of this artifact.
442 description: Revision is a human readable identifier traceable
443 in the origin source system. It can be a Git commit SHA, Git
444 tag, a Helm index timestamp, a Helm chart version, etc.
447 description: URL is the HTTP address of this artifact.
454 description: Conditions holds the conditions for the Bucket.
456 description: "Condition contains details for one aspect of the current
457 state of this API Resource. --- This struct is intended for direct
458 use as an array at the field path .status.conditions. For example,
459 \n type FooStatus struct{ // Represents the observations of a
460 foo's current state. // Known .status.conditions.type are: \"Available\",
461 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
462 // +listType=map // +listMapKey=type Conditions []metav1.Condition
463 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
464 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
467 description: lastTransitionTime is the last time the condition
468 transitioned from one status to another. This should be when
469 the underlying condition changed. If that is not known, then
470 using the time when the API field changed is acceptable.
474 description: message is a human readable message indicating
475 details about the transition. This may be an empty string.
479 description: observedGeneration represents the .metadata.generation
480 that the condition was set based upon. For instance, if .metadata.generation
481 is currently 12, but the .status.conditions[x].observedGeneration
482 is 9, the condition is out of date with respect to the current
483 state of the instance.
488 description: reason contains a programmatic identifier indicating
489 the reason for the condition's last transition. Producers
490 of specific condition types may define expected values and
491 meanings for this field, and whether the values are considered
492 a guaranteed API. The value should be a CamelCase string.
493 This field may not be empty.
496 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
499 description: status of the condition, one of True, False, Unknown.
506 description: type of condition in CamelCase or in foo.example.com/CamelCase.
507 --- Many .condition.type values are consistent across resources
508 like Available, but because arbitrary conditions can be useful
509 (see .node.status.conditions), the ability to deconflict is
510 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
512 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
522 lastHandledReconcileAt:
523 description: LastHandledReconcileAt holds the value of the most recent
524 reconcile request value, so a change of the annotation value can
528 description: ObservedGeneration is the last observed generation.
532 description: URL is the download link for the artifact output of the
541 - additionalPrinterColumns:
542 - jsonPath: .spec.endpoint
545 - jsonPath: .metadata.creationTimestamp
548 - jsonPath: .status.conditions[?(@.type=="Ready")].status
551 - jsonPath: .status.conditions[?(@.type=="Ready")].message
557 description: Bucket is the Schema for the buckets API.
560 description: 'APIVersion defines the versioned schema of this representation
561 of an object. Servers should convert recognized schemas to the latest
562 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
565 description: 'Kind is a string value representing the REST resource this
566 object represents. Servers may infer this from the endpoint the client
567 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
572 description: BucketSpec specifies the required configuration to produce
573 an Artifact for an object storage bucket.
576 description: 'AccessFrom specifies an Access Control List for allowing
577 cross-namespace references to this object. NOTE: Not implemented,
578 provisional as of https://github.com/fluxcd/flux2/pull/2092'
581 description: NamespaceSelectors is the list of namespace selectors
582 to which this ACL applies. Items in this list are evaluated
583 using a logical OR operation.
585 description: NamespaceSelector selects the namespaces to which
586 this ACL applies. An empty map of MatchLabels matches all
587 namespaces in a cluster.
590 additionalProperties:
592 description: MatchLabels is a map of {key,value} pairs.
593 A single {key,value} in the matchLabels map is equivalent
594 to an element of matchExpressions, whose key field is
595 "key", the operator is "In", and the values array contains
596 only "value". The requirements are ANDed.
604 description: BucketName is the name of the object storage bucket.
607 description: Endpoint is the object storage address the BucketName
611 description: Ignore overrides the set of excluded patterns in the
612 .sourceignore format (which is the same as .gitignore). If not provided,
613 a default will be used, consult the documentation for your version
614 to find out what those are.
617 description: Insecure allows connecting to a non-TLS HTTP Endpoint.
620 description: Interval at which the Bucket Endpoint is checked for
621 updates. This interval is approximate and may be subject to jitter
622 to ensure efficient use of resources.
623 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
627 description: Provider of the object storage bucket. Defaults to 'generic',
628 which expects an S3 (API) compatible object storage.
636 description: Region of the Endpoint where the BucketName is located
640 description: SecretRef specifies the Secret containing authentication
641 credentials for the Bucket.
644 description: Name of the referent.
650 description: Suspend tells the controller to suspend the reconciliation
655 description: Timeout for fetch operations, defaults to 60s.
656 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m))+$
665 observedGeneration: -1
666 description: BucketStatus records the observed state of a Bucket.
669 description: Artifact represents the last successful Bucket reconciliation.
672 description: Digest is the digest of the file in the form of '<algorithm>:<checksum>'.
673 pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$
676 description: LastUpdateTime is the timestamp corresponding to
677 the last update of the Artifact.
681 additionalProperties:
683 description: Metadata holds upstream information such as OCI annotations.
686 description: Path is the relative file path of the Artifact. It
687 can be used to locate the file in the root of the Artifact storage
688 on the local file system of the controller managing the Source.
691 description: Revision is a human-readable identifier traceable
692 in the origin source system. It can be a Git commit SHA, Git
693 tag, a Helm chart version, etc.
696 description: Size is the number of bytes in the file.
700 description: URL is the HTTP address of the Artifact as exposed
701 by the controller managing the Source. It can be used to retrieve
702 the Artifact for consumption, e.g. by another controller applying
703 the Artifact contents.
712 description: Conditions holds the conditions for the Bucket.
714 description: "Condition contains details for one aspect of the current
715 state of this API Resource. --- This struct is intended for direct
716 use as an array at the field path .status.conditions. For example,
717 \n type FooStatus struct{ // Represents the observations of a
718 foo's current state. // Known .status.conditions.type are: \"Available\",
719 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
720 // +listType=map // +listMapKey=type Conditions []metav1.Condition
721 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
722 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
725 description: lastTransitionTime is the last time the condition
726 transitioned from one status to another. This should be when
727 the underlying condition changed. If that is not known, then
728 using the time when the API field changed is acceptable.
732 description: message is a human readable message indicating
733 details about the transition. This may be an empty string.
737 description: observedGeneration represents the .metadata.generation
738 that the condition was set based upon. For instance, if .metadata.generation
739 is currently 12, but the .status.conditions[x].observedGeneration
740 is 9, the condition is out of date with respect to the current
741 state of the instance.
746 description: reason contains a programmatic identifier indicating
747 the reason for the condition's last transition. Producers
748 of specific condition types may define expected values and
749 meanings for this field, and whether the values are considered
750 a guaranteed API. The value should be a CamelCase string.
751 This field may not be empty.
754 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
757 description: status of the condition, one of True, False, Unknown.
764 description: type of condition in CamelCase or in foo.example.com/CamelCase.
765 --- Many .condition.type values are consistent across resources
766 like Available, but because arbitrary conditions can be useful
767 (see .node.status.conditions), the ability to deconflict is
768 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
770 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
780 lastHandledReconcileAt:
781 description: LastHandledReconcileAt holds the value of the most recent
782 reconcile request value, so a change of the annotation value can
786 description: ObservedGeneration is the last observed generation of
791 description: ObservedIgnore is the observed exclusion patterns used
792 for constructing the source artifact.
795 description: URL is the dynamic fetch link for the latest Artifact.
796 It is provided on a "best effort" basis, and using the precise BucketStatus.Artifact
806 apiVersion: apiextensions.k8s.io/v1
807 kind: CustomResourceDefinition
810 controller-gen.kubebuilder.io/version: v0.12.0
812 app.kubernetes.io/component: source-controller
813 app.kubernetes.io/instance: flux-system
814 app.kubernetes.io/part-of: flux
815 app.kubernetes.io/version: v2.1.2
816 name: gitrepositories.source.toolkit.fluxcd.io
818 group: source.toolkit.fluxcd.io
821 listKind: GitRepositoryList
822 plural: gitrepositories
825 singular: gitrepository
828 - additionalPrinterColumns:
829 - jsonPath: .spec.url
832 - jsonPath: .metadata.creationTimestamp
835 - jsonPath: .status.conditions[?(@.type=="Ready")].status
838 - jsonPath: .status.conditions[?(@.type=="Ready")].message
844 description: GitRepository is the Schema for the gitrepositories API.
847 description: 'APIVersion defines the versioned schema of this representation
848 of an object. Servers should convert recognized schemas to the latest
849 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
852 description: 'Kind is a string value representing the REST resource this
853 object represents. Servers may infer this from the endpoint the client
854 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
859 description: GitRepositorySpec specifies the required configuration to
860 produce an Artifact for a Git repository.
863 description: Ignore overrides the set of excluded patterns in the
864 .sourceignore format (which is the same as .gitignore). If not provided,
865 a default will be used, consult the documentation for your version
866 to find out what those are.
869 description: Include specifies a list of GitRepository resources which
870 Artifacts should be included in the Artifact produced for this GitRepository.
872 description: GitRepositoryInclude specifies a local reference to
873 a GitRepository which Artifact (sub-)contents must be included,
874 and where they should be placed.
877 description: FromPath specifies the path to copy contents from,
878 defaults to the root of the Artifact.
881 description: GitRepositoryRef specifies the GitRepository which
882 Artifact contents must be included.
885 description: Name of the referent.
891 description: ToPath specifies the path to copy contents to,
892 defaults to the name of the GitRepositoryRef.
899 description: Interval at which the GitRepository URL is checked for
900 updates. This interval is approximate and may be subject to jitter
901 to ensure efficient use of resources.
902 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
905 description: ProxySecretRef specifies the Secret containing the proxy
906 configuration to use while communicating with the Git server.
909 description: Name of the referent.
915 description: RecurseSubmodules enables the initialization of all submodules
916 within the GitRepository as cloned from the URL, using their default
920 description: Reference specifies the Git reference to resolve and
921 monitor for changes, defaults to the 'master' branch.
924 description: Branch to check out, defaults to 'master' if no other
928 description: "Commit SHA to check out, takes precedence over all
929 reference fields. \n This can be combined with Branch to shallow
930 clone the branch, in which the commit is expected to exist."
933 description: "Name of the reference to check out; takes precedence
934 over Branch, Tag and SemVer. \n It must be a valid Git reference:
935 https://git-scm.com/docs/git-check-ref-format#_description Examples:
936 \"refs/heads/main\", \"refs/tags/v0.1.0\", \"refs/pull/420/head\",
937 \"refs/merge-requests/1/head\""
940 description: SemVer tag expression to check out, takes precedence
944 description: Tag to check out, takes precedence over Branch.
948 description: SecretRef specifies the Secret containing authentication
949 credentials for the GitRepository. For HTTPS repositories the Secret
950 must contain 'username' and 'password' fields for basic auth or
951 'bearerToken' field for token auth. For SSH repositories the Secret
952 must contain 'identity' and 'known_hosts' fields.
955 description: Name of the referent.
961 description: Suspend tells the controller to suspend the reconciliation
962 of this GitRepository.
966 description: Timeout for Git operations like cloning, defaults to
968 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m))+$
971 description: URL specifies the Git repository URL, it can be an HTTP/S
973 pattern: ^(http|https|ssh)://.*$
976 description: Verification specifies the configuration to verify the
977 Git commit signature(s).
981 description: "Mode specifies which Git object(s) should be verified.
982 \n The variants \"head\" and \"HEAD\" both imply the same thing,
983 i.e. verify the commit that the HEAD of the Git repository points
984 to. The variant \"head\" solely exists to ensure backwards compatibility."
992 description: SecretRef specifies the Secret containing the public
993 keys of trusted Git authors.
996 description: Name of the referent.
1010 observedGeneration: -1
1011 description: GitRepositoryStatus records the observed state of a Git repository.
1014 description: Artifact represents the last successful GitRepository
1018 description: Digest is the digest of the file in the form of '<algorithm>:<checksum>'.
1019 pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$
1022 description: LastUpdateTime is the timestamp corresponding to
1023 the last update of the Artifact.
1027 additionalProperties:
1029 description: Metadata holds upstream information such as OCI annotations.
1032 description: Path is the relative file path of the Artifact. It
1033 can be used to locate the file in the root of the Artifact storage
1034 on the local file system of the controller managing the Source.
1037 description: Revision is a human-readable identifier traceable
1038 in the origin source system. It can be a Git commit SHA, Git
1039 tag, a Helm chart version, etc.
1042 description: Size is the number of bytes in the file.
1046 description: URL is the HTTP address of the Artifact as exposed
1047 by the controller managing the Source. It can be used to retrieve
1048 the Artifact for consumption, e.g. by another controller applying
1049 the Artifact contents.
1058 description: Conditions holds the conditions for the GitRepository.
1060 description: "Condition contains details for one aspect of the current
1061 state of this API Resource. --- This struct is intended for direct
1062 use as an array at the field path .status.conditions. For example,
1063 \n type FooStatus struct{ // Represents the observations of a
1064 foo's current state. // Known .status.conditions.type are: \"Available\",
1065 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
1066 // +listType=map // +listMapKey=type Conditions []metav1.Condition
1067 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
1068 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
1071 description: lastTransitionTime is the last time the condition
1072 transitioned from one status to another. This should be when
1073 the underlying condition changed. If that is not known, then
1074 using the time when the API field changed is acceptable.
1078 description: message is a human readable message indicating
1079 details about the transition. This may be an empty string.
1083 description: observedGeneration represents the .metadata.generation
1084 that the condition was set based upon. For instance, if .metadata.generation
1085 is currently 12, but the .status.conditions[x].observedGeneration
1086 is 9, the condition is out of date with respect to the current
1087 state of the instance.
1092 description: reason contains a programmatic identifier indicating
1093 the reason for the condition's last transition. Producers
1094 of specific condition types may define expected values and
1095 meanings for this field, and whether the values are considered
1096 a guaranteed API. The value should be a CamelCase string.
1097 This field may not be empty.
1100 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
1103 description: status of the condition, one of True, False, Unknown.
1110 description: type of condition in CamelCase or in foo.example.com/CamelCase.
1111 --- Many .condition.type values are consistent across resources
1112 like Available, but because arbitrary conditions can be useful
1113 (see .node.status.conditions), the ability to deconflict is
1114 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
1116 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
1119 - lastTransitionTime
1127 description: IncludedArtifacts contains a list of the last successfully
1128 included Artifacts as instructed by GitRepositorySpec.Include.
1130 description: Artifact represents the output of a Source reconciliation.
1133 description: Digest is the digest of the file in the form of
1134 '<algorithm>:<checksum>'.
1135 pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$
1138 description: LastUpdateTime is the timestamp corresponding to
1139 the last update of the Artifact.
1143 additionalProperties:
1145 description: Metadata holds upstream information such as OCI
1149 description: Path is the relative file path of the Artifact.
1150 It can be used to locate the file in the root of the Artifact
1151 storage on the local file system of the controller managing
1155 description: Revision is a human-readable identifier traceable
1156 in the origin source system. It can be a Git commit SHA, Git
1157 tag, a Helm chart version, etc.
1160 description: Size is the number of bytes in the file.
1164 description: URL is the HTTP address of the Artifact as exposed
1165 by the controller managing the Source. It can be used to retrieve
1166 the Artifact for consumption, e.g. by another controller applying
1167 the Artifact contents.
1176 lastHandledReconcileAt:
1177 description: LastHandledReconcileAt holds the value of the most recent
1178 reconcile request value, so a change of the annotation value can
1182 description: ObservedGeneration is the last observed generation of
1183 the GitRepository object.
1187 description: ObservedIgnore is the observed exclusion patterns used
1188 for constructing the source artifact.
1191 description: ObservedInclude is the observed list of GitRepository
1192 resources used to produce the current Artifact.
1194 description: GitRepositoryInclude specifies a local reference to
1195 a GitRepository which Artifact (sub-)contents must be included,
1196 and where they should be placed.
1199 description: FromPath specifies the path to copy contents from,
1200 defaults to the root of the Artifact.
1203 description: GitRepositoryRef specifies the GitRepository which
1204 Artifact contents must be included.
1207 description: Name of the referent.
1213 description: ToPath specifies the path to copy contents to,
1214 defaults to the name of the GitRepositoryRef.
1220 observedRecurseSubmodules:
1221 description: ObservedRecurseSubmodules is the observed resource submodules
1222 configuration used to produce the current Artifact.
1224 sourceVerificationMode:
1225 description: SourceVerificationMode is the last used verification
1226 mode indicating which Git object(s) have been verified.
1234 - additionalPrinterColumns:
1235 - jsonPath: .spec.url
1238 - jsonPath: .status.conditions[?(@.type=="Ready")].status
1241 - jsonPath: .status.conditions[?(@.type=="Ready")].message
1244 - jsonPath: .metadata.creationTimestamp
1248 deprecationWarning: v1beta1 GitRepository is deprecated, upgrade to v1
1252 description: GitRepository is the Schema for the gitrepositories API
1255 description: 'APIVersion defines the versioned schema of this representation
1256 of an object. Servers should convert recognized schemas to the latest
1257 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
1260 description: 'Kind is a string value representing the REST resource this
1261 object represents. Servers may infer this from the endpoint the client
1262 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
1267 description: GitRepositorySpec defines the desired state of a Git repository.
1270 description: AccessFrom defines an Access Control List for allowing
1271 cross-namespace references to this object.
1274 description: NamespaceSelectors is the list of namespace selectors
1275 to which this ACL applies. Items in this list are evaluated
1276 using a logical OR operation.
1278 description: NamespaceSelector selects the namespaces to which
1279 this ACL applies. An empty map of MatchLabels matches all
1280 namespaces in a cluster.
1283 additionalProperties:
1285 description: MatchLabels is a map of {key,value} pairs.
1286 A single {key,value} in the matchLabels map is equivalent
1287 to an element of matchExpressions, whose key field is
1288 "key", the operator is "In", and the values array contains
1289 only "value". The requirements are ANDed.
1294 - namespaceSelectors
1298 description: Determines which git client library to use. Defaults
1299 to go-git, valid values are ('go-git', 'libgit2').
1305 description: Ignore overrides the set of excluded patterns in the
1306 .sourceignore format (which is the same as .gitignore). If not provided,
1307 a default will be used, consult the documentation for your version
1308 to find out what those are.
1311 description: Extra git repositories to map into the repository
1313 description: GitRepositoryInclude defines a source with a from and
1317 description: The path to copy contents from, defaults to the
1321 description: Reference to a GitRepository to include.
1324 description: Name of the referent.
1330 description: The path to copy contents to, defaults to the name
1338 description: The interval at which to check for repository updates.
1341 description: When enabled, after the clone is created, initializes
1342 all submodules within, using their default settings. This option
1343 is available only when using the 'go-git' GitImplementation.
1346 description: The Git reference to checkout and monitor for changes,
1347 defaults to master branch.
1350 description: The Git branch to checkout, defaults to master.
1353 description: The Git commit SHA to checkout, if specified Tag
1354 filters will be ignored.
1357 description: The Git tag semver expression, takes precedence over
1361 description: The Git tag to checkout, takes precedence over Branch.
1365 description: The secret name containing the Git credentials. For HTTPS
1366 repositories the secret must contain username and password fields.
1367 For SSH repositories the secret must contain identity and known_hosts
1371 description: Name of the referent.
1377 description: This flag tells the controller to suspend the reconciliation
1382 description: The timeout for remote Git operations like cloning, defaults
1386 description: The repository URL, can be a HTTP/S or SSH address.
1387 pattern: ^(http|https|ssh)://.*$
1390 description: Verify OpenPGP signature for the Git commit HEAD points
1394 description: Mode describes what git object should be verified,
1400 description: The secret name containing the public keys of all
1401 trusted Git authors.
1404 description: Name of the referent.
1418 observedGeneration: -1
1419 description: GitRepositoryStatus defines the observed state of a Git repository.
1422 description: Artifact represents the output of the last successful
1426 description: Checksum is the SHA256 checksum of the artifact.
1429 description: LastUpdateTime is the timestamp corresponding to
1430 the last update of this artifact.
1434 description: Path is the relative file path of this artifact.
1437 description: Revision is a human readable identifier traceable
1438 in the origin source system. It can be a Git commit SHA, Git
1439 tag, a Helm index timestamp, a Helm chart version, etc.
1442 description: URL is the HTTP address of this artifact.
1449 description: Conditions holds the conditions for the GitRepository.
1451 description: "Condition contains details for one aspect of the current
1452 state of this API Resource. --- This struct is intended for direct
1453 use as an array at the field path .status.conditions. For example,
1454 \n type FooStatus struct{ // Represents the observations of a
1455 foo's current state. // Known .status.conditions.type are: \"Available\",
1456 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
1457 // +listType=map // +listMapKey=type Conditions []metav1.Condition
1458 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
1459 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
1462 description: lastTransitionTime is the last time the condition
1463 transitioned from one status to another. This should be when
1464 the underlying condition changed. If that is not known, then
1465 using the time when the API field changed is acceptable.
1469 description: message is a human readable message indicating
1470 details about the transition. This may be an empty string.
1474 description: observedGeneration represents the .metadata.generation
1475 that the condition was set based upon. For instance, if .metadata.generation
1476 is currently 12, but the .status.conditions[x].observedGeneration
1477 is 9, the condition is out of date with respect to the current
1478 state of the instance.
1483 description: reason contains a programmatic identifier indicating
1484 the reason for the condition's last transition. Producers
1485 of specific condition types may define expected values and
1486 meanings for this field, and whether the values are considered
1487 a guaranteed API. The value should be a CamelCase string.
1488 This field may not be empty.
1491 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
1494 description: status of the condition, one of True, False, Unknown.
1501 description: type of condition in CamelCase or in foo.example.com/CamelCase.
1502 --- Many .condition.type values are consistent across resources
1503 like Available, but because arbitrary conditions can be useful
1504 (see .node.status.conditions), the ability to deconflict is
1505 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
1507 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
1510 - lastTransitionTime
1518 description: IncludedArtifacts represents the included artifacts from
1519 the last successful repository sync.
1521 description: Artifact represents the output of a source synchronisation.
1524 description: Checksum is the SHA256 checksum of the artifact.
1527 description: LastUpdateTime is the timestamp corresponding to
1528 the last update of this artifact.
1532 description: Path is the relative file path of this artifact.
1535 description: Revision is a human readable identifier traceable
1536 in the origin source system. It can be a Git commit SHA, Git
1537 tag, a Helm index timestamp, a Helm chart version, etc.
1540 description: URL is the HTTP address of this artifact.
1547 lastHandledReconcileAt:
1548 description: LastHandledReconcileAt holds the value of the most recent
1549 reconcile request value, so a change of the annotation value can
1553 description: ObservedGeneration is the last observed generation.
1557 description: URL is the download link for the artifact output of the
1558 last repository sync.
1566 - additionalPrinterColumns:
1567 - jsonPath: .spec.url
1570 - jsonPath: .metadata.creationTimestamp
1573 - jsonPath: .status.conditions[?(@.type=="Ready")].status
1576 - jsonPath: .status.conditions[?(@.type=="Ready")].message
1580 deprecationWarning: v1beta2 GitRepository is deprecated, upgrade to v1
1584 description: GitRepository is the Schema for the gitrepositories API.
1587 description: 'APIVersion defines the versioned schema of this representation
1588 of an object. Servers should convert recognized schemas to the latest
1589 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
1592 description: 'Kind is a string value representing the REST resource this
1593 object represents. Servers may infer this from the endpoint the client
1594 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
1599 description: GitRepositorySpec specifies the required configuration to
1600 produce an Artifact for a Git repository.
1603 description: 'AccessFrom specifies an Access Control List for allowing
1604 cross-namespace references to this object. NOTE: Not implemented,
1605 provisional as of https://github.com/fluxcd/flux2/pull/2092'
1608 description: NamespaceSelectors is the list of namespace selectors
1609 to which this ACL applies. Items in this list are evaluated
1610 using a logical OR operation.
1612 description: NamespaceSelector selects the namespaces to which
1613 this ACL applies. An empty map of MatchLabels matches all
1614 namespaces in a cluster.
1617 additionalProperties:
1619 description: MatchLabels is a map of {key,value} pairs.
1620 A single {key,value} in the matchLabels map is equivalent
1621 to an element of matchExpressions, whose key field is
1622 "key", the operator is "In", and the values array contains
1623 only "value". The requirements are ANDed.
1628 - namespaceSelectors
1632 description: 'GitImplementation specifies which Git client library
1633 implementation to use. Defaults to ''go-git'', valid values are
1634 (''go-git'', ''libgit2''). Deprecated: gitImplementation is deprecated
1635 now that ''go-git'' is the only supported implementation.'
1641 description: Ignore overrides the set of excluded patterns in the
1642 .sourceignore format (which is the same as .gitignore). If not provided,
1643 a default will be used, consult the documentation for your version
1644 to find out what those are.
1647 description: Include specifies a list of GitRepository resources which
1648 Artifacts should be included in the Artifact produced for this GitRepository.
1650 description: GitRepositoryInclude specifies a local reference to
1651 a GitRepository which Artifact (sub-)contents must be included,
1652 and where they should be placed.
1655 description: FromPath specifies the path to copy contents from,
1656 defaults to the root of the Artifact.
1659 description: GitRepositoryRef specifies the GitRepository which
1660 Artifact contents must be included.
1663 description: Name of the referent.
1669 description: ToPath specifies the path to copy contents to,
1670 defaults to the name of the GitRepositoryRef.
1677 description: Interval at which to check the GitRepository for updates.
1678 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
1681 description: RecurseSubmodules enables the initialization of all submodules
1682 within the GitRepository as cloned from the URL, using their default
1686 description: Reference specifies the Git reference to resolve and
1687 monitor for changes, defaults to the 'master' branch.
1690 description: Branch to check out, defaults to 'master' if no other
1694 description: "Commit SHA to check out, takes precedence over all
1695 reference fields. \n This can be combined with Branch to shallow
1696 clone the branch, in which the commit is expected to exist."
1699 description: "Name of the reference to check out; takes precedence
1700 over Branch, Tag and SemVer. \n It must be a valid Git reference:
1701 https://git-scm.com/docs/git-check-ref-format#_description Examples:
1702 \"refs/heads/main\", \"refs/tags/v0.1.0\", \"refs/pull/420/head\",
1703 \"refs/merge-requests/1/head\""
1706 description: SemVer tag expression to check out, takes precedence
1710 description: Tag to check out, takes precedence over Branch.
1714 description: SecretRef specifies the Secret containing authentication
1715 credentials for the GitRepository. For HTTPS repositories the Secret
1716 must contain 'username' and 'password' fields for basic auth or
1717 'bearerToken' field for token auth. For SSH repositories the Secret
1718 must contain 'identity' and 'known_hosts' fields.
1721 description: Name of the referent.
1727 description: Suspend tells the controller to suspend the reconciliation
1728 of this GitRepository.
1732 description: Timeout for Git operations like cloning, defaults to
1734 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m))+$
1737 description: URL specifies the Git repository URL, it can be an HTTP/S
1739 pattern: ^(http|https|ssh)://.*$
1742 description: Verification specifies the configuration to verify the
1743 Git commit signature(s).
1746 description: Mode specifies what Git object should be verified,
1752 description: SecretRef specifies the Secret containing the public
1753 keys of trusted Git authors.
1756 description: Name of the referent.
1771 observedGeneration: -1
1772 description: GitRepositoryStatus records the observed state of a Git repository.
1775 description: Artifact represents the last successful GitRepository
1779 description: Digest is the digest of the file in the form of '<algorithm>:<checksum>'.
1780 pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$
1783 description: LastUpdateTime is the timestamp corresponding to
1784 the last update of the Artifact.
1788 additionalProperties:
1790 description: Metadata holds upstream information such as OCI annotations.
1793 description: Path is the relative file path of the Artifact. It
1794 can be used to locate the file in the root of the Artifact storage
1795 on the local file system of the controller managing the Source.
1798 description: Revision is a human-readable identifier traceable
1799 in the origin source system. It can be a Git commit SHA, Git
1800 tag, a Helm chart version, etc.
1803 description: Size is the number of bytes in the file.
1807 description: URL is the HTTP address of the Artifact as exposed
1808 by the controller managing the Source. It can be used to retrieve
1809 the Artifact for consumption, e.g. by another controller applying
1810 the Artifact contents.
1819 description: Conditions holds the conditions for the GitRepository.
1821 description: "Condition contains details for one aspect of the current
1822 state of this API Resource. --- This struct is intended for direct
1823 use as an array at the field path .status.conditions. For example,
1824 \n type FooStatus struct{ // Represents the observations of a
1825 foo's current state. // Known .status.conditions.type are: \"Available\",
1826 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
1827 // +listType=map // +listMapKey=type Conditions []metav1.Condition
1828 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
1829 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
1832 description: lastTransitionTime is the last time the condition
1833 transitioned from one status to another. This should be when
1834 the underlying condition changed. If that is not known, then
1835 using the time when the API field changed is acceptable.
1839 description: message is a human readable message indicating
1840 details about the transition. This may be an empty string.
1844 description: observedGeneration represents the .metadata.generation
1845 that the condition was set based upon. For instance, if .metadata.generation
1846 is currently 12, but the .status.conditions[x].observedGeneration
1847 is 9, the condition is out of date with respect to the current
1848 state of the instance.
1853 description: reason contains a programmatic identifier indicating
1854 the reason for the condition's last transition. Producers
1855 of specific condition types may define expected values and
1856 meanings for this field, and whether the values are considered
1857 a guaranteed API. The value should be a CamelCase string.
1858 This field may not be empty.
1861 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
1864 description: status of the condition, one of True, False, Unknown.
1871 description: type of condition in CamelCase or in foo.example.com/CamelCase.
1872 --- Many .condition.type values are consistent across resources
1873 like Available, but because arbitrary conditions can be useful
1874 (see .node.status.conditions), the ability to deconflict is
1875 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
1877 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
1880 - lastTransitionTime
1887 contentConfigChecksum:
1888 description: "ContentConfigChecksum is a checksum of all the configurations
1889 related to the content of the source artifact: - .spec.ignore -
1890 .spec.recurseSubmodules - .spec.included and the checksum of the
1891 included artifacts observed in .status.observedGeneration version
1892 of the object. This can be used to determine if the content of the
1893 included repository has changed. It has the format of `<algo>:<checksum>`,
1894 for example: `sha256:<checksum>`. \n Deprecated: Replaced with explicit
1895 fields for observed artifact content config in the status."
1898 description: IncludedArtifacts contains a list of the last successfully
1899 included Artifacts as instructed by GitRepositorySpec.Include.
1901 description: Artifact represents the output of a Source reconciliation.
1904 description: Digest is the digest of the file in the form of
1905 '<algorithm>:<checksum>'.
1906 pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$
1909 description: LastUpdateTime is the timestamp corresponding to
1910 the last update of the Artifact.
1914 additionalProperties:
1916 description: Metadata holds upstream information such as OCI
1920 description: Path is the relative file path of the Artifact.
1921 It can be used to locate the file in the root of the Artifact
1922 storage on the local file system of the controller managing
1926 description: Revision is a human-readable identifier traceable
1927 in the origin source system. It can be a Git commit SHA, Git
1928 tag, a Helm chart version, etc.
1931 description: Size is the number of bytes in the file.
1935 description: URL is the HTTP address of the Artifact as exposed
1936 by the controller managing the Source. It can be used to retrieve
1937 the Artifact for consumption, e.g. by another controller applying
1938 the Artifact contents.
1947 lastHandledReconcileAt:
1948 description: LastHandledReconcileAt holds the value of the most recent
1949 reconcile request value, so a change of the annotation value can
1953 description: ObservedGeneration is the last observed generation of
1954 the GitRepository object.
1958 description: ObservedIgnore is the observed exclusion patterns used
1959 for constructing the source artifact.
1962 description: ObservedInclude is the observed list of GitRepository
1963 resources used to to produce the current Artifact.
1965 description: GitRepositoryInclude specifies a local reference to
1966 a GitRepository which Artifact (sub-)contents must be included,
1967 and where they should be placed.
1970 description: FromPath specifies the path to copy contents from,
1971 defaults to the root of the Artifact.
1974 description: GitRepositoryRef specifies the GitRepository which
1975 Artifact contents must be included.
1978 description: Name of the referent.
1984 description: ToPath specifies the path to copy contents to,
1985 defaults to the name of the GitRepositoryRef.
1991 observedRecurseSubmodules:
1992 description: ObservedRecurseSubmodules is the observed resource submodules
1993 configuration used to produce the current Artifact.
1996 description: URL is the dynamic fetch link for the latest Artifact.
1997 It is provided on a "best effort" basis, and using the precise GitRepositoryStatus.Artifact
1998 data is recommended.
2007 apiVersion: apiextensions.k8s.io/v1
2008 kind: CustomResourceDefinition
2011 controller-gen.kubebuilder.io/version: v0.12.0
2013 app.kubernetes.io/component: source-controller
2014 app.kubernetes.io/instance: flux-system
2015 app.kubernetes.io/part-of: flux
2016 app.kubernetes.io/version: v2.1.2
2017 name: helmcharts.source.toolkit.fluxcd.io
2019 group: source.toolkit.fluxcd.io
2022 listKind: HelmChartList
2029 - additionalPrinterColumns:
2030 - jsonPath: .spec.chart
2033 - jsonPath: .spec.version
2036 - jsonPath: .spec.sourceRef.kind
2039 - jsonPath: .spec.sourceRef.name
2042 - jsonPath: .status.conditions[?(@.type=="Ready")].status
2045 - jsonPath: .status.conditions[?(@.type=="Ready")].message
2048 - jsonPath: .metadata.creationTimestamp
2054 description: HelmChart is the Schema for the helmcharts API
2057 description: 'APIVersion defines the versioned schema of this representation
2058 of an object. Servers should convert recognized schemas to the latest
2059 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
2062 description: 'Kind is a string value representing the REST resource this
2063 object represents. Servers may infer this from the endpoint the client
2064 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
2069 description: HelmChartSpec defines the desired state of a Helm chart.
2072 description: AccessFrom defines an Access Control List for allowing
2073 cross-namespace references to this object.
2076 description: NamespaceSelectors is the list of namespace selectors
2077 to which this ACL applies. Items in this list are evaluated
2078 using a logical OR operation.
2080 description: NamespaceSelector selects the namespaces to which
2081 this ACL applies. An empty map of MatchLabels matches all
2082 namespaces in a cluster.
2085 additionalProperties:
2087 description: MatchLabels is a map of {key,value} pairs.
2088 A single {key,value} in the matchLabels map is equivalent
2089 to an element of matchExpressions, whose key field is
2090 "key", the operator is "In", and the values array contains
2091 only "value". The requirements are ANDed.
2096 - namespaceSelectors
2099 description: The name or path the Helm chart is available at in the
2103 description: The interval at which to check the Source for updates.
2106 default: ChartVersion
2107 description: Determines what enables the creation of a new artifact.
2108 Valid values are ('ChartVersion', 'Revision'). See the documentation
2109 of the values for an explanation on their behavior. Defaults to
2110 ChartVersion when omitted.
2116 description: The reference to the Source the chart is available at.
2119 description: APIVersion of the referent.
2122 description: Kind of the referent, valid values are ('HelmRepository',
2123 'GitRepository', 'Bucket').
2130 description: Name of the referent.
2137 description: This flag tells the controller to suspend the reconciliation
2141 description: Alternative values file to use as the default chart values,
2142 expected to be a relative path in the SourceRef. Deprecated in favor
2143 of ValuesFiles, for backwards compatibility the file defined here
2144 is merged before the ValuesFiles items. Ignored when omitted.
2147 description: Alternative list of values files to use as the chart
2148 values (values.yaml is not included by default), expected to be
2149 a relative path in the SourceRef. Values files are merged in the
2150 order of this list with the last file overriding the first. Ignored
2157 description: The chart version semver expression, ignored for charts
2158 from GitRepository and Bucket sources. Defaults to latest when omitted.
2167 observedGeneration: -1
2168 description: HelmChartStatus defines the observed state of the HelmChart.
2171 description: Artifact represents the output of the last successful
2175 description: Checksum is the SHA256 checksum of the artifact.
2178 description: LastUpdateTime is the timestamp corresponding to
2179 the last update of this artifact.
2183 description: Path is the relative file path of this artifact.
2186 description: Revision is a human readable identifier traceable
2187 in the origin source system. It can be a Git commit SHA, Git
2188 tag, a Helm index timestamp, a Helm chart version, etc.
2191 description: URL is the HTTP address of this artifact.
2198 description: Conditions holds the conditions for the HelmChart.
2200 description: "Condition contains details for one aspect of the current
2201 state of this API Resource. --- This struct is intended for direct
2202 use as an array at the field path .status.conditions. For example,
2203 \n type FooStatus struct{ // Represents the observations of a
2204 foo's current state. // Known .status.conditions.type are: \"Available\",
2205 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
2206 // +listType=map // +listMapKey=type Conditions []metav1.Condition
2207 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
2208 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
2211 description: lastTransitionTime is the last time the condition
2212 transitioned from one status to another. This should be when
2213 the underlying condition changed. If that is not known, then
2214 using the time when the API field changed is acceptable.
2218 description: message is a human readable message indicating
2219 details about the transition. This may be an empty string.
2223 description: observedGeneration represents the .metadata.generation
2224 that the condition was set based upon. For instance, if .metadata.generation
2225 is currently 12, but the .status.conditions[x].observedGeneration
2226 is 9, the condition is out of date with respect to the current
2227 state of the instance.
2232 description: reason contains a programmatic identifier indicating
2233 the reason for the condition's last transition. Producers
2234 of specific condition types may define expected values and
2235 meanings for this field, and whether the values are considered
2236 a guaranteed API. The value should be a CamelCase string.
2237 This field may not be empty.
2240 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
2243 description: status of the condition, one of True, False, Unknown.
2250 description: type of condition in CamelCase or in foo.example.com/CamelCase.
2251 --- Many .condition.type values are consistent across resources
2252 like Available, but because arbitrary conditions can be useful
2253 (see .node.status.conditions), the ability to deconflict is
2254 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
2256 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
2259 - lastTransitionTime
2266 lastHandledReconcileAt:
2267 description: LastHandledReconcileAt holds the value of the most recent
2268 reconcile request value, so a change of the annotation value can
2272 description: ObservedGeneration is the last observed generation.
2276 description: URL is the download link for the last chart pulled.
2284 - additionalPrinterColumns:
2285 - jsonPath: .spec.chart
2288 - jsonPath: .spec.version
2291 - jsonPath: .spec.sourceRef.kind
2294 - jsonPath: .spec.sourceRef.name
2297 - jsonPath: .metadata.creationTimestamp
2300 - jsonPath: .status.conditions[?(@.type=="Ready")].status
2303 - jsonPath: .status.conditions[?(@.type=="Ready")].message
2309 description: HelmChart is the Schema for the helmcharts API.
2312 description: 'APIVersion defines the versioned schema of this representation
2313 of an object. Servers should convert recognized schemas to the latest
2314 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
2317 description: 'Kind is a string value representing the REST resource this
2318 object represents. Servers may infer this from the endpoint the client
2319 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
2324 description: HelmChartSpec specifies the desired state of a Helm chart.
2327 description: 'AccessFrom specifies an Access Control List for allowing
2328 cross-namespace references to this object. NOTE: Not implemented,
2329 provisional as of https://github.com/fluxcd/flux2/pull/2092'
2332 description: NamespaceSelectors is the list of namespace selectors
2333 to which this ACL applies. Items in this list are evaluated
2334 using a logical OR operation.
2336 description: NamespaceSelector selects the namespaces to which
2337 this ACL applies. An empty map of MatchLabels matches all
2338 namespaces in a cluster.
2341 additionalProperties:
2343 description: MatchLabels is a map of {key,value} pairs.
2344 A single {key,value} in the matchLabels map is equivalent
2345 to an element of matchExpressions, whose key field is
2346 "key", the operator is "In", and the values array contains
2347 only "value". The requirements are ANDed.
2352 - namespaceSelectors
2355 description: Chart is the name or path the Helm chart is available
2356 at in the SourceRef.
2359 description: Interval at which the HelmChart SourceRef is checked
2360 for updates. This interval is approximate and may be subject to
2361 jitter to ensure efficient use of resources.
2362 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
2365 default: ChartVersion
2366 description: ReconcileStrategy determines what enables the creation
2367 of a new artifact. Valid values are ('ChartVersion', 'Revision').
2368 See the documentation of the values for an explanation on their
2369 behavior. Defaults to ChartVersion when omitted.
2375 description: SourceRef is the reference to the Source the chart is
2379 description: APIVersion of the referent.
2382 description: Kind of the referent, valid values are ('HelmRepository',
2383 'GitRepository', 'Bucket').
2390 description: Name of the referent.
2397 description: Suspend tells the controller to suspend the reconciliation
2401 description: ValuesFile is an alternative values file to use as the
2402 default chart values, expected to be a relative path in the SourceRef.
2403 Deprecated in favor of ValuesFiles, for backwards compatibility
2404 the file specified here is merged before the ValuesFiles items.
2405 Ignored when omitted.
2408 description: ValuesFiles is an alternative list of values files to
2409 use as the chart values (values.yaml is not included by default),
2410 expected to be a relative path in the SourceRef. Values files are
2411 merged in the order of this list with the last file overriding the
2412 first. Ignored when omitted.
2417 description: Verify contains the secret name containing the trusted
2418 public keys used to verify the signature and specifies which provider
2419 to use to check whether OCI image is authentic. This field is only
2420 supported when using HelmRepository source with spec.type 'oci'.
2421 Chart dependencies, which are not bundled in the umbrella chart
2422 artifact, are not verified.
2426 description: Provider specifies the technology used to sign the
2432 description: SecretRef specifies the Kubernetes Secret containing
2433 the trusted public keys.
2436 description: Name of the referent.
2446 description: Version is the chart version semver expression, ignored
2447 for charts from GitRepository and Bucket sources. Defaults to latest
2457 observedGeneration: -1
2458 description: HelmChartStatus records the observed state of the HelmChart.
2461 description: Artifact represents the output of the last successful
2465 description: Digest is the digest of the file in the form of '<algorithm>:<checksum>'.
2466 pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$
2469 description: LastUpdateTime is the timestamp corresponding to
2470 the last update of the Artifact.
2474 additionalProperties:
2476 description: Metadata holds upstream information such as OCI annotations.
2479 description: Path is the relative file path of the Artifact. It
2480 can be used to locate the file in the root of the Artifact storage
2481 on the local file system of the controller managing the Source.
2484 description: Revision is a human-readable identifier traceable
2485 in the origin source system. It can be a Git commit SHA, Git
2486 tag, a Helm chart version, etc.
2489 description: Size is the number of bytes in the file.
2493 description: URL is the HTTP address of the Artifact as exposed
2494 by the controller managing the Source. It can be used to retrieve
2495 the Artifact for consumption, e.g. by another controller applying
2496 the Artifact contents.
2505 description: Conditions holds the conditions for the HelmChart.
2507 description: "Condition contains details for one aspect of the current
2508 state of this API Resource. --- This struct is intended for direct
2509 use as an array at the field path .status.conditions. For example,
2510 \n type FooStatus struct{ // Represents the observations of a
2511 foo's current state. // Known .status.conditions.type are: \"Available\",
2512 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
2513 // +listType=map // +listMapKey=type Conditions []metav1.Condition
2514 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
2515 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
2518 description: lastTransitionTime is the last time the condition
2519 transitioned from one status to another. This should be when
2520 the underlying condition changed. If that is not known, then
2521 using the time when the API field changed is acceptable.
2525 description: message is a human readable message indicating
2526 details about the transition. This may be an empty string.
2530 description: observedGeneration represents the .metadata.generation
2531 that the condition was set based upon. For instance, if .metadata.generation
2532 is currently 12, but the .status.conditions[x].observedGeneration
2533 is 9, the condition is out of date with respect to the current
2534 state of the instance.
2539 description: reason contains a programmatic identifier indicating
2540 the reason for the condition's last transition. Producers
2541 of specific condition types may define expected values and
2542 meanings for this field, and whether the values are considered
2543 a guaranteed API. The value should be a CamelCase string.
2544 This field may not be empty.
2547 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
2550 description: status of the condition, one of True, False, Unknown.
2557 description: type of condition in CamelCase or in foo.example.com/CamelCase.
2558 --- Many .condition.type values are consistent across resources
2559 like Available, but because arbitrary conditions can be useful
2560 (see .node.status.conditions), the ability to deconflict is
2561 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
2563 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
2566 - lastTransitionTime
2573 lastHandledReconcileAt:
2574 description: LastHandledReconcileAt holds the value of the most recent
2575 reconcile request value, so a change of the annotation value can
2579 description: ObservedChartName is the last observed chart name as
2580 specified by the resolved chart reference.
2583 description: ObservedGeneration is the last observed generation of
2584 the HelmChart object.
2587 observedSourceArtifactRevision:
2588 description: ObservedSourceArtifactRevision is the last observed Artifact.Revision
2589 of the HelmChartSpec.SourceRef.
2592 description: URL is the dynamic fetch link for the latest Artifact.
2593 It is provided on a "best effort" basis, and using the precise BucketStatus.Artifact
2594 data is recommended.
2603 apiVersion: apiextensions.k8s.io/v1
2604 kind: CustomResourceDefinition
2607 controller-gen.kubebuilder.io/version: v0.12.0
2609 app.kubernetes.io/component: source-controller
2610 app.kubernetes.io/instance: flux-system
2611 app.kubernetes.io/part-of: flux
2612 app.kubernetes.io/version: v2.1.2
2613 name: helmrepositories.source.toolkit.fluxcd.io
2615 group: source.toolkit.fluxcd.io
2617 kind: HelmRepository
2618 listKind: HelmRepositoryList
2619 plural: helmrepositories
2622 singular: helmrepository
2625 - additionalPrinterColumns:
2626 - jsonPath: .spec.url
2629 - jsonPath: .status.conditions[?(@.type=="Ready")].status
2632 - jsonPath: .status.conditions[?(@.type=="Ready")].message
2635 - jsonPath: .metadata.creationTimestamp
2641 description: HelmRepository is the Schema for the helmrepositories API
2644 description: 'APIVersion defines the versioned schema of this representation
2645 of an object. Servers should convert recognized schemas to the latest
2646 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
2649 description: 'Kind is a string value representing the REST resource this
2650 object represents. Servers may infer this from the endpoint the client
2651 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
2656 description: HelmRepositorySpec defines the reference to a Helm repository.
2659 description: AccessFrom defines an Access Control List for allowing
2660 cross-namespace references to this object.
2663 description: NamespaceSelectors is the list of namespace selectors
2664 to which this ACL applies. Items in this list are evaluated
2665 using a logical OR operation.
2667 description: NamespaceSelector selects the namespaces to which
2668 this ACL applies. An empty map of MatchLabels matches all
2669 namespaces in a cluster.
2672 additionalProperties:
2674 description: MatchLabels is a map of {key,value} pairs.
2675 A single {key,value} in the matchLabels map is equivalent
2676 to an element of matchExpressions, whose key field is
2677 "key", the operator is "In", and the values array contains
2678 only "value". The requirements are ANDed.
2683 - namespaceSelectors
2686 description: The interval at which to check the upstream for updates.
2689 description: PassCredentials allows the credentials from the SecretRef
2690 to be passed on to a host that does not match the host as defined
2691 in URL. This may be required if the host of the advertised chart
2692 URLs in the index differ from the defined URL. Enabling this should
2693 be done with caution, as it can potentially result in credentials
2694 getting stolen in a MITM-attack.
2697 description: The name of the secret containing authentication credentials
2698 for the Helm repository. For HTTP/S basic auth the secret must contain
2699 username and password fields. For TLS the secret must contain a
2700 certFile and keyFile, and/or caFile fields.
2703 description: Name of the referent.
2709 description: This flag tells the controller to suspend the reconciliation
2714 description: The timeout of index downloading, defaults to 60s.
2717 description: The Helm repository URL, a valid URL contains at least
2718 a protocol and host.
2726 observedGeneration: -1
2727 description: HelmRepositoryStatus defines the observed state of the HelmRepository.
2730 description: Artifact represents the output of the last successful
2734 description: Checksum is the SHA256 checksum of the artifact.
2737 description: LastUpdateTime is the timestamp corresponding to
2738 the last update of this artifact.
2742 description: Path is the relative file path of this artifact.
2745 description: Revision is a human readable identifier traceable
2746 in the origin source system. It can be a Git commit SHA, Git
2747 tag, a Helm index timestamp, a Helm chart version, etc.
2750 description: URL is the HTTP address of this artifact.
2757 description: Conditions holds the conditions for the HelmRepository.
2759 description: "Condition contains details for one aspect of the current
2760 state of this API Resource. --- This struct is intended for direct
2761 use as an array at the field path .status.conditions. For example,
2762 \n type FooStatus struct{ // Represents the observations of a
2763 foo's current state. // Known .status.conditions.type are: \"Available\",
2764 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
2765 // +listType=map // +listMapKey=type Conditions []metav1.Condition
2766 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
2767 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
2770 description: lastTransitionTime is the last time the condition
2771 transitioned from one status to another. This should be when
2772 the underlying condition changed. If that is not known, then
2773 using the time when the API field changed is acceptable.
2777 description: message is a human readable message indicating
2778 details about the transition. This may be an empty string.
2782 description: observedGeneration represents the .metadata.generation
2783 that the condition was set based upon. For instance, if .metadata.generation
2784 is currently 12, but the .status.conditions[x].observedGeneration
2785 is 9, the condition is out of date with respect to the current
2786 state of the instance.
2791 description: reason contains a programmatic identifier indicating
2792 the reason for the condition's last transition. Producers
2793 of specific condition types may define expected values and
2794 meanings for this field, and whether the values are considered
2795 a guaranteed API. The value should be a CamelCase string.
2796 This field may not be empty.
2799 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
2802 description: status of the condition, one of True, False, Unknown.
2809 description: type of condition in CamelCase or in foo.example.com/CamelCase.
2810 --- Many .condition.type values are consistent across resources
2811 like Available, but because arbitrary conditions can be useful
2812 (see .node.status.conditions), the ability to deconflict is
2813 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
2815 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
2818 - lastTransitionTime
2825 lastHandledReconcileAt:
2826 description: LastHandledReconcileAt holds the value of the most recent
2827 reconcile request value, so a change of the annotation value can
2831 description: ObservedGeneration is the last observed generation.
2835 description: URL is the download link for the last index fetched.
2843 - additionalPrinterColumns:
2844 - jsonPath: .spec.url
2847 - jsonPath: .metadata.creationTimestamp
2850 - jsonPath: .status.conditions[?(@.type=="Ready")].status
2853 - jsonPath: .status.conditions[?(@.type=="Ready")].message
2859 description: HelmRepository is the Schema for the helmrepositories API.
2862 description: 'APIVersion defines the versioned schema of this representation
2863 of an object. Servers should convert recognized schemas to the latest
2864 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
2867 description: 'Kind is a string value representing the REST resource this
2868 object represents. Servers may infer this from the endpoint the client
2869 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
2874 description: HelmRepositorySpec specifies the required configuration to
2875 produce an Artifact for a Helm repository index YAML.
2878 description: 'AccessFrom specifies an Access Control List for allowing
2879 cross-namespace references to this object. NOTE: Not implemented,
2880 provisional as of https://github.com/fluxcd/flux2/pull/2092'
2883 description: NamespaceSelectors is the list of namespace selectors
2884 to which this ACL applies. Items in this list are evaluated
2885 using a logical OR operation.
2887 description: NamespaceSelector selects the namespaces to which
2888 this ACL applies. An empty map of MatchLabels matches all
2889 namespaces in a cluster.
2892 additionalProperties:
2894 description: MatchLabels is a map of {key,value} pairs.
2895 A single {key,value} in the matchLabels map is equivalent
2896 to an element of matchExpressions, whose key field is
2897 "key", the operator is "In", and the values array contains
2898 only "value". The requirements are ANDed.
2903 - namespaceSelectors
2906 description: "CertSecretRef can be given the name of a Secret containing
2907 either or both of \n - a PEM-encoded client certificate (`tls.crt`)
2908 and private key (`tls.key`); - a PEM-encoded CA certificate (`ca.crt`)
2909 \n and whichever are supplied, will be used for connecting to the
2910 registry. The client cert and key are useful if you are authenticating
2911 with a certificate; the CA cert is useful if you are using a self-signed
2912 server certificate. The Secret must be of type `Opaque` or `kubernetes.io/tls`.
2913 \n It takes precedence over the values specified in the Secret referred
2914 to by `.spec.secretRef`."
2917 description: Name of the referent.
2923 description: Interval at which the HelmRepository URL is checked for
2924 updates. This interval is approximate and may be subject to jitter
2925 to ensure efficient use of resources.
2926 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
2929 description: PassCredentials allows the credentials from the SecretRef
2930 to be passed on to a host that does not match the host as defined
2931 in URL. This may be required if the host of the advertised chart
2932 URLs in the index differ from the defined URL. Enabling this should
2933 be done with caution, as it can potentially result in credentials
2934 getting stolen in a MITM-attack.
2938 description: Provider used for authentication, can be 'aws', 'azure',
2939 'gcp' or 'generic'. This field is optional, and only taken into
2940 account if the .spec.type field is set to 'oci'. When not specified,
2941 defaults to 'generic'.
2949 description: SecretRef specifies the Secret containing authentication
2950 credentials for the HelmRepository. For HTTP/S basic auth the secret
2951 must contain 'username' and 'password' fields. Support for TLS auth
2952 using the 'certFile' and 'keyFile', and/or 'caFile' keys is deprecated.
2953 Please use `.spec.certSecretRef` instead.
2956 description: Name of the referent.
2962 description: Suspend tells the controller to suspend the reconciliation
2963 of this HelmRepository.
2967 description: Timeout is used for the index fetch operation for an
2968 HTTPS helm repository, and for remote OCI Repository operations
2969 like pulling for an OCI helm repository. Its default value is 60s.
2970 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m))+$
2973 description: Type of the HelmRepository. When this field is set to "oci",
2974 the URL field value must be prefixed with "oci://".
2980 description: URL of the Helm repository, a valid URL contains at least
2981 a protocol and host.
2989 observedGeneration: -1
2990 description: HelmRepositoryStatus records the observed state of the HelmRepository.
2993 description: Artifact represents the last successful HelmRepository
2997 description: Digest is the digest of the file in the form of '<algorithm>:<checksum>'.
2998 pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$
3001 description: LastUpdateTime is the timestamp corresponding to
3002 the last update of the Artifact.
3006 additionalProperties:
3008 description: Metadata holds upstream information such as OCI annotations.
3011 description: Path is the relative file path of the Artifact. It
3012 can be used to locate the file in the root of the Artifact storage
3013 on the local file system of the controller managing the Source.
3016 description: Revision is a human-readable identifier traceable
3017 in the origin source system. It can be a Git commit SHA, Git
3018 tag, a Helm chart version, etc.
3021 description: Size is the number of bytes in the file.
3025 description: URL is the HTTP address of the Artifact as exposed
3026 by the controller managing the Source. It can be used to retrieve
3027 the Artifact for consumption, e.g. by another controller applying
3028 the Artifact contents.
3037 description: Conditions holds the conditions for the HelmRepository.
3039 description: "Condition contains details for one aspect of the current
3040 state of this API Resource. --- This struct is intended for direct
3041 use as an array at the field path .status.conditions. For example,
3042 \n type FooStatus struct{ // Represents the observations of a
3043 foo's current state. // Known .status.conditions.type are: \"Available\",
3044 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
3045 // +listType=map // +listMapKey=type Conditions []metav1.Condition
3046 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
3047 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
3050 description: lastTransitionTime is the last time the condition
3051 transitioned from one status to another. This should be when
3052 the underlying condition changed. If that is not known, then
3053 using the time when the API field changed is acceptable.
3057 description: message is a human readable message indicating
3058 details about the transition. This may be an empty string.
3062 description: observedGeneration represents the .metadata.generation
3063 that the condition was set based upon. For instance, if .metadata.generation
3064 is currently 12, but the .status.conditions[x].observedGeneration
3065 is 9, the condition is out of date with respect to the current
3066 state of the instance.
3071 description: reason contains a programmatic identifier indicating
3072 the reason for the condition's last transition. Producers
3073 of specific condition types may define expected values and
3074 meanings for this field, and whether the values are considered
3075 a guaranteed API. The value should be a CamelCase string.
3076 This field may not be empty.
3079 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
3082 description: status of the condition, one of True, False, Unknown.
3089 description: type of condition in CamelCase or in foo.example.com/CamelCase.
3090 --- Many .condition.type values are consistent across resources
3091 like Available, but because arbitrary conditions can be useful
3092 (see .node.status.conditions), the ability to deconflict is
3093 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
3095 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
3098 - lastTransitionTime
3105 lastHandledReconcileAt:
3106 description: LastHandledReconcileAt holds the value of the most recent
3107 reconcile request value, so a change of the annotation value can
3111 description: ObservedGeneration is the last observed generation of
3112 the HelmRepository object.
3116 description: URL is the dynamic fetch link for the latest Artifact.
3117 It is provided on a "best effort" basis, and using the precise HelmRepositoryStatus.Artifact
3118 data is recommended.
3127 apiVersion: apiextensions.k8s.io/v1
3128 kind: CustomResourceDefinition
3131 controller-gen.kubebuilder.io/version: v0.12.0
3133 app.kubernetes.io/component: source-controller
3134 app.kubernetes.io/instance: flux-system
3135 app.kubernetes.io/part-of: flux
3136 app.kubernetes.io/version: v2.1.2
3137 name: ocirepositories.source.toolkit.fluxcd.io
3139 group: source.toolkit.fluxcd.io
3142 listKind: OCIRepositoryList
3143 plural: ocirepositories
3146 singular: ocirepository
3149 - additionalPrinterColumns:
3150 - jsonPath: .spec.url
3153 - jsonPath: .status.conditions[?(@.type=="Ready")].status
3156 - jsonPath: .status.conditions[?(@.type=="Ready")].message
3159 - jsonPath: .metadata.creationTimestamp
3165 description: OCIRepository is the Schema for the ocirepositories API
3168 description: 'APIVersion defines the versioned schema of this representation
3169 of an object. Servers should convert recognized schemas to the latest
3170 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
3173 description: 'Kind is a string value representing the REST resource this
3174 object represents. Servers may infer this from the endpoint the client
3175 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
3180 description: OCIRepositorySpec defines the desired state of OCIRepository
3183 description: "CertSecretRef can be given the name of a Secret containing
3184 either or both of \n - a PEM-encoded client certificate (`tls.crt`)
3185 and private key (`tls.key`); - a PEM-encoded CA certificate (`ca.crt`)
3186 \n and whichever are supplied, will be used for connecting to the
3187 registry. The client cert and key are useful if you are authenticating
3188 with a certificate; the CA cert is useful if you are using a self-signed
3189 server certificate. The Secret must be of type `Opaque` or `kubernetes.io/tls`.
3190 \n Note: Support for the `caFile`, `certFile` and `keyFile` keys
3191 have been deprecated."
3194 description: Name of the referent.
3200 description: Ignore overrides the set of excluded patterns in the
3201 .sourceignore format (which is the same as .gitignore). If not provided,
3202 a default will be used, consult the documentation for your version
3203 to find out what those are.
3206 description: Insecure allows connecting to a non-TLS HTTP container
3210 description: Interval at which the OCIRepository URL is checked for
3211 updates. This interval is approximate and may be subject to jitter
3212 to ensure efficient use of resources.
3213 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
3216 description: LayerSelector specifies which layer should be extracted
3217 from the OCI artifact. When not specified, the first layer found
3218 in the artifact is selected.
3221 description: MediaType specifies the OCI media type of the layer
3222 which should be extracted from the OCI Artifact. The first layer
3223 matching this type is selected.
3226 description: Operation specifies how the selected layer should
3227 be processed. By default, the layer compressed content is extracted
3228 to storage. When the operation is set to 'copy', the layer compressed
3229 content is persisted to storage as it is.
3237 description: The provider used for authentication, can be 'aws', 'azure',
3238 'gcp' or 'generic'. When not specified, defaults to 'generic'.
3246 description: The OCI reference to pull and monitor for changes, defaults
3250 description: Digest is the image digest to pull, takes precedence
3251 over SemVer. The value should be in the format 'sha256:<HASH>'.
3254 description: SemVer is the range of tags to pull selecting the
3255 latest within the range, takes precedence over Tag.
3258 description: Tag is the image tag to pull, defaults to latest.
3262 description: SecretRef contains the secret name containing the registry
3263 login credentials to resolve image metadata. The secret must be
3264 of type kubernetes.io/dockerconfigjson.
3267 description: Name of the referent.
3273 description: 'ServiceAccountName is the name of the Kubernetes ServiceAccount
3274 used to authenticate the image pull if the service account has attached
3275 pull secrets. For more information: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/#add-imagepullsecrets-to-a-service-account'
3278 description: This flag tells the controller to suspend the reconciliation
3283 description: The timeout for remote OCI Repository operations like
3284 pulling, defaults to 60s.
3285 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m))+$
3288 description: URL is a reference to an OCI artifact repository hosted
3289 on a remote container registry.
3293 description: Verify contains the secret name containing the trusted
3294 public keys used to verify the signature and specifies which provider
3295 to use to check whether OCI image is authentic.
3299 description: Provider specifies the technology used to sign the
3305 description: SecretRef specifies the Kubernetes Secret containing
3306 the trusted public keys.
3309 description: Name of the referent.
3323 observedGeneration: -1
3324 description: OCIRepositoryStatus defines the observed state of OCIRepository
3327 description: Artifact represents the output of the last successful
3328 OCI Repository sync.
3331 description: Digest is the digest of the file in the form of '<algorithm>:<checksum>'.
3332 pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$
3335 description: LastUpdateTime is the timestamp corresponding to
3336 the last update of the Artifact.
3340 additionalProperties:
3342 description: Metadata holds upstream information such as OCI annotations.
3345 description: Path is the relative file path of the Artifact. It
3346 can be used to locate the file in the root of the Artifact storage
3347 on the local file system of the controller managing the Source.
3350 description: Revision is a human-readable identifier traceable
3351 in the origin source system. It can be a Git commit SHA, Git
3352 tag, a Helm chart version, etc.
3355 description: Size is the number of bytes in the file.
3359 description: URL is the HTTP address of the Artifact as exposed
3360 by the controller managing the Source. It can be used to retrieve
3361 the Artifact for consumption, e.g. by another controller applying
3362 the Artifact contents.
3371 description: Conditions holds the conditions for the OCIRepository.
3373 description: "Condition contains details for one aspect of the current
3374 state of this API Resource. --- This struct is intended for direct
3375 use as an array at the field path .status.conditions. For example,
3376 \n type FooStatus struct{ // Represents the observations of a
3377 foo's current state. // Known .status.conditions.type are: \"Available\",
3378 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
3379 // +listType=map // +listMapKey=type Conditions []metav1.Condition
3380 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
3381 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
3384 description: lastTransitionTime is the last time the condition
3385 transitioned from one status to another. This should be when
3386 the underlying condition changed. If that is not known, then
3387 using the time when the API field changed is acceptable.
3391 description: message is a human readable message indicating
3392 details about the transition. This may be an empty string.
3396 description: observedGeneration represents the .metadata.generation
3397 that the condition was set based upon. For instance, if .metadata.generation
3398 is currently 12, but the .status.conditions[x].observedGeneration
3399 is 9, the condition is out of date with respect to the current
3400 state of the instance.
3405 description: reason contains a programmatic identifier indicating
3406 the reason for the condition's last transition. Producers
3407 of specific condition types may define expected values and
3408 meanings for this field, and whether the values are considered
3409 a guaranteed API. The value should be a CamelCase string.
3410 This field may not be empty.
3413 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
3416 description: status of the condition, one of True, False, Unknown.
3423 description: type of condition in CamelCase or in foo.example.com/CamelCase.
3424 --- Many .condition.type values are consistent across resources
3425 like Available, but because arbitrary conditions can be useful
3426 (see .node.status.conditions), the ability to deconflict is
3427 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
3429 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
3432 - lastTransitionTime
3439 contentConfigChecksum:
3440 description: "ContentConfigChecksum is a checksum of all the configurations
3441 related to the content of the source artifact: - .spec.ignore -
3442 .spec.layerSelector observed in .status.observedGeneration version
3443 of the object. This can be used to determine if the content configuration
3444 has changed and the artifact needs to be rebuilt. It has the format
3445 of `<algo>:<checksum>`, for example: `sha256:<checksum>`. \n Deprecated:
3446 Replaced with explicit fields for observed artifact content config
3449 lastHandledReconcileAt:
3450 description: LastHandledReconcileAt holds the value of the most recent
3451 reconcile request value, so a change of the annotation value can
3455 description: ObservedGeneration is the last observed generation.
3459 description: ObservedIgnore is the observed exclusion patterns used
3460 for constructing the source artifact.
3462 observedLayerSelector:
3463 description: ObservedLayerSelector is the observed layer selector
3464 used for constructing the source artifact.
3467 description: MediaType specifies the OCI media type of the layer
3468 which should be extracted from the OCI Artifact. The first layer
3469 matching this type is selected.
3472 description: Operation specifies how the selected layer should
3473 be processed. By default, the layer compressed content is extracted
3474 to storage. When the operation is set to 'copy', the layer compressed
3475 content is persisted to storage as it is.
3482 description: URL is the download link for the artifact output of the
3483 last OCI Repository sync.
3493 kind: ServiceAccount
3496 app.kubernetes.io/component: source-controller
3497 app.kubernetes.io/instance: flux-system
3498 app.kubernetes.io/part-of: flux
3499 app.kubernetes.io/version: v2.1.2
3500 name: source-controller
3501 namespace: flux-system
3507 app.kubernetes.io/component: source-controller
3508 app.kubernetes.io/instance: flux-system
3509 app.kubernetes.io/part-of: flux
3510 app.kubernetes.io/version: v2.1.2
3511 control-plane: controller
3512 name: source-controller
3513 namespace: flux-system
3521 app: source-controller
3528 app.kubernetes.io/component: source-controller
3529 app.kubernetes.io/instance: flux-system
3530 app.kubernetes.io/part-of: flux
3531 app.kubernetes.io/version: v2.1.2
3532 control-plane: controller
3533 name: source-controller
3534 namespace: flux-system
3539 app: source-controller
3545 prometheus.io/port: "8080"
3546 prometheus.io/scrape: "true"
3548 app: source-controller
3552 - --events-addr=http://notification-controller.flux-system.svc.cluster.local./
3553 - --watch-all-namespaces=true
3555 - --log-encoding=json
3556 - --enable-leader-election
3557 - --storage-path=/data
3558 - --storage-adv-addr=source-controller.$(RUNTIME_NAMESPACE).svc.cluster.local.
3560 - name: RUNTIME_NAMESPACE
3563 fieldPath: metadata.namespace
3565 value: /tmp/.sigstore
3566 image: ghcr.io/fluxcd/source-controller:v1.1.2
3567 imagePullPolicy: IfNotPresent
3574 - containerPort: 9090
3577 - containerPort: 8080
3580 - containerPort: 9440
3595 allowPrivilegeEscalation: false
3599 readOnlyRootFilesystem: true
3602 type: RuntimeDefault
3609 kubernetes.io/os: linux
3610 priorityClassName: system-cluster-critical
3613 serviceAccountName: source-controller
3614 terminationGracePeriodSeconds: 10
3621 apiVersion: apiextensions.k8s.io/v1
3622 kind: CustomResourceDefinition
3625 controller-gen.kubebuilder.io/version: v0.12.0
3627 app.kubernetes.io/component: kustomize-controller
3628 app.kubernetes.io/instance: flux-system
3629 app.kubernetes.io/part-of: flux
3630 app.kubernetes.io/version: v2.1.2
3631 name: kustomizations.kustomize.toolkit.fluxcd.io
3633 group: kustomize.toolkit.fluxcd.io
3636 listKind: KustomizationList
3637 plural: kustomizations
3640 singular: kustomization
3643 - additionalPrinterColumns:
3644 - jsonPath: .metadata.creationTimestamp
3647 - jsonPath: .status.conditions[?(@.type=="Ready")].status
3650 - jsonPath: .status.conditions[?(@.type=="Ready")].message
3656 description: Kustomization is the Schema for the kustomizations API.
3659 description: 'APIVersion defines the versioned schema of this representation
3660 of an object. Servers should convert recognized schemas to the latest
3661 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
3664 description: 'Kind is a string value representing the REST resource this
3665 object represents. Servers may infer this from the endpoint the client
3666 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
3671 description: KustomizationSpec defines the configuration to calculate
3672 the desired state from a Source using Kustomize.
3675 description: CommonMetadata specifies the common labels and annotations
3676 that are applied to all resources. Any existing label or annotation
3677 will be overridden if its key matches a common one.
3680 additionalProperties:
3682 description: Annotations to be added to the object's metadata.
3685 additionalProperties:
3687 description: Labels to be added to the object's metadata.
3691 description: Components specifies relative paths to specifications
3692 of other Components.
3697 description: Decrypt Kubernetes secrets before applying them on the
3701 description: Provider is the name of the decryption engine.
3706 description: The secret name containing the private OpenPGP keys
3707 used for decryption.
3710 description: Name of the referent.
3719 description: DependsOn may contain a meta.NamespacedObjectReference
3720 slice with references to Kustomization resources that must be ready
3721 before this Kustomization can be reconciled.
3723 description: NamespacedObjectReference contains enough information
3724 to locate the referenced Kubernetes resource object in any namespace.
3727 description: Name of the referent.
3730 description: Namespace of the referent, when not specified it
3731 acts as LocalObjectReference.
3739 description: Force instructs the controller to recreate resources
3740 when patching fails due to an immutable field change.
3743 description: A list of resources to be included in the health assessment.
3745 description: NamespacedObjectKindReference contains enough information
3746 to locate the typed referenced Kubernetes resource object in any
3750 description: API version of the referent, if not specified the
3751 Kubernetes preferred version will be used.
3754 description: Kind of the referent.
3757 description: Name of the referent.
3760 description: Namespace of the referent, when not specified it
3761 acts as LocalObjectReference.
3769 description: Images is a list of (image name, new name, new tag or
3770 digest) for changing image names, tags or digests. This can also
3771 be achieved with a patch, but this operator is simpler to specify.
3773 description: Image contains an image name, a new name, a new tag
3774 or digest, which will replace the original name and tag.
3777 description: Digest is the value used to replace the original
3778 image tag. If digest is present NewTag value is ignored.
3781 description: Name is a tag-less image name.
3784 description: NewName is the value used to replace the original
3788 description: NewTag is the value used to replace the original
3796 description: The interval at which to reconcile the Kustomization.
3797 This interval is approximate and may be subject to jitter to ensure
3798 efficient use of resources.
3799 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
3802 description: The KubeConfig for reconciling the Kustomization on a
3803 remote cluster. When used in combination with KustomizationSpec.ServiceAccountName,
3804 forces the controller to act on behalf of that Service Account at
3805 the target cluster. If the --default-service-account flag is set,
3806 its value will be used as a controller level fallback for when KustomizationSpec.ServiceAccountName
3810 description: SecretRef holds the name of a secret that contains
3811 a key with the kubeconfig file as the value. If no key is set,
3812 the key will default to 'value'. It is recommended that the
3813 kubeconfig is self-contained, and the secret is regularly updated
3814 if credentials such as a cloud-access-token expire. Cloud specific
3815 `cmd-path` auth helpers will not function without adding binaries
3816 and credentials to the Pod that is responsible for reconciling
3817 Kubernetes resources.
3820 description: Key in the Secret, when not specified an implementation-specific
3821 default key is used.
3824 description: Name of the Secret.
3833 description: Strategic merge and JSON patches, defined as inline YAML
3834 objects, capable of targeting objects based on kind, label and annotation
3837 description: Patch contains an inline StrategicMerge or JSON6902
3838 patch, and the target the patch should be applied to.
3841 description: Patch contains an inline StrategicMerge patch or
3842 an inline JSON6902 patch with an array of operation objects.
3845 description: Target points to the resources that the patch document
3846 should be applied to.
3849 description: AnnotationSelector is a string that follows
3850 the label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
3851 It matches with the resource annotations.
3854 description: Group is the API group to select resources
3855 from. Together with Version and Kind it is capable of
3856 unambiguously identifying and/or selecting resources.
3857 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
3860 description: Kind of the API Group to select resources from.
3861 Together with Group and Version it is capable of unambiguously
3862 identifying and/or selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
3865 description: LabelSelector is a string that follows the
3866 label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
3867 It matches with the resource labels.
3870 description: Name to match resources with.
3873 description: Namespace to select resources from.
3876 description: Version of the API Group to select resources
3877 from. Together with Group and Kind it is capable of unambiguously
3878 identifying and/or selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
3886 description: Path to the directory containing the kustomization.yaml
3887 file, or the set of plain YAMLs a kustomization.yaml should be generated
3888 for. Defaults to 'None', which translates to the root path of the
3892 description: PostBuild describes which actions to perform on the YAML
3893 manifest generated by building the kustomize overlay.
3896 additionalProperties:
3898 description: Substitute holds a map of key/value pairs. The variables
3899 defined in your YAML manifests that match any of the keys defined
3900 in the map will be substituted with the set value. Includes
3901 support for bash string replacement functions e.g. ${var:=default},
3902 ${var:position} and ${var/substring/replacement}.
3905 description: SubstituteFrom holds references to ConfigMaps and
3906 Secrets containing the variables and their values to be substituted
3907 in the YAML manifests. The ConfigMap and the Secret data keys
3908 represent the var names, and they must match the vars declared
3909 in the manifests for the substitution to happen.
3911 description: SubstituteReference contains a reference to a resource
3912 containing the variables name and value.
3915 description: Kind of the values referent, valid values are
3916 ('Secret', 'ConfigMap').
3922 description: Name of the values referent. Should reside
3923 in the same namespace as the referring resource.
3929 description: Optional indicates whether the referenced resource
3930 must exist, or whether to tolerate its absence. If true
3931 and the referenced resource is absent, proceed as if the
3932 resource was present but empty, without any variables
3942 description: Prune enables garbage collection.
3945 description: The interval at which to retry a previously failed reconciliation.
3946 When not specified, the controller uses the KustomizationSpec.Interval
3947 value to retry failures.
3948 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
3951 description: The name of the Kubernetes service account to impersonate
3952 when reconciling this Kustomization.
3955 description: Reference of the source where the kustomization file
3959 description: API version of the referent.
3962 description: Kind of the referent.
3969 description: Name of the referent.
3972 description: Namespace of the referent, defaults to the namespace
3973 of the Kubernetes resource object that contains the reference.
3980 description: This flag tells the controller to suspend subsequent
3981 kustomize executions, it does not apply to already started executions.
3985 description: TargetNamespace sets or overrides the namespace in the
3986 kustomization.yaml file.
3991 description: Timeout for validation, apply and health checking operations.
3992 Defaults to 'Interval' duration.
3993 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
3996 description: Wait instructs the controller to check the health of
3997 all the reconciled resources. When enabled, the HealthChecks are
3998 ignored. Defaults to false.
4007 observedGeneration: -1
4008 description: KustomizationStatus defines the observed state of a kustomization.
4012 description: "Condition contains details for one aspect of the current
4013 state of this API Resource. --- This struct is intended for direct
4014 use as an array at the field path .status.conditions. For example,
4015 \n type FooStatus struct{ // Represents the observations of a
4016 foo's current state. // Known .status.conditions.type are: \"Available\",
4017 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
4018 // +listType=map // +listMapKey=type Conditions []metav1.Condition
4019 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
4020 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
4023 description: lastTransitionTime is the last time the condition
4024 transitioned from one status to another. This should be when
4025 the underlying condition changed. If that is not known, then
4026 using the time when the API field changed is acceptable.
4030 description: message is a human readable message indicating
4031 details about the transition. This may be an empty string.
4035 description: observedGeneration represents the .metadata.generation
4036 that the condition was set based upon. For instance, if .metadata.generation
4037 is currently 12, but the .status.conditions[x].observedGeneration
4038 is 9, the condition is out of date with respect to the current
4039 state of the instance.
4044 description: reason contains a programmatic identifier indicating
4045 the reason for the condition's last transition. Producers
4046 of specific condition types may define expected values and
4047 meanings for this field, and whether the values are considered
4048 a guaranteed API. The value should be a CamelCase string.
4049 This field may not be empty.
4052 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
4055 description: status of the condition, one of True, False, Unknown.
4062 description: type of condition in CamelCase or in foo.example.com/CamelCase.
4063 --- Many .condition.type values are consistent across resources
4064 like Available, but because arbitrary conditions can be useful
4065 (see .node.status.conditions), the ability to deconflict is
4066 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
4068 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
4071 - lastTransitionTime
4079 description: Inventory contains the list of Kubernetes resource object
4080 references that have been successfully applied.
4083 description: Entries of Kubernetes resource object references.
4085 description: ResourceRef contains the information necessary
4086 to locate a resource within a cluster.
4089 description: ID is the string representation of the Kubernetes
4090 resource object's metadata, in the format '<namespace>_<name>_<group>_<kind>'.
4093 description: Version is the API version of the Kubernetes
4094 resource object's kind.
4104 lastAppliedRevision:
4105 description: The last successfully applied revision. Equals the Revision
4106 of the applied Artifact from the referenced Source.
4108 lastAttemptedRevision:
4109 description: LastAttemptedRevision is the revision of the last reconciliation
4112 lastHandledReconcileAt:
4113 description: LastHandledReconcileAt holds the value of the most recent
4114 reconcile request value, so a change of the annotation value can
4118 description: ObservedGeneration is the last reconciled generation.
4127 - additionalPrinterColumns:
4128 - jsonPath: .status.conditions[?(@.type=="Ready")].status
4131 - jsonPath: .status.conditions[?(@.type=="Ready")].message
4134 - jsonPath: .metadata.creationTimestamp
4138 deprecationWarning: v1beta1 Kustomization is deprecated, upgrade to v1
4142 description: Kustomization is the Schema for the kustomizations API.
4145 description: 'APIVersion defines the versioned schema of this representation
4146 of an object. Servers should convert recognized schemas to the latest
4147 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
4150 description: 'Kind is a string value representing the REST resource this
4151 object represents. Servers may infer this from the endpoint the client
4152 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
4157 description: KustomizationSpec defines the desired state of a kustomization.
4160 description: Decrypt Kubernetes secrets before applying them on the
4164 description: Provider is the name of the decryption engine.
4169 description: The secret name containing the private OpenPGP keys
4170 used for decryption.
4173 description: Name of the referent.
4182 description: DependsOn may contain a meta.NamespacedObjectReference
4183 slice with references to Kustomization resources that must be ready
4184 before this Kustomization can be reconciled.
4186 description: NamespacedObjectReference contains enough information
4187 to locate the referenced Kubernetes resource object in any namespace.
4190 description: Name of the referent.
4193 description: Namespace of the referent, when not specified it
4194 acts as LocalObjectReference.
4202 description: Force instructs the controller to recreate resources
4203 when patching fails due to an immutable field change.
4206 description: A list of resources to be included in the health assessment.
4208 description: NamespacedObjectKindReference contains enough information
4209 to locate the typed referenced Kubernetes resource object in any
4213 description: API version of the referent, if not specified the
4214 Kubernetes preferred version will be used.
4217 description: Kind of the referent.
4220 description: Name of the referent.
4223 description: Namespace of the referent, when not specified it
4224 acts as LocalObjectReference.
4232 description: Images is a list of (image name, new name, new tag or
4233 digest) for changing image names, tags or digests. This can also
4234 be achieved with a patch, but this operator is simpler to specify.
4236 description: Image contains an image name, a new name, a new tag
4237 or digest, which will replace the original name and tag.
4240 description: Digest is the value used to replace the original
4241 image tag. If digest is present NewTag value is ignored.
4244 description: Name is a tag-less image name.
4247 description: NewName is the value used to replace the original
4251 description: NewTag is the value used to replace the original
4259 description: The interval at which to reconcile the Kustomization.
4262 description: The KubeConfig for reconciling the Kustomization on a
4263 remote cluster. When specified, KubeConfig takes precedence over
4267 description: SecretRef holds the name to a secret that contains
4268 a 'value' key with the kubeconfig file as the value. It must
4269 be in the same namespace as the Kustomization. It is recommended
4270 that the kubeconfig is self-contained, and the secret is regularly
4271 updated if credentials such as a cloud-access-token expire.
4272 Cloud specific `cmd-path` auth helpers will not function without
4273 adding binaries and credentials to the Pod that is responsible
4274 for reconciling the Kustomization.
4277 description: Name of the referent.
4284 description: Strategic merge and JSON patches, defined as inline YAML
4285 objects, capable of targeting objects based on kind, label and annotation
4288 description: Patch contains an inline StrategicMerge or JSON6902
4289 patch, and the target the patch should be applied to.
4292 description: Patch contains an inline StrategicMerge patch or
4293 an inline JSON6902 patch with an array of operation objects.
4296 description: Target points to the resources that the patch document
4297 should be applied to.
4300 description: AnnotationSelector is a string that follows
4301 the label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
4302 It matches with the resource annotations.
4305 description: Group is the API group to select resources
4306 from. Together with Version and Kind it is capable of
4307 unambiguously identifying and/or selecting resources.
4308 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
4311 description: Kind of the API Group to select resources from.
4312 Together with Group and Version it is capable of unambiguously
4313 identifying and/or selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
4316 description: LabelSelector is a string that follows the
4317 label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
4318 It matches with the resource labels.
4321 description: Name to match resources with.
4324 description: Namespace to select resources from.
4327 description: Version of the API Group to select resources
4328 from. Together with Group and Kind it is capable of unambiguously
4329 identifying and/or selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
4337 description: JSON 6902 patches, defined as inline YAML objects.
4339 description: JSON6902Patch contains a JSON6902 patch and the target
4340 the patch should be applied to.
4343 description: Patch contains the JSON6902 patch document with
4344 an array of operation objects.
4346 description: JSON6902 is a JSON6902 operation object. https://datatracker.ietf.org/doc/html/rfc6902#section-4
4349 description: From contains a JSON-pointer value that references
4350 a location within the target document where the operation
4351 is performed. The meaning of the value depends on the
4352 value of Op, and is NOT taken into account by all operations.
4355 description: Op indicates the operation to perform. Its
4356 value MUST be one of "add", "remove", "replace", "move",
4357 "copy", or "test". https://datatracker.ietf.org/doc/html/rfc6902#section-4
4367 description: Path contains the JSON-pointer value that
4368 references a location within the target document where
4369 the operation is performed. The meaning of the value
4370 depends on the value of Op.
4373 description: Value contains a valid JSON structure. The
4374 meaning of the value depends on the value of Op, and
4375 is NOT taken into account by all operations.
4376 x-kubernetes-preserve-unknown-fields: true
4383 description: Target points to the resources that the patch document
4384 should be applied to.
4387 description: AnnotationSelector is a string that follows
4388 the label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
4389 It matches with the resource annotations.
4392 description: Group is the API group to select resources
4393 from. Together with Version and Kind it is capable of
4394 unambiguously identifying and/or selecting resources.
4395 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
4398 description: Kind of the API Group to select resources from.
4399 Together with Group and Version it is capable of unambiguously
4400 identifying and/or selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
4403 description: LabelSelector is a string that follows the
4404 label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
4405 It matches with the resource labels.
4408 description: Name to match resources with.
4411 description: Namespace to select resources from.
4414 description: Version of the API Group to select resources
4415 from. Together with Group and Kind it is capable of unambiguously
4416 identifying and/or selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
4424 patchesStrategicMerge:
4425 description: Strategic merge patches, defined as inline YAML objects.
4427 x-kubernetes-preserve-unknown-fields: true
4430 description: Path to the directory containing the kustomization.yaml
4431 file, or the set of plain YAMLs a kustomization.yaml should be generated
4432 for. Defaults to 'None', which translates to the root path of the
4436 description: PostBuild describes which actions to perform on the YAML
4437 manifest generated by building the kustomize overlay.
4440 additionalProperties:
4442 description: Substitute holds a map of key/value pairs. The variables
4443 defined in your YAML manifests that match any of the keys defined
4444 in the map will be substituted with the set value. Includes
4445 support for bash string replacement functions e.g. ${var:=default},
4446 ${var:position} and ${var/substring/replacement}.
4449 description: SubstituteFrom holds references to ConfigMaps and
4450 Secrets containing the variables and their values to be substituted
4451 in the YAML manifests. The ConfigMap and the Secret data keys
4452 represent the var names and they must match the vars declared
4453 in the manifests for the substitution to happen.
4455 description: SubstituteReference contains a reference to a resource
4456 containing the variables name and value.
4459 description: Kind of the values referent, valid values are
4460 ('Secret', 'ConfigMap').
4466 description: Name of the values referent. Should reside
4467 in the same namespace as the referring resource.
4478 description: Prune enables garbage collection.
4481 description: The interval at which to retry a previously failed reconciliation.
4482 When not specified, the controller uses the KustomizationSpec.Interval
4483 value to retry failures.
4486 description: The name of the Kubernetes service account to impersonate
4487 when reconciling this Kustomization.
4490 description: Reference of the source where the kustomization file
4494 description: API version of the referent
4497 description: Kind of the referent
4503 description: Name of the referent
4506 description: Namespace of the referent, defaults to the Kustomization
4514 description: This flag tells the controller to suspend subsequent
4515 kustomize executions, it does not apply to already started executions.
4519 description: TargetNamespace sets or overrides the namespace in the
4520 kustomization.yaml file.
4525 description: Timeout for validation, apply and health checking operations.
4526 Defaults to 'Interval' duration.
4529 description: Validate the Kubernetes objects before applying them
4530 on the cluster. The validation strategy can be 'client' (local dry-run),
4531 'server' (APIServer dry-run) or 'none'. When 'Force' is 'true',
4532 validation will fallback to 'client' if set to 'server' because
4533 server-side validation is not supported in this scenario.
4546 observedGeneration: -1
4547 description: KustomizationStatus defines the observed state of a kustomization.
4551 description: "Condition contains details for one aspect of the current
4552 state of this API Resource. --- This struct is intended for direct
4553 use as an array at the field path .status.conditions. For example,
4554 \n type FooStatus struct{ // Represents the observations of a
4555 foo's current state. // Known .status.conditions.type are: \"Available\",
4556 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
4557 // +listType=map // +listMapKey=type Conditions []metav1.Condition
4558 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
4559 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
4562 description: lastTransitionTime is the last time the condition
4563 transitioned from one status to another. This should be when
4564 the underlying condition changed. If that is not known, then
4565 using the time when the API field changed is acceptable.
4569 description: message is a human readable message indicating
4570 details about the transition. This may be an empty string.
4574 description: observedGeneration represents the .metadata.generation
4575 that the condition was set based upon. For instance, if .metadata.generation
4576 is currently 12, but the .status.conditions[x].observedGeneration
4577 is 9, the condition is out of date with respect to the current
4578 state of the instance.
4583 description: reason contains a programmatic identifier indicating
4584 the reason for the condition's last transition. Producers
4585 of specific condition types may define expected values and
4586 meanings for this field, and whether the values are considered
4587 a guaranteed API. The value should be a CamelCase string.
4588 This field may not be empty.
4591 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
4594 description: status of the condition, one of True, False, Unknown.
4601 description: type of condition in CamelCase or in foo.example.com/CamelCase.
4602 --- Many .condition.type values are consistent across resources
4603 like Available, but because arbitrary conditions can be useful
4604 (see .node.status.conditions), the ability to deconflict is
4605 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
4607 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
4610 - lastTransitionTime
4617 lastAppliedRevision:
4618 description: The last successfully applied revision. The revision
4619 format for Git sources is <branch|tag>/<commit-sha>.
4621 lastAttemptedRevision:
4622 description: LastAttemptedRevision is the revision of the last reconciliation
4625 lastHandledReconcileAt:
4626 description: LastHandledReconcileAt holds the value of the most recent
4627 reconcile request value, so a change of the annotation value can
4631 description: ObservedGeneration is the last reconciled generation.
4635 description: The last successfully applied revision metadata.
4638 description: The manifests sha1 checksum.
4641 description: A list of Kubernetes kinds grouped by namespace.
4643 description: Snapshot holds the metadata of namespaced Kubernetes
4647 additionalProperties:
4649 description: The list of Kubernetes kinds.
4652 description: The namespace of this entry.
4668 - additionalPrinterColumns:
4669 - jsonPath: .metadata.creationTimestamp
4672 - jsonPath: .status.conditions[?(@.type=="Ready")].status
4675 - jsonPath: .status.conditions[?(@.type=="Ready")].message
4679 deprecationWarning: v1beta2 Kustomization is deprecated, upgrade to v1
4683 description: Kustomization is the Schema for the kustomizations API.
4686 description: 'APIVersion defines the versioned schema of this representation
4687 of an object. Servers should convert recognized schemas to the latest
4688 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
4691 description: 'Kind is a string value representing the REST resource this
4692 object represents. Servers may infer this from the endpoint the client
4693 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
4698 description: KustomizationSpec defines the configuration to calculate
4699 the desired state from a Source using Kustomize.
4702 description: CommonMetadata specifies the common labels and annotations
4703 that are applied to all resources. Any existing label or annotation
4704 will be overridden if its key matches a common one.
4707 additionalProperties:
4709 description: Annotations to be added to the object's metadata.
4712 additionalProperties:
4714 description: Labels to be added to the object's metadata.
4718 description: Components specifies relative paths to specifications
4719 of other Components.
4724 description: Decrypt Kubernetes secrets before applying them on the
4728 description: Provider is the name of the decryption engine.
4733 description: The secret name containing the private OpenPGP keys
4734 used for decryption.
4737 description: Name of the referent.
4746 description: DependsOn may contain a meta.NamespacedObjectReference
4747 slice with references to Kustomization resources that must be ready
4748 before this Kustomization can be reconciled.
4750 description: NamespacedObjectReference contains enough information
4751 to locate the referenced Kubernetes resource object in any namespace.
4754 description: Name of the referent.
4757 description: Namespace of the referent, when not specified it
4758 acts as LocalObjectReference.
4766 description: Force instructs the controller to recreate resources
4767 when patching fails due to an immutable field change.
4770 description: A list of resources to be included in the health assessment.
4772 description: NamespacedObjectKindReference contains enough information
4773 to locate the typed referenced Kubernetes resource object in any
4777 description: API version of the referent, if not specified the
4778 Kubernetes preferred version will be used.
4781 description: Kind of the referent.
4784 description: Name of the referent.
4787 description: Namespace of the referent, when not specified it
4788 acts as LocalObjectReference.
4796 description: Images is a list of (image name, new name, new tag or
4797 digest) for changing image names, tags or digests. This can also
4798 be achieved with a patch, but this operator is simpler to specify.
4800 description: Image contains an image name, a new name, a new tag
4801 or digest, which will replace the original name and tag.
4804 description: Digest is the value used to replace the original
4805 image tag. If digest is present NewTag value is ignored.
4808 description: Name is a tag-less image name.
4811 description: NewName is the value used to replace the original
4815 description: NewTag is the value used to replace the original
4823 description: The interval at which to reconcile the Kustomization.
4824 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
4827 description: The KubeConfig for reconciling the Kustomization on a
4828 remote cluster. When used in combination with KustomizationSpec.ServiceAccountName,
4829 forces the controller to act on behalf of that Service Account at
4830 the target cluster. If the --default-service-account flag is set,
4831 its value will be used as a controller level fallback for when KustomizationSpec.ServiceAccountName
4835 description: SecretRef holds the name of a secret that contains
4836 a key with the kubeconfig file as the value. If no key is set,
4837 the key will default to 'value'. It is recommended that the
4838 kubeconfig is self-contained, and the secret is regularly updated
4839 if credentials such as a cloud-access-token expire. Cloud specific
4840 `cmd-path` auth helpers will not function without adding binaries
4841 and credentials to the Pod that is responsible for reconciling
4842 Kubernetes resources.
4845 description: Key in the Secret, when not specified an implementation-specific
4846 default key is used.
4849 description: Name of the Secret.
4858 description: Strategic merge and JSON patches, defined as inline YAML
4859 objects, capable of targeting objects based on kind, label and annotation
4862 description: Patch contains an inline StrategicMerge or JSON6902
4863 patch, and the target the patch should be applied to.
4866 description: Patch contains an inline StrategicMerge patch or
4867 an inline JSON6902 patch with an array of operation objects.
4870 description: Target points to the resources that the patch document
4871 should be applied to.
4874 description: AnnotationSelector is a string that follows
4875 the label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
4876 It matches with the resource annotations.
4879 description: Group is the API group to select resources
4880 from. Together with Version and Kind it is capable of
4881 unambiguously identifying and/or selecting resources.
4882 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
4885 description: Kind of the API Group to select resources from.
4886 Together with Group and Version it is capable of unambiguously
4887 identifying and/or selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
4890 description: LabelSelector is a string that follows the
4891 label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
4892 It matches with the resource labels.
4895 description: Name to match resources with.
4898 description: Namespace to select resources from.
4901 description: Version of the API Group to select resources
4902 from. Together with Group and Kind it is capable of unambiguously
4903 identifying and/or selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
4911 description: 'JSON 6902 patches, defined as inline YAML objects. Deprecated:
4912 Use Patches instead.'
4914 description: JSON6902Patch contains a JSON6902 patch and the target
4915 the patch should be applied to.
4918 description: Patch contains the JSON6902 patch document with
4919 an array of operation objects.
4921 description: JSON6902 is a JSON6902 operation object. https://datatracker.ietf.org/doc/html/rfc6902#section-4
4924 description: From contains a JSON-pointer value that references
4925 a location within the target document where the operation
4926 is performed. The meaning of the value depends on the
4927 value of Op, and is NOT taken into account by all operations.
4930 description: Op indicates the operation to perform. Its
4931 value MUST be one of "add", "remove", "replace", "move",
4932 "copy", or "test". https://datatracker.ietf.org/doc/html/rfc6902#section-4
4942 description: Path contains the JSON-pointer value that
4943 references a location within the target document where
4944 the operation is performed. The meaning of the value
4945 depends on the value of Op.
4948 description: Value contains a valid JSON structure. The
4949 meaning of the value depends on the value of Op, and
4950 is NOT taken into account by all operations.
4951 x-kubernetes-preserve-unknown-fields: true
4958 description: Target points to the resources that the patch document
4959 should be applied to.
4962 description: AnnotationSelector is a string that follows
4963 the label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
4964 It matches with the resource annotations.
4967 description: Group is the API group to select resources
4968 from. Together with Version and Kind it is capable of
4969 unambiguously identifying and/or selecting resources.
4970 https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
4973 description: Kind of the API Group to select resources from.
4974 Together with Group and Version it is capable of unambiguously
4975 identifying and/or selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
4978 description: LabelSelector is a string that follows the
4979 label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
4980 It matches with the resource labels.
4983 description: Name to match resources with.
4986 description: Namespace to select resources from.
4989 description: Version of the API Group to select resources
4990 from. Together with Group and Kind it is capable of unambiguously
4991 identifying and/or selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
4999 patchesStrategicMerge:
5000 description: 'Strategic merge patches, defined as inline YAML objects.
5001 Deprecated: Use Patches instead.'
5003 x-kubernetes-preserve-unknown-fields: true
5006 description: Path to the directory containing the kustomization.yaml
5007 file, or the set of plain YAMLs a kustomization.yaml should be generated
5008 for. Defaults to 'None', which translates to the root path of the
5012 description: PostBuild describes which actions to perform on the YAML
5013 manifest generated by building the kustomize overlay.
5016 additionalProperties:
5018 description: Substitute holds a map of key/value pairs. The variables
5019 defined in your YAML manifests that match any of the keys defined
5020 in the map will be substituted with the set value. Includes
5021 support for bash string replacement functions e.g. ${var:=default},
5022 ${var:position} and ${var/substring/replacement}.
5025 description: SubstituteFrom holds references to ConfigMaps and
5026 Secrets containing the variables and their values to be substituted
5027 in the YAML manifests. The ConfigMap and the Secret data keys
5028 represent the var names and they must match the vars declared
5029 in the manifests for the substitution to happen.
5031 description: SubstituteReference contains a reference to a resource
5032 containing the variables name and value.
5035 description: Kind of the values referent, valid values are
5036 ('Secret', 'ConfigMap').
5042 description: Name of the values referent. Should reside
5043 in the same namespace as the referring resource.
5049 description: Optional indicates whether the referenced resource
5050 must exist, or whether to tolerate its absence. If true
5051 and the referenced resource is absent, proceed as if the
5052 resource was present but empty, without any variables
5062 description: Prune enables garbage collection.
5065 description: The interval at which to retry a previously failed reconciliation.
5066 When not specified, the controller uses the KustomizationSpec.Interval
5067 value to retry failures.
5068 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
5071 description: The name of the Kubernetes service account to impersonate
5072 when reconciling this Kustomization.
5075 description: Reference of the source where the kustomization file
5079 description: API version of the referent.
5082 description: Kind of the referent.
5089 description: Name of the referent.
5092 description: Namespace of the referent, defaults to the namespace
5093 of the Kubernetes resource object that contains the reference.
5100 description: This flag tells the controller to suspend subsequent
5101 kustomize executions, it does not apply to already started executions.
5105 description: TargetNamespace sets or overrides the namespace in the
5106 kustomization.yaml file.
5111 description: Timeout for validation, apply and health checking operations.
5112 Defaults to 'Interval' duration.
5113 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
5116 description: 'Deprecated: Not used in v1beta2.'
5123 description: Wait instructs the controller to check the health of
5124 all the reconciled resources. When enabled, the HealthChecks are
5125 ignored. Defaults to false.
5134 observedGeneration: -1
5135 description: KustomizationStatus defines the observed state of a kustomization.
5139 description: "Condition contains details for one aspect of the current
5140 state of this API Resource. --- This struct is intended for direct
5141 use as an array at the field path .status.conditions. For example,
5142 \n type FooStatus struct{ // Represents the observations of a
5143 foo's current state. // Known .status.conditions.type are: \"Available\",
5144 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
5145 // +listType=map // +listMapKey=type Conditions []metav1.Condition
5146 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
5147 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
5150 description: lastTransitionTime is the last time the condition
5151 transitioned from one status to another. This should be when
5152 the underlying condition changed. If that is not known, then
5153 using the time when the API field changed is acceptable.
5157 description: message is a human readable message indicating
5158 details about the transition. This may be an empty string.
5162 description: observedGeneration represents the .metadata.generation
5163 that the condition was set based upon. For instance, if .metadata.generation
5164 is currently 12, but the .status.conditions[x].observedGeneration
5165 is 9, the condition is out of date with respect to the current
5166 state of the instance.
5171 description: reason contains a programmatic identifier indicating
5172 the reason for the condition's last transition. Producers
5173 of specific condition types may define expected values and
5174 meanings for this field, and whether the values are considered
5175 a guaranteed API. The value should be a CamelCase string.
5176 This field may not be empty.
5179 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
5182 description: status of the condition, one of True, False, Unknown.
5189 description: type of condition in CamelCase or in foo.example.com/CamelCase.
5190 --- Many .condition.type values are consistent across resources
5191 like Available, but because arbitrary conditions can be useful
5192 (see .node.status.conditions), the ability to deconflict is
5193 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
5195 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
5198 - lastTransitionTime
5206 description: Inventory contains the list of Kubernetes resource object
5207 references that have been successfully applied.
5210 description: Entries of Kubernetes resource object references.
5212 description: ResourceRef contains the information necessary
5213 to locate a resource within a cluster.
5216 description: ID is the string representation of the Kubernetes
5217 resource object's metadata, in the format '<namespace>_<name>_<group>_<kind>'.
5220 description: Version is the API version of the Kubernetes
5221 resource object's kind.
5231 lastAppliedRevision:
5232 description: The last successfully applied revision. Equals the Revision
5233 of the applied Artifact from the referenced Source.
5235 lastAttemptedRevision:
5236 description: LastAttemptedRevision is the revision of the last reconciliation
5239 lastHandledReconcileAt:
5240 description: LastHandledReconcileAt holds the value of the most recent
5241 reconcile request value, so a change of the annotation value can
5245 description: ObservedGeneration is the last reconciled generation.
5256 kind: ServiceAccount
5259 app.kubernetes.io/component: kustomize-controller
5260 app.kubernetes.io/instance: flux-system
5261 app.kubernetes.io/part-of: flux
5262 app.kubernetes.io/version: v2.1.2
5263 name: kustomize-controller
5264 namespace: flux-system
5270 app.kubernetes.io/component: kustomize-controller
5271 app.kubernetes.io/instance: flux-system
5272 app.kubernetes.io/part-of: flux
5273 app.kubernetes.io/version: v2.1.2
5274 control-plane: controller
5275 name: kustomize-controller
5276 namespace: flux-system
5281 app: kustomize-controller
5285 prometheus.io/port: "8080"
5286 prometheus.io/scrape: "true"
5288 app: kustomize-controller
5292 - --events-addr=http://notification-controller.flux-system.svc.cluster.local./
5293 - --watch-all-namespaces=true
5295 - --log-encoding=json
5296 - --enable-leader-election
5298 - name: RUNTIME_NAMESPACE
5301 fieldPath: metadata.namespace
5302 image: ghcr.io/fluxcd/kustomize-controller:v1.1.1
5303 imagePullPolicy: IfNotPresent
5310 - containerPort: 8080
5313 - containerPort: 9440
5328 allowPrivilegeEscalation: false
5332 readOnlyRootFilesystem: true
5335 type: RuntimeDefault
5340 kubernetes.io/os: linux
5341 priorityClassName: system-cluster-critical
5344 serviceAccountName: kustomize-controller
5345 terminationGracePeriodSeconds: 60
5350 apiVersion: apiextensions.k8s.io/v1
5351 kind: CustomResourceDefinition
5354 controller-gen.kubebuilder.io/version: v0.12.0
5356 app.kubernetes.io/component: helm-controller
5357 app.kubernetes.io/instance: flux-system
5358 app.kubernetes.io/part-of: flux
5359 app.kubernetes.io/version: v2.1.2
5360 name: helmreleases.helm.toolkit.fluxcd.io
5362 group: helm.toolkit.fluxcd.io
5365 listKind: HelmReleaseList
5366 plural: helmreleases
5369 singular: helmrelease
5372 - additionalPrinterColumns:
5373 - jsonPath: .metadata.creationTimestamp
5376 - jsonPath: .status.conditions[?(@.type=="Ready")].status
5379 - jsonPath: .status.conditions[?(@.type=="Ready")].message
5385 description: HelmRelease is the Schema for the helmreleases API
5388 description: 'APIVersion defines the versioned schema of this representation
5389 of an object. Servers should convert recognized schemas to the latest
5390 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
5393 description: 'Kind is a string value representing the REST resource this
5394 object represents. Servers may infer this from the endpoint the client
5395 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
5400 description: HelmReleaseSpec defines the desired state of a Helm release.
5403 description: Chart defines the template of the v1beta2.HelmChart that
5404 should be created for this HelmRelease.
5407 description: ObjectMeta holds the template for metadata like labels
5411 additionalProperties:
5413 description: 'Annotations is an unstructured key value map
5414 stored with a resource that may be set by external tools
5415 to store and retrieve arbitrary metadata. They are not queryable
5416 and should be preserved when modifying objects. More info:
5417 https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/'
5420 additionalProperties:
5422 description: 'Map of string keys and values that can be used
5423 to organize and categorize (scope and select) objects. More
5424 info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/'
5428 description: Spec holds the template for the v1beta2.HelmChartSpec
5429 for this HelmRelease.
5432 description: The name or path the Helm chart is available
5433 at in the SourceRef.
5436 description: Interval at which to check the v1beta2.Source
5437 for updates. Defaults to 'HelmReleaseSpec.Interval'.
5438 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
5441 default: ChartVersion
5442 description: Determines what enables the creation of a new
5443 artifact. Valid values are ('ChartVersion', 'Revision').
5444 See the documentation of the values for an explanation on
5445 their behavior. Defaults to ChartVersion when omitted.
5451 description: The name and namespace of the v1beta2.Source
5452 the chart is available at.
5455 description: APIVersion of the referent.
5458 description: Kind of the referent.
5465 description: Name of the referent.
5470 description: Namespace of the referent.
5478 description: Alternative values file to use as the default
5479 chart values, expected to be a relative path in the SourceRef.
5480 Deprecated in favor of ValuesFiles, for backwards compatibility
5481 the file defined here is merged before the ValuesFiles items.
5482 Ignored when omitted.
5485 description: Alternative list of values files to use as the
5486 chart values (values.yaml is not included by default), expected
5487 to be a relative path in the SourceRef. Values files are
5488 merged in the order of this list with the last file overriding
5489 the first. Ignored when omitted.
5494 description: Verify contains the secret name containing the
5495 trusted public keys used to verify the signature and specifies
5496 which provider to use to check whether OCI image is authentic.
5497 This field is only supported for OCI sources. Chart dependencies,
5498 which are not bundled in the umbrella chart artifact, are
5503 description: Provider specifies the technology used to
5504 sign the OCI Helm chart.
5509 description: SecretRef specifies the Kubernetes Secret
5510 containing the trusted public keys.
5513 description: Name of the referent.
5523 description: Version semver expression, ignored for charts
5524 from v1beta2.GitRepository and v1beta2.Bucket sources. Defaults
5525 to latest when omitted.
5535 description: DependsOn may contain a meta.NamespacedObjectReference
5536 slice with references to HelmRelease resources that must be ready
5537 before this HelmRelease can be reconciled.
5539 description: NamespacedObjectReference contains enough information
5540 to locate the referenced Kubernetes resource object in any namespace.
5543 description: Name of the referent.
5546 description: Namespace of the referent, when not specified it
5547 acts as LocalObjectReference.
5554 description: Install holds the configuration for Helm install actions
5555 for this HelmRelease.
5558 description: "CRDs upgrade CRDs from the Helm Chart's crds directory
5559 according to the CRD upgrade policy provided here. Valid values
5560 are `Skip`, `Create` or `CreateReplace`. Default is `Create`
5561 and if omitted CRDs are installed but not updated. \n Skip:
5562 do neither install nor replace (update) any CRDs. \n Create:
5563 new CRDs are created, existing CRDs are neither updated nor
5564 deleted. \n CreateReplace: new CRDs are created, existing CRDs
5565 are updated (replaced) but not deleted. \n By default, CRDs
5566 are applied (installed) during Helm install action. With this
5567 option users can opt-in to CRD replace existing CRDs on Helm
5568 install actions, which is not (yet) natively supported by Helm.
5569 https://helm.sh/docs/chart_best_practices/custom_resource_definitions."
5576 description: CreateNamespace tells the Helm install action to
5577 create the HelmReleaseSpec.TargetNamespace if it does not exist
5578 yet. On uninstall, the namespace will not be garbage collected.
5581 description: DisableHooks prevents hooks from running during the
5582 Helm install action.
5584 disableOpenAPIValidation:
5585 description: DisableOpenAPIValidation prevents the Helm install
5586 action from validating rendered templates against the Kubernetes
5590 description: DisableWait disables the waiting for resources to
5591 be ready after a Helm install has been performed.
5594 description: DisableWaitForJobs disables waiting for jobs to complete
5595 after a Helm install has been performed.
5598 description: Remediation holds the remediation configuration for
5599 when the Helm install action for the HelmRelease fails. The
5600 default is to not perform any action.
5603 description: IgnoreTestFailures tells the controller to skip
5604 remediation when the Helm tests are run after an install
5605 action but fail. Defaults to 'Test.IgnoreFailures'.
5607 remediateLastFailure:
5608 description: RemediateLastFailure tells the controller to
5609 remediate the last failure, when no retries remain. Defaults
5613 description: Retries is the number of retries that should
5614 be attempted on failures before bailing. Remediation, using
5615 an uninstall, is performed between each attempt. Defaults
5616 to '0', a negative integer equals to unlimited retries.
5620 description: Replace tells the Helm install action to re-use the
5621 'ReleaseName', but only if that name is a deleted release which
5622 remains in the history.
5625 description: "SkipCRDs tells the Helm install action to not install
5626 any CRDs. By default, CRDs are installed if not already present.
5627 \n Deprecated use CRD policy (`crds`) attribute with value `Skip`
5631 description: Timeout is the time to wait for any individual Kubernetes
5632 operation (like Jobs for hooks) during the performance of a
5633 Helm install action. Defaults to 'HelmReleaseSpec.Timeout'.
5634 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
5638 description: Interval at which to reconcile the Helm release. This
5639 interval is approximate and may be subject to jitter to ensure efficient
5641 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
5644 description: KubeConfig for reconciling the HelmRelease on a remote
5645 cluster. When used in combination with HelmReleaseSpec.ServiceAccountName,
5646 forces the controller to act on behalf of that Service Account at
5647 the target cluster. If the --default-service-account flag is set,
5648 its value will be used as a controller level fallback for when HelmReleaseSpec.ServiceAccountName
5652 description: SecretRef holds the name of a secret that contains
5653 a key with the kubeconfig file as the value. If no key is set,
5654 the key will default to 'value'. It is recommended that the
5655 kubeconfig is self-contained, and the secret is regularly updated
5656 if credentials such as a cloud-access-token expire. Cloud specific
5657 `cmd-path` auth helpers will not function without adding binaries
5658 and credentials to the Pod that is responsible for reconciling
5659 Kubernetes resources.
5662 description: Key in the Secret, when not specified an implementation-specific
5663 default key is used.
5666 description: Name of the Secret.
5675 description: MaxHistory is the number of revisions saved by Helm for
5676 this HelmRelease. Use '0' for an unlimited number of revisions;
5680 description: "PersistentClient tells the controller to use a persistent
5681 Kubernetes client for this release. When enabled, the client will
5682 be reused for the duration of the reconciliation, instead of being
5683 created and destroyed for each (step of a) Helm action. \n This
5684 can improve performance, but may cause issues with some Helm charts
5685 that for example do create Custom Resource Definitions during installation
5686 outside Helm's CRD lifecycle hooks, which are then not observed
5687 to be available by e.g. post-install hooks. \n If not set, it defaults
5691 description: PostRenderers holds an array of Helm PostRenderers, which
5692 will be applied in order of their definition.
5694 description: PostRenderer contains a Helm PostRenderer specification.
5697 description: Kustomization to apply as PostRenderer.
5700 description: Images is a list of (image name, new name,
5701 new tag or digest) for changing image names, tags or digests.
5702 This can also be achieved with a patch, but this operator
5703 is simpler to specify.
5705 description: Image contains an image name, a new name,
5706 a new tag or digest, which will replace the original
5710 description: Digest is the value used to replace the
5711 original image tag. If digest is present NewTag
5715 description: Name is a tag-less image name.
5718 description: NewName is the value used to replace
5722 description: NewTag is the value used to replace the
5730 description: Strategic merge and JSON patches, defined as
5731 inline YAML objects, capable of targeting objects based
5732 on kind, label and annotation selectors.
5734 description: Patch contains an inline StrategicMerge or
5735 JSON6902 patch, and the target the patch should be applied
5739 description: Patch contains an inline StrategicMerge
5740 patch or an inline JSON6902 patch with an array
5741 of operation objects.
5744 description: Target points to the resources that the
5745 patch document should be applied to.
5748 description: AnnotationSelector is a string that
5749 follows the label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
5750 It matches with the resource annotations.
5753 description: Group is the API group to select
5754 resources from. Together with Version and Kind
5755 it is capable of unambiguously identifying and/or
5756 selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
5759 description: Kind of the API Group to select resources
5760 from. Together with Group and Version it is
5761 capable of unambiguously identifying and/or
5762 selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
5765 description: LabelSelector is a string that follows
5766 the label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
5767 It matches with the resource labels.
5770 description: Name to match resources with.
5773 description: Namespace to select resources from.
5776 description: Version of the API Group to select
5777 resources from. Together with Group and Kind
5778 it is capable of unambiguously identifying and/or
5779 selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
5787 description: JSON 6902 patches, defined as inline YAML objects.
5789 description: JSON6902Patch contains a JSON6902 patch and
5790 the target the patch should be applied to.
5793 description: Patch contains the JSON6902 patch document
5794 with an array of operation objects.
5796 description: JSON6902 is a JSON6902 operation object.
5797 https://datatracker.ietf.org/doc/html/rfc6902#section-4
5800 description: From contains a JSON-pointer value
5801 that references a location within the target
5802 document where the operation is performed.
5803 The meaning of the value depends on the value
5804 of Op, and is NOT taken into account by all
5808 description: Op indicates the operation to perform.
5809 Its value MUST be one of "add", "remove",
5810 "replace", "move", "copy", or "test". https://datatracker.ietf.org/doc/html/rfc6902#section-4
5820 description: Path contains the JSON-pointer
5821 value that references a location within the
5822 target document where the operation is performed.
5823 The meaning of the value depends on the value
5827 description: Value contains a valid JSON structure.
5828 The meaning of the value depends on the value
5829 of Op, and is NOT taken into account by all
5831 x-kubernetes-preserve-unknown-fields: true
5838 description: Target points to the resources that the
5839 patch document should be applied to.
5842 description: AnnotationSelector is a string that
5843 follows the label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
5844 It matches with the resource annotations.
5847 description: Group is the API group to select
5848 resources from. Together with Version and Kind
5849 it is capable of unambiguously identifying and/or
5850 selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
5853 description: Kind of the API Group to select resources
5854 from. Together with Group and Version it is
5855 capable of unambiguously identifying and/or
5856 selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
5859 description: LabelSelector is a string that follows
5860 the label selection expression https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api
5861 It matches with the resource labels.
5864 description: Name to match resources with.
5867 description: Namespace to select resources from.
5870 description: Version of the API Group to select
5871 resources from. Together with Group and Kind
5872 it is capable of unambiguously identifying and/or
5873 selecting resources. https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md
5881 patchesStrategicMerge:
5882 description: Strategic merge patches, defined as inline
5885 x-kubernetes-preserve-unknown-fields: true
5891 description: ReleaseName used for the Helm release. Defaults to a
5892 composition of '[TargetNamespace-]Name'.
5897 description: Rollback holds the configuration for Helm rollback actions
5898 for this HelmRelease.
5901 description: CleanupOnFail allows deletion of new resources created
5902 during the Helm rollback action when it fails.
5905 description: DisableHooks prevents hooks from running during the
5906 Helm rollback action.
5909 description: DisableWait disables the waiting for resources to
5910 be ready after a Helm rollback has been performed.
5913 description: DisableWaitForJobs disables waiting for jobs to complete
5914 after a Helm rollback has been performed.
5917 description: Force forces resource updates through a replacement
5921 description: Recreate performs pod restarts for the resource if
5925 description: Timeout is the time to wait for any individual Kubernetes
5926 operation (like Jobs for hooks) during the performance of a
5927 Helm rollback action. Defaults to 'HelmReleaseSpec.Timeout'.
5928 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
5932 description: The name of the Kubernetes service account to impersonate
5933 when reconciling this HelmRelease.
5936 description: StorageNamespace used for the Helm storage. Defaults
5937 to the namespace of the HelmRelease.
5942 description: Suspend tells the controller to suspend reconciliation
5943 for this HelmRelease, it does not apply to already started reconciliations.
5947 description: TargetNamespace to target when performing operations
5948 for the HelmRelease. Defaults to the namespace of the HelmRelease.
5953 description: Test holds the configuration for Helm test actions for
5957 description: Enable enables Helm test actions for this HelmRelease
5958 after an Helm install or upgrade action has been performed.
5961 description: IgnoreFailures tells the controller to skip remediation
5962 when the Helm tests are run but fail. Can be overwritten for
5963 tests run after install or upgrade actions in 'Install.IgnoreTestFailures'
5964 and 'Upgrade.IgnoreTestFailures'.
5967 description: Timeout is the time to wait for any individual Kubernetes
5968 operation during the performance of a Helm test action. Defaults
5969 to 'HelmReleaseSpec.Timeout'.
5970 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
5974 description: Timeout is the time to wait for any individual Kubernetes
5975 operation (like Jobs for hooks) during the performance of a Helm
5976 action. Defaults to '5m0s'.
5977 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
5980 description: Uninstall holds the configuration for Helm uninstall
5981 actions for this HelmRelease.
5983 deletionPropagation:
5985 description: DeletionPropagation specifies the deletion propagation
5986 policy when a Helm uninstall is performed.
5993 description: DisableHooks prevents hooks from running during the
5994 Helm rollback action.
5997 description: DisableWait disables waiting for all the resources
5998 to be deleted after a Helm uninstall is performed.
6001 description: KeepHistory tells Helm to remove all associated resources
6002 and mark the release as deleted, but retain the release history.
6005 description: Timeout is the time to wait for any individual Kubernetes
6006 operation (like Jobs for hooks) during the performance of a
6007 Helm uninstall action. Defaults to 'HelmReleaseSpec.Timeout'.
6008 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
6012 description: Upgrade holds the configuration for Helm upgrade actions
6013 for this HelmRelease.
6016 description: CleanupOnFail allows deletion of new resources created
6017 during the Helm upgrade action when it fails.
6020 description: "CRDs upgrade CRDs from the Helm Chart's crds directory
6021 according to the CRD upgrade policy provided here. Valid values
6022 are `Skip`, `Create` or `CreateReplace`. Default is `Skip` and
6023 if omitted CRDs are neither installed nor upgraded. \n Skip:
6024 do neither install nor replace (update) any CRDs. \n Create:
6025 new CRDs are created, existing CRDs are neither updated nor
6026 deleted. \n CreateReplace: new CRDs are created, existing CRDs
6027 are updated (replaced) but not deleted. \n By default, CRDs
6028 are not applied during Helm upgrade action. With this option
6029 users can opt-in to CRD upgrade, which is not (yet) natively
6030 supported by Helm. https://helm.sh/docs/chart_best_practices/custom_resource_definitions."
6037 description: DisableHooks prevents hooks from running during the
6038 Helm upgrade action.
6040 disableOpenAPIValidation:
6041 description: DisableOpenAPIValidation prevents the Helm upgrade
6042 action from validating rendered templates against the Kubernetes
6046 description: DisableWait disables the waiting for resources to
6047 be ready after a Helm upgrade has been performed.
6050 description: DisableWaitForJobs disables waiting for jobs to complete
6051 after a Helm upgrade has been performed.
6054 description: Force forces resource updates through a replacement
6058 description: PreserveValues will make Helm reuse the last release's
6059 values and merge in overrides from 'Values'. Setting this flag
6060 makes the HelmRelease non-declarative.
6063 description: Remediation holds the remediation configuration for
6064 when the Helm upgrade action for the HelmRelease fails. The
6065 default is to not perform any action.
6068 description: IgnoreTestFailures tells the controller to skip
6069 remediation when the Helm tests are run after an upgrade
6070 action but fail. Defaults to 'Test.IgnoreFailures'.
6072 remediateLastFailure:
6073 description: RemediateLastFailure tells the controller to
6074 remediate the last failure, when no retries remain. Defaults
6075 to 'false' unless 'Retries' is greater than 0.
6078 description: Retries is the number of retries that should
6079 be attempted on failures before bailing. Remediation, using
6080 'Strategy', is performed between each attempt. Defaults
6081 to '0', a negative integer equals to unlimited retries.
6084 description: Strategy to use for failure remediation. Defaults
6092 description: Timeout is the time to wait for any individual Kubernetes
6093 operation (like Jobs for hooks) during the performance of a
6094 Helm upgrade action. Defaults to 'HelmReleaseSpec.Timeout'.
6095 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
6099 description: Values holds the values for this Helm release.
6100 x-kubernetes-preserve-unknown-fields: true
6102 description: ValuesFrom holds references to resources containing Helm
6103 values for this HelmRelease, and information about how they should
6106 description: ValuesReference contains a reference to a resource
6107 containing Helm values, and optionally the key they can be found
6111 description: Kind of the values referent, valid values are ('Secret',
6118 description: Name of the values referent. Should reside in the
6119 same namespace as the referring resource.
6124 description: Optional marks this ValuesReference as optional.
6125 When set, a not found error for the values reference is ignored,
6126 but any ValuesKey, TargetPath or transient error will still
6127 result in a reconciliation failure.
6130 description: TargetPath is the YAML dot notation path the value
6131 should be merged at. When set, the ValuesKey is expected to
6132 be a single flat value. Defaults to 'None', which results
6133 in the values getting merged at the root.
6135 pattern: ^([a-zA-Z0-9_\-.\\\/]|\[[0-9]{1,5}\])+$
6138 description: ValuesKey is the data key where the values.yaml
6139 or a specific value can be found at. Defaults to 'values.yaml'.
6140 When set, must be a valid Data Key, consisting of alphanumeric
6141 characters, '-', '_' or '.'.
6143 pattern: ^[\-._a-zA-Z0-9]+$
6156 observedGeneration: -1
6157 description: HelmReleaseStatus defines the observed state of a HelmRelease.
6160 description: Conditions holds the conditions for the HelmRelease.
6162 description: "Condition contains details for one aspect of the current
6163 state of this API Resource. --- This struct is intended for direct
6164 use as an array at the field path .status.conditions. For example,
6165 \n type FooStatus struct{ // Represents the observations of a
6166 foo's current state. // Known .status.conditions.type are: \"Available\",
6167 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
6168 // +listType=map // +listMapKey=type Conditions []metav1.Condition
6169 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
6170 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
6173 description: lastTransitionTime is the last time the condition
6174 transitioned from one status to another. This should be when
6175 the underlying condition changed. If that is not known, then
6176 using the time when the API field changed is acceptable.
6180 description: message is a human readable message indicating
6181 details about the transition. This may be an empty string.
6185 description: observedGeneration represents the .metadata.generation
6186 that the condition was set based upon. For instance, if .metadata.generation
6187 is currently 12, but the .status.conditions[x].observedGeneration
6188 is 9, the condition is out of date with respect to the current
6189 state of the instance.
6194 description: reason contains a programmatic identifier indicating
6195 the reason for the condition's last transition. Producers
6196 of specific condition types may define expected values and
6197 meanings for this field, and whether the values are considered
6198 a guaranteed API. The value should be a CamelCase string.
6199 This field may not be empty.
6202 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
6205 description: status of the condition, one of True, False, Unknown.
6212 description: type of condition in CamelCase or in foo.example.com/CamelCase.
6213 --- Many .condition.type values are consistent across resources
6214 like Available, but because arbitrary conditions can be useful
6215 (see .node.status.conditions), the ability to deconflict is
6216 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
6218 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
6221 - lastTransitionTime
6229 description: Failures is the reconciliation failure count against
6230 the latest desired state. It is reset after a successful reconciliation.
6234 description: HelmChart is the namespaced name of the HelmChart resource
6235 created by the controller for the HelmRelease.
6238 description: InstallFailures is the install failure count against
6239 the latest desired state. It is reset after a successful reconciliation.
6242 lastAppliedRevision:
6243 description: LastAppliedRevision is the revision of the last successfully
6246 lastAttemptedRevision:
6247 description: LastAttemptedRevision is the revision of the last reconciliation
6250 lastAttemptedValuesChecksum:
6251 description: LastAttemptedValuesChecksum is the SHA1 checksum of the
6252 values of the last reconciliation attempt.
6254 lastHandledReconcileAt:
6255 description: LastHandledReconcileAt holds the value of the most recent
6256 reconcile request value, so a change of the annotation value can
6259 lastReleaseRevision:
6260 description: LastReleaseRevision is the revision of the last successful
6264 description: ObservedGeneration is the last observed generation.
6268 description: UpgradeFailures is the upgrade failure count against
6269 the latest desired state. It is reset after a successful reconciliation.
6280 kind: ServiceAccount
6283 app.kubernetes.io/component: helm-controller
6284 app.kubernetes.io/instance: flux-system
6285 app.kubernetes.io/part-of: flux
6286 app.kubernetes.io/version: v2.1.2
6287 name: helm-controller
6288 namespace: flux-system
6294 app.kubernetes.io/component: helm-controller
6295 app.kubernetes.io/instance: flux-system
6296 app.kubernetes.io/part-of: flux
6297 app.kubernetes.io/version: v2.1.2
6298 control-plane: controller
6299 name: helm-controller
6300 namespace: flux-system
6305 app: helm-controller
6309 prometheus.io/port: "8080"
6310 prometheus.io/scrape: "true"
6312 app: helm-controller
6316 - --events-addr=http://notification-controller.flux-system.svc.cluster.local./
6317 - --watch-all-namespaces=true
6319 - --log-encoding=json
6320 - --enable-leader-election
6322 - name: RUNTIME_NAMESPACE
6325 fieldPath: metadata.namespace
6326 image: ghcr.io/fluxcd/helm-controller:v0.36.2
6327 imagePullPolicy: IfNotPresent
6334 - containerPort: 8080
6337 - containerPort: 9440
6352 allowPrivilegeEscalation: false
6356 readOnlyRootFilesystem: true
6359 type: RuntimeDefault
6364 kubernetes.io/os: linux
6365 priorityClassName: system-cluster-critical
6368 serviceAccountName: helm-controller
6369 terminationGracePeriodSeconds: 600
6374 apiVersion: apiextensions.k8s.io/v1
6375 kind: CustomResourceDefinition
6378 controller-gen.kubebuilder.io/version: v0.12.0
6380 app.kubernetes.io/component: notification-controller
6381 app.kubernetes.io/instance: flux-system
6382 app.kubernetes.io/part-of: flux
6383 app.kubernetes.io/version: v2.1.2
6384 name: alerts.notification.toolkit.fluxcd.io
6386 group: notification.toolkit.fluxcd.io
6394 - additionalPrinterColumns:
6395 - jsonPath: .metadata.creationTimestamp
6398 - jsonPath: .status.conditions[?(@.type=="Ready")].status
6401 - jsonPath: .status.conditions[?(@.type=="Ready")].message
6407 description: Alert is the Schema for the alerts API
6410 description: 'APIVersion defines the versioned schema of this representation
6411 of an object. Servers should convert recognized schemas to the latest
6412 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
6415 description: 'Kind is a string value representing the REST resource this
6416 object represents. Servers may infer this from the endpoint the client
6417 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
6422 description: AlertSpec defines an alerting rule for events involving a
6427 description: Filter events based on severity, defaults to ('info').
6428 If set to 'info' no events will be filtered.
6434 description: Filter events based on the involved objects.
6436 description: CrossNamespaceObjectReference contains enough information
6437 to let you locate the typed referenced object at cluster level
6440 description: API version of the referent
6443 description: Kind of the referent
6453 - ImageUpdateAutomation
6457 additionalProperties:
6459 description: MatchLabels is a map of {key,value} pairs. A single
6460 {key,value} in the matchLabels map is equivalent to an element
6461 of matchExpressions, whose key field is "key", the operator
6462 is "In", and the values array contains only "value". The requirements
6466 description: Name of the referent
6471 description: Namespace of the referent
6480 description: A list of Golang regular expressions to be used for excluding
6486 description: Send events using this provider.
6489 description: Name of the referent.
6495 description: Short description of the impact and affected cluster.
6498 description: This flag tells the controller to suspend subsequent
6499 events dispatching. Defaults to false.
6507 observedGeneration: -1
6508 description: AlertStatus defines the observed state of Alert
6512 description: "Condition contains details for one aspect of the current
6513 state of this API Resource. --- This struct is intended for direct
6514 use as an array at the field path .status.conditions. For example,
6515 \n type FooStatus struct{ // Represents the observations of a
6516 foo's current state. // Known .status.conditions.type are: \"Available\",
6517 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
6518 // +listType=map // +listMapKey=type Conditions []metav1.Condition
6519 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
6520 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
6523 description: lastTransitionTime is the last time the condition
6524 transitioned from one status to another. This should be when
6525 the underlying condition changed. If that is not known, then
6526 using the time when the API field changed is acceptable.
6530 description: message is a human readable message indicating
6531 details about the transition. This may be an empty string.
6535 description: observedGeneration represents the .metadata.generation
6536 that the condition was set based upon. For instance, if .metadata.generation
6537 is currently 12, but the .status.conditions[x].observedGeneration
6538 is 9, the condition is out of date with respect to the current
6539 state of the instance.
6544 description: reason contains a programmatic identifier indicating
6545 the reason for the condition's last transition. Producers
6546 of specific condition types may define expected values and
6547 meanings for this field, and whether the values are considered
6548 a guaranteed API. The value should be a CamelCase string.
6549 This field may not be empty.
6552 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
6555 description: status of the condition, one of True, False, Unknown.
6562 description: type of condition in CamelCase or in foo.example.com/CamelCase.
6563 --- Many .condition.type values are consistent across resources
6564 like Available, but because arbitrary conditions can be useful
6565 (see .node.status.conditions), the ability to deconflict is
6566 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
6568 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
6571 - lastTransitionTime
6579 description: ObservedGeneration is the last observed generation.
6588 - additionalPrinterColumns:
6589 - jsonPath: .metadata.creationTimestamp
6592 - jsonPath: .status.conditions[?(@.type=="Ready")].status
6595 - jsonPath: .status.conditions[?(@.type=="Ready")].message
6601 description: Alert is the Schema for the alerts API
6604 description: 'APIVersion defines the versioned schema of this representation
6605 of an object. Servers should convert recognized schemas to the latest
6606 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
6609 description: 'Kind is a string value representing the REST resource this
6610 object represents. Servers may infer this from the endpoint the client
6611 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
6616 description: AlertSpec defines an alerting rule for events involving a
6620 additionalProperties:
6622 description: EventMetadata is an optional field for adding metadata
6623 to events dispatched by the controller. This can be used for enhancing
6624 the context of the event. If a field would override one already
6625 present on the original event as generated by the emitter, then
6626 the override doesn't happen, i.e. the original value is preserved,
6627 and an info log is printed.
6631 description: EventSeverity specifies how to filter events based on
6632 severity. If set to 'info' no events will be filtered.
6638 description: EventSources specifies how to filter events based on
6639 the involved object kind, name and namespace.
6641 description: CrossNamespaceObjectReference contains enough information
6642 to let you locate the typed referenced object at cluster level
6645 description: API version of the referent
6648 description: Kind of the referent
6658 - ImageUpdateAutomation
6662 additionalProperties:
6664 description: MatchLabels is a map of {key,value} pairs. A single
6665 {key,value} in the matchLabels map is equivalent to an element
6666 of matchExpressions, whose key field is "key", the operator
6667 is "In", and the values array contains only "value". The requirements
6668 are ANDed. MatchLabels requires the name to be set to `*`.
6671 description: Name of the referent If multiple resources are
6672 targeted `*` may be set.
6677 description: Namespace of the referent
6687 description: ExclusionList specifies a list of Golang regular expressions
6688 to be used for excluding messages.
6693 description: InclusionList specifies a list of Golang regular expressions
6694 to be used for including messages.
6699 description: ProviderRef specifies which Provider this Alert should
6703 description: Name of the referent.
6709 description: Summary holds a short description of the impact and affected
6714 description: Suspend tells the controller to suspend subsequent events
6715 handling for this Alert.
6723 observedGeneration: -1
6724 description: AlertStatus defines the observed state of the Alert.
6727 description: Conditions holds the conditions for the Alert.
6729 description: "Condition contains details for one aspect of the current
6730 state of this API Resource. --- This struct is intended for direct
6731 use as an array at the field path .status.conditions. For example,
6732 \n type FooStatus struct{ // Represents the observations of a
6733 foo's current state. // Known .status.conditions.type are: \"Available\",
6734 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
6735 // +listType=map // +listMapKey=type Conditions []metav1.Condition
6736 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
6737 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
6740 description: lastTransitionTime is the last time the condition
6741 transitioned from one status to another. This should be when
6742 the underlying condition changed. If that is not known, then
6743 using the time when the API field changed is acceptable.
6747 description: message is a human readable message indicating
6748 details about the transition. This may be an empty string.
6752 description: observedGeneration represents the .metadata.generation
6753 that the condition was set based upon. For instance, if .metadata.generation
6754 is currently 12, but the .status.conditions[x].observedGeneration
6755 is 9, the condition is out of date with respect to the current
6756 state of the instance.
6761 description: reason contains a programmatic identifier indicating
6762 the reason for the condition's last transition. Producers
6763 of specific condition types may define expected values and
6764 meanings for this field, and whether the values are considered
6765 a guaranteed API. The value should be a CamelCase string.
6766 This field may not be empty.
6769 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
6772 description: status of the condition, one of True, False, Unknown.
6779 description: type of condition in CamelCase or in foo.example.com/CamelCase.
6780 --- Many .condition.type values are consistent across resources
6781 like Available, but because arbitrary conditions can be useful
6782 (see .node.status.conditions), the ability to deconflict is
6783 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
6785 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
6788 - lastTransitionTime
6795 lastHandledReconcileAt:
6796 description: LastHandledReconcileAt holds the value of the most recent
6797 reconcile request value, so a change of the annotation value can
6801 description: ObservedGeneration is the last observed generation.
6811 apiVersion: apiextensions.k8s.io/v1
6812 kind: CustomResourceDefinition
6815 controller-gen.kubebuilder.io/version: v0.12.0
6817 app.kubernetes.io/component: notification-controller
6818 app.kubernetes.io/instance: flux-system
6819 app.kubernetes.io/part-of: flux
6820 app.kubernetes.io/version: v2.1.2
6821 name: providers.notification.toolkit.fluxcd.io
6823 group: notification.toolkit.fluxcd.io
6826 listKind: ProviderList
6831 - additionalPrinterColumns:
6832 - jsonPath: .metadata.creationTimestamp
6835 - jsonPath: .status.conditions[?(@.type=="Ready")].status
6838 - jsonPath: .status.conditions[?(@.type=="Ready")].message
6844 description: Provider is the Schema for the providers API
6847 description: 'APIVersion defines the versioned schema of this representation
6848 of an object. Servers should convert recognized schemas to the latest
6849 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
6852 description: 'Kind is a string value representing the REST resource this
6853 object represents. Servers may infer this from the endpoint the client
6854 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
6859 description: ProviderSpec defines the desired state of Provider
6862 description: HTTP/S webhook address of this provider
6863 pattern: ^(http|https)://
6866 description: CertSecretRef can be given the name of a secret containing
6867 a PEM-encoded CA certificate (`caFile`)
6870 description: Name of the referent.
6876 description: Alert channel for this provider
6879 description: HTTP/S address of the proxy
6880 pattern: ^(http|https)://
6883 description: Secret reference containing the provider webhook URL
6884 using "address" as data key
6887 description: Name of the referent.
6893 description: This flag tells the controller to suspend subsequent
6894 events handling. Defaults to false.
6897 description: Timeout for sending alerts to the provider.
6898 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m))+$
6901 description: Type of provider
6926 description: Bot username for this provider
6933 observedGeneration: -1
6934 description: ProviderStatus defines the observed state of Provider
6938 description: "Condition contains details for one aspect of the current
6939 state of this API Resource. --- This struct is intended for direct
6940 use as an array at the field path .status.conditions. For example,
6941 \n type FooStatus struct{ // Represents the observations of a
6942 foo's current state. // Known .status.conditions.type are: \"Available\",
6943 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
6944 // +listType=map // +listMapKey=type Conditions []metav1.Condition
6945 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
6946 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
6949 description: lastTransitionTime is the last time the condition
6950 transitioned from one status to another. This should be when
6951 the underlying condition changed. If that is not known, then
6952 using the time when the API field changed is acceptable.
6956 description: message is a human readable message indicating
6957 details about the transition. This may be an empty string.
6961 description: observedGeneration represents the .metadata.generation
6962 that the condition was set based upon. For instance, if .metadata.generation
6963 is currently 12, but the .status.conditions[x].observedGeneration
6964 is 9, the condition is out of date with respect to the current
6965 state of the instance.
6970 description: reason contains a programmatic identifier indicating
6971 the reason for the condition's last transition. Producers
6972 of specific condition types may define expected values and
6973 meanings for this field, and whether the values are considered
6974 a guaranteed API. The value should be a CamelCase string.
6975 This field may not be empty.
6978 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
6981 description: status of the condition, one of True, False, Unknown.
6988 description: type of condition in CamelCase or in foo.example.com/CamelCase.
6989 --- Many .condition.type values are consistent across resources
6990 like Available, but because arbitrary conditions can be useful
6991 (see .node.status.conditions), the ability to deconflict is
6992 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
6994 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
6997 - lastTransitionTime
7005 description: ObservedGeneration is the last reconciled generation.
7014 - additionalPrinterColumns:
7015 - jsonPath: .metadata.creationTimestamp
7018 - jsonPath: .status.conditions[?(@.type=="Ready")].status
7021 - jsonPath: .status.conditions[?(@.type=="Ready")].message
7027 description: Provider is the Schema for the providers API.
7030 description: 'APIVersion defines the versioned schema of this representation
7031 of an object. Servers should convert recognized schemas to the latest
7032 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
7035 description: 'Kind is a string value representing the REST resource this
7036 object represents. Servers may infer this from the endpoint the client
7037 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
7042 description: ProviderSpec defines the desired state of the Provider.
7045 description: Address specifies the endpoint, in a generic sense, to
7046 where alerts are sent. What kind of endpoint depends on the specific
7047 Provider type being used. For the generic Provider, for example,
7048 this is an HTTP/S address. For other Provider types this could be
7049 a project ID or a namespace.
7053 description: "CertSecretRef specifies the Secret containing a PEM-encoded
7054 CA certificate (in the `ca.crt` key). \n Note: Support for the `caFile`
7055 key has been deprecated."
7058 description: Name of the referent.
7064 description: Channel specifies the destination channel where events
7069 description: Interval at which to reconcile the Provider with its
7071 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
7074 description: Proxy the HTTP/S address of the proxy server.
7076 pattern: ^(http|https)://.*$
7079 description: SecretRef specifies the Secret containing the authentication
7080 credentials for this Provider.
7083 description: Name of the referent.
7089 description: Suspend tells the controller to suspend subsequent events
7090 handling for this Provider.
7093 description: Timeout for sending alerts to the Provider.
7094 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m))+$
7097 description: Type specifies which Provider implementation to use.
7126 description: Username specifies the name under which events are posted.
7134 observedGeneration: -1
7135 description: ProviderStatus defines the observed state of the Provider.
7138 description: Conditions holds the conditions for the Provider.
7140 description: "Condition contains details for one aspect of the current
7141 state of this API Resource. --- This struct is intended for direct
7142 use as an array at the field path .status.conditions. For example,
7143 \n type FooStatus struct{ // Represents the observations of a
7144 foo's current state. // Known .status.conditions.type are: \"Available\",
7145 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
7146 // +listType=map // +listMapKey=type Conditions []metav1.Condition
7147 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
7148 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
7151 description: lastTransitionTime is the last time the condition
7152 transitioned from one status to another. This should be when
7153 the underlying condition changed. If that is not known, then
7154 using the time when the API field changed is acceptable.
7158 description: message is a human readable message indicating
7159 details about the transition. This may be an empty string.
7163 description: observedGeneration represents the .metadata.generation
7164 that the condition was set based upon. For instance, if .metadata.generation
7165 is currently 12, but the .status.conditions[x].observedGeneration
7166 is 9, the condition is out of date with respect to the current
7167 state of the instance.
7172 description: reason contains a programmatic identifier indicating
7173 the reason for the condition's last transition. Producers
7174 of specific condition types may define expected values and
7175 meanings for this field, and whether the values are considered
7176 a guaranteed API. The value should be a CamelCase string.
7177 This field may not be empty.
7180 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
7183 description: status of the condition, one of True, False, Unknown.
7190 description: type of condition in CamelCase or in foo.example.com/CamelCase.
7191 --- Many .condition.type values are consistent across resources
7192 like Available, but because arbitrary conditions can be useful
7193 (see .node.status.conditions), the ability to deconflict is
7194 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
7196 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
7199 - lastTransitionTime
7206 lastHandledReconcileAt:
7207 description: LastHandledReconcileAt holds the value of the most recent
7208 reconcile request value, so a change of the annotation value can
7212 description: ObservedGeneration is the last reconciled generation.
7222 apiVersion: apiextensions.k8s.io/v1
7223 kind: CustomResourceDefinition
7226 controller-gen.kubebuilder.io/version: v0.12.0
7228 app.kubernetes.io/component: notification-controller
7229 app.kubernetes.io/instance: flux-system
7230 app.kubernetes.io/part-of: flux
7231 app.kubernetes.io/version: v2.1.2
7232 name: receivers.notification.toolkit.fluxcd.io
7234 group: notification.toolkit.fluxcd.io
7237 listKind: ReceiverList
7242 - additionalPrinterColumns:
7243 - jsonPath: .metadata.creationTimestamp
7246 - jsonPath: .status.conditions[?(@.type=="Ready")].status
7249 - jsonPath: .status.conditions[?(@.type=="Ready")].message
7255 description: Receiver is the Schema for the receivers API.
7258 description: 'APIVersion defines the versioned schema of this representation
7259 of an object. Servers should convert recognized schemas to the latest
7260 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
7263 description: 'Kind is a string value representing the REST resource this
7264 object represents. Servers may infer this from the endpoint the client
7265 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
7270 description: ReceiverSpec defines the desired state of the Receiver.
7273 description: Events specifies the list of event types to handle, e.g.
7274 'push' for GitHub or 'Push Hook' for GitLab.
7280 description: Interval at which to reconcile the Receiver with its
7282 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
7285 description: A list of resources to be notified about changes.
7287 description: CrossNamespaceObjectReference contains enough information
7288 to let you locate the typed referenced object at cluster level
7291 description: API version of the referent
7294 description: Kind of the referent
7304 - ImageUpdateAutomation
7308 additionalProperties:
7310 description: MatchLabels is a map of {key,value} pairs. A single
7311 {key,value} in the matchLabels map is equivalent to an element
7312 of matchExpressions, whose key field is "key", the operator
7313 is "In", and the values array contains only "value". The requirements
7314 are ANDed. MatchLabels requires the name to be set to `*`.
7317 description: Name of the referent If multiple resources are
7318 targeted `*` may be set.
7323 description: Namespace of the referent
7333 description: SecretRef specifies the Secret containing the token used
7334 to validate the payload authenticity.
7337 description: Name of the referent.
7343 description: Suspend tells the controller to suspend subsequent events
7344 handling for this receiver.
7347 description: Type of webhook sender, used to determine the validation
7348 procedure and payload deserialization.
7369 observedGeneration: -1
7370 description: ReceiverStatus defines the observed state of the Receiver.
7373 description: Conditions holds the conditions for the Receiver.
7375 description: "Condition contains details for one aspect of the current
7376 state of this API Resource. --- This struct is intended for direct
7377 use as an array at the field path .status.conditions. For example,
7378 \n type FooStatus struct{ // Represents the observations of a
7379 foo's current state. // Known .status.conditions.type are: \"Available\",
7380 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
7381 // +listType=map // +listMapKey=type Conditions []metav1.Condition
7382 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
7383 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
7386 description: lastTransitionTime is the last time the condition
7387 transitioned from one status to another. This should be when
7388 the underlying condition changed. If that is not known, then
7389 using the time when the API field changed is acceptable.
7393 description: message is a human readable message indicating
7394 details about the transition. This may be an empty string.
7398 description: observedGeneration represents the .metadata.generation
7399 that the condition was set based upon. For instance, if .metadata.generation
7400 is currently 12, but the .status.conditions[x].observedGeneration
7401 is 9, the condition is out of date with respect to the current
7402 state of the instance.
7407 description: reason contains a programmatic identifier indicating
7408 the reason for the condition's last transition. Producers
7409 of specific condition types may define expected values and
7410 meanings for this field, and whether the values are considered
7411 a guaranteed API. The value should be a CamelCase string.
7412 This field may not be empty.
7415 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
7418 description: status of the condition, one of True, False, Unknown.
7425 description: type of condition in CamelCase or in foo.example.com/CamelCase.
7426 --- Many .condition.type values are consistent across resources
7427 like Available, but because arbitrary conditions can be useful
7428 (see .node.status.conditions), the ability to deconflict is
7429 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
7431 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
7434 - lastTransitionTime
7441 lastHandledReconcileAt:
7442 description: LastHandledReconcileAt holds the value of the most recent
7443 reconcile request value, so a change of the annotation value can
7447 description: ObservedGeneration is the last observed generation of
7448 the Receiver object.
7452 description: WebhookPath is the generated incoming webhook address
7453 in the format of '/hook/sha256sum(token+name+namespace)'.
7461 - additionalPrinterColumns:
7462 - jsonPath: .metadata.creationTimestamp
7465 - jsonPath: .status.conditions[?(@.type=="Ready")].status
7468 - jsonPath: .status.conditions[?(@.type=="Ready")].message
7472 deprecationWarning: v1beta1 Receiver is deprecated, upgrade to v1
7476 description: Receiver is the Schema for the receivers API
7479 description: 'APIVersion defines the versioned schema of this representation
7480 of an object. Servers should convert recognized schemas to the latest
7481 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
7484 description: 'Kind is a string value representing the REST resource this
7485 object represents. Servers may infer this from the endpoint the client
7486 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
7491 description: ReceiverSpec defines the desired state of Receiver
7494 description: A list of events to handle, e.g. 'push' for GitHub or
7495 'Push Hook' for GitLab.
7500 description: A list of resources to be notified about changes.
7502 description: CrossNamespaceObjectReference contains enough information
7503 to let you locate the typed referenced object at cluster level
7506 description: API version of the referent
7509 description: Kind of the referent
7519 - ImageUpdateAutomation
7523 additionalProperties:
7525 description: MatchLabels is a map of {key,value} pairs. A single
7526 {key,value} in the matchLabels map is equivalent to an element
7527 of matchExpressions, whose key field is "key", the operator
7528 is "In", and the values array contains only "value". The requirements
7532 description: Name of the referent
7537 description: Namespace of the referent
7546 description: Secret reference containing the token used to validate
7547 the payload authenticity
7550 description: Name of the referent.
7556 description: This flag tells the controller to suspend subsequent
7557 events handling. Defaults to false.
7560 description: Type of webhook sender, used to determine the validation
7561 procedure and payload deserialization.
7581 observedGeneration: -1
7582 description: ReceiverStatus defines the observed state of Receiver
7586 description: "Condition contains details for one aspect of the current
7587 state of this API Resource. --- This struct is intended for direct
7588 use as an array at the field path .status.conditions. For example,
7589 \n type FooStatus struct{ // Represents the observations of a
7590 foo's current state. // Known .status.conditions.type are: \"Available\",
7591 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
7592 // +listType=map // +listMapKey=type Conditions []metav1.Condition
7593 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
7594 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
7597 description: lastTransitionTime is the last time the condition
7598 transitioned from one status to another. This should be when
7599 the underlying condition changed. If that is not known, then
7600 using the time when the API field changed is acceptable.
7604 description: message is a human readable message indicating
7605 details about the transition. This may be an empty string.
7609 description: observedGeneration represents the .metadata.generation
7610 that the condition was set based upon. For instance, if .metadata.generation
7611 is currently 12, but the .status.conditions[x].observedGeneration
7612 is 9, the condition is out of date with respect to the current
7613 state of the instance.
7618 description: reason contains a programmatic identifier indicating
7619 the reason for the condition's last transition. Producers
7620 of specific condition types may define expected values and
7621 meanings for this field, and whether the values are considered
7622 a guaranteed API. The value should be a CamelCase string.
7623 This field may not be empty.
7626 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
7629 description: status of the condition, one of True, False, Unknown.
7636 description: type of condition in CamelCase or in foo.example.com/CamelCase.
7637 --- Many .condition.type values are consistent across resources
7638 like Available, but because arbitrary conditions can be useful
7639 (see .node.status.conditions), the ability to deconflict is
7640 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
7642 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
7645 - lastTransitionTime
7653 description: ObservedGeneration is the last observed generation.
7657 description: Generated webhook URL in the format of '/hook/sha256sum(token+name+namespace)'.
7665 - additionalPrinterColumns:
7666 - jsonPath: .metadata.creationTimestamp
7669 - jsonPath: .status.conditions[?(@.type=="Ready")].status
7672 - jsonPath: .status.conditions[?(@.type=="Ready")].message
7676 deprecationWarning: v1beta2 Receiver is deprecated, upgrade to v1
7680 description: Receiver is the Schema for the receivers API.
7683 description: 'APIVersion defines the versioned schema of this representation
7684 of an object. Servers should convert recognized schemas to the latest
7685 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
7688 description: 'Kind is a string value representing the REST resource this
7689 object represents. Servers may infer this from the endpoint the client
7690 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
7695 description: ReceiverSpec defines the desired state of the Receiver.
7698 description: Events specifies the list of event types to handle, e.g.
7699 'push' for GitHub or 'Push Hook' for GitLab.
7704 description: Interval at which to reconcile the Receiver with its
7706 pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$
7709 description: A list of resources to be notified about changes.
7711 description: CrossNamespaceObjectReference contains enough information
7712 to let you locate the typed referenced object at cluster level
7715 description: API version of the referent
7718 description: Kind of the referent
7728 - ImageUpdateAutomation
7732 additionalProperties:
7734 description: MatchLabels is a map of {key,value} pairs. A single
7735 {key,value} in the matchLabels map is equivalent to an element
7736 of matchExpressions, whose key field is "key", the operator
7737 is "In", and the values array contains only "value". The requirements
7738 are ANDed. MatchLabels requires the name to be set to `*`.
7741 description: Name of the referent If multiple resources are
7742 targeted `*` may be set.
7747 description: Namespace of the referent
7757 description: SecretRef specifies the Secret containing the token used
7758 to validate the payload authenticity.
7761 description: Name of the referent.
7767 description: Suspend tells the controller to suspend subsequent events
7768 handling for this receiver.
7771 description: Type of webhook sender, used to determine the validation
7772 procedure and payload deserialization.
7792 observedGeneration: -1
7793 description: ReceiverStatus defines the observed state of the Receiver.
7796 description: Conditions holds the conditions for the Receiver.
7798 description: "Condition contains details for one aspect of the current
7799 state of this API Resource. --- This struct is intended for direct
7800 use as an array at the field path .status.conditions. For example,
7801 \n type FooStatus struct{ // Represents the observations of a
7802 foo's current state. // Known .status.conditions.type are: \"Available\",
7803 \"Progressing\", and \"Degraded\" // +patchMergeKey=type // +patchStrategy=merge
7804 // +listType=map // +listMapKey=type Conditions []metav1.Condition
7805 `json:\"conditions,omitempty\" patchStrategy:\"merge\" patchMergeKey:\"type\"
7806 protobuf:\"bytes,1,rep,name=conditions\"` \n // other fields }"
7809 description: lastTransitionTime is the last time the condition
7810 transitioned from one status to another. This should be when
7811 the underlying condition changed. If that is not known, then
7812 using the time when the API field changed is acceptable.
7816 description: message is a human readable message indicating
7817 details about the transition. This may be an empty string.
7821 description: observedGeneration represents the .metadata.generation
7822 that the condition was set based upon. For instance, if .metadata.generation
7823 is currently 12, but the .status.conditions[x].observedGeneration
7824 is 9, the condition is out of date with respect to the current
7825 state of the instance.
7830 description: reason contains a programmatic identifier indicating
7831 the reason for the condition's last transition. Producers
7832 of specific condition types may define expected values and
7833 meanings for this field, and whether the values are considered
7834 a guaranteed API. The value should be a CamelCase string.
7835 This field may not be empty.
7838 pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
7841 description: status of the condition, one of True, False, Unknown.
7848 description: type of condition in CamelCase or in foo.example.com/CamelCase.
7849 --- Many .condition.type values are consistent across resources
7850 like Available, but because arbitrary conditions can be useful
7851 (see .node.status.conditions), the ability to deconflict is
7852 important. The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
7854 pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
7857 - lastTransitionTime
7864 lastHandledReconcileAt:
7865 description: LastHandledReconcileAt holds the value of the most recent
7866 reconcile request value, so a change of the annotation value can
7870 description: ObservedGeneration is the last observed generation of
7871 the Receiver object.
7875 description: 'URL is the generated incoming webhook address in the
7876 format of ''/hook/sha256sum(token+name+namespace)''. Deprecated:
7877 Replaced by WebhookPath.'
7880 description: WebhookPath is the generated incoming webhook address
7881 in the format of '/hook/sha256sum(token+name+namespace)'.
7891 kind: ServiceAccount
7894 app.kubernetes.io/component: notification-controller
7895 app.kubernetes.io/instance: flux-system
7896 app.kubernetes.io/part-of: flux
7897 app.kubernetes.io/version: v2.1.2
7898 name: notification-controller
7899 namespace: flux-system
7905 app.kubernetes.io/component: notification-controller
7906 app.kubernetes.io/instance: flux-system
7907 app.kubernetes.io/part-of: flux
7908 app.kubernetes.io/version: v2.1.2
7909 control-plane: controller
7910 name: notification-controller
7911 namespace: flux-system
7919 app: notification-controller
7926 app.kubernetes.io/component: notification-controller
7927 app.kubernetes.io/instance: flux-system
7928 app.kubernetes.io/part-of: flux
7929 app.kubernetes.io/version: v2.1.2
7930 control-plane: controller
7931 name: webhook-receiver
7932 namespace: flux-system
7938 targetPort: http-webhook
7940 app: notification-controller
7947 app.kubernetes.io/component: notification-controller
7948 app.kubernetes.io/instance: flux-system
7949 app.kubernetes.io/part-of: flux
7950 app.kubernetes.io/version: v2.1.2
7951 control-plane: controller
7952 name: notification-controller
7953 namespace: flux-system
7958 app: notification-controller
7962 prometheus.io/port: "8080"
7963 prometheus.io/scrape: "true"
7965 app: notification-controller
7969 - --watch-all-namespaces=true
7971 - --log-encoding=json
7972 - --enable-leader-election
7974 - name: RUNTIME_NAMESPACE
7977 fieldPath: metadata.namespace
7978 image: ghcr.io/fluxcd/notification-controller:v1.1.0
7979 imagePullPolicy: IfNotPresent
7986 - containerPort: 9090
7989 - containerPort: 9292
7992 - containerPort: 8080
7995 - containerPort: 9440
8010 allowPrivilegeEscalation: false
8014 readOnlyRootFilesystem: true
8017 type: RuntimeDefault
8022 kubernetes.io/os: linux
8025 serviceAccountName: notification-controller
8026 terminationGracePeriodSeconds: 10
projects / osm / devops.git / blob