-
Notifications
You must be signed in to change notification settings - Fork 596
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
chore(deps): update docs from repo source
Signed-off-by: kumahq[bot] <110050114+kumahq[bot]@users.noreply.github.com>
- Loading branch information
1 parent
5902479
commit 0c4531b
Showing
2 changed files
with
242 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,241 @@ | ||
| --- | ||
| apiVersion: apiextensions.k8s.io/v1 | ||
| kind: CustomResourceDefinition | ||
| metadata: | ||
| annotations: | ||
| controller-gen.kubebuilder.io/version: v0.16.1 | ||
| name: meshtlses.kuma.io | ||
| spec: | ||
| group: kuma.io | ||
| names: | ||
| categories: | ||
| - kuma | ||
| kind: MeshTLS | ||
| listKind: MeshTLSList | ||
| plural: meshtlses | ||
| singular: meshtls | ||
| scope: Namespaced | ||
| versions: | ||
| - additionalPrinterColumns: | ||
| - jsonPath: .spec.targetRef.kind | ||
| name: TargetRef Kind | ||
| type: string | ||
| - jsonPath: .spec.targetRef.name | ||
| name: TargetRef Name | ||
| type: string | ||
| name: v1alpha1 | ||
| schema: | ||
| openAPIV3Schema: | ||
| properties: | ||
| apiVersion: | ||
| description: |- | ||
| APIVersion defines the versioned schema of this representation of an object. | ||
| Servers should convert recognized schemas to the latest internal value, and | ||
| may reject unrecognized values. | ||
| More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources | ||
| type: string | ||
| kind: | ||
| description: |- | ||
| Kind is a string value representing the REST resource this object represents. | ||
| Servers may infer this from the endpoint the client submits requests to. | ||
| Cannot be updated. | ||
| In CamelCase. | ||
| More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds | ||
| type: string | ||
| metadata: | ||
| type: object | ||
| spec: | ||
| description: Spec is the specification of the Kuma MeshTLS resource. | ||
| properties: | ||
| from: | ||
| description: From list makes a match between clients and corresponding | ||
| configurations | ||
| items: | ||
| properties: | ||
| default: | ||
| description: |- | ||
| Default is a configuration specific to the group of clients referenced in | ||
| 'targetRef' | ||
| properties: | ||
| mode: | ||
| description: Mode defines the behavior of inbound listeners | ||
| with regard to traffic encryption. | ||
| enum: | ||
| - Permissive | ||
| - Strict | ||
| type: string | ||
| tlsCiphers: | ||
| description: TlsCiphers section for providing ciphers specification. | ||
| items: | ||
| enum: | ||
| - ECDHE-ECDSA-AES128-GCM-SHA256 | ||
| - ECDHE-ECDSA-AES256-GCM-SHA384 | ||
| - ECDHE-ECDSA-CHACHA20-POLY1305 | ||
| - ECDHE-RSA-AES128-GCM-SHA256 | ||
| - ECDHE-RSA-AES256-GCM-SHA384 | ||
| - ECDHE-RSA-CHACHA20-POLY1305 | ||
| type: string | ||
| type: array | ||
| tlsVersion: | ||
| description: Version section for providing version specification. | ||
| properties: | ||
| max: | ||
| default: TLSAuto | ||
| description: Max defines maximum supported version. | ||
| One of `TLSAuto`, `TLS10`, `TLS11`, `TLS12`, `TLS13`. | ||
| enum: | ||
| - TLSAuto | ||
| - TLS10 | ||
| - TLS11 | ||
| - TLS12 | ||
| - TLS13 | ||
| type: string | ||
| min: | ||
| default: TLSAuto | ||
| description: Min defines minimum supported version. | ||
| One of `TLSAuto`, `TLS10`, `TLS11`, `TLS12`, `TLS13`. | ||
| enum: | ||
| - TLSAuto | ||
| - TLS10 | ||
| - TLS11 | ||
| - TLS12 | ||
| - TLS13 | ||
| type: string | ||
| type: object | ||
| type: object | ||
| targetRef: | ||
| description: |- | ||
| TargetRef is a reference to the resource that represents a group of | ||
| clients. | ||
| properties: | ||
| kind: | ||
| description: Kind of the referenced resource | ||
| enum: | ||
| - Mesh | ||
| - MeshSubset | ||
| - MeshGateway | ||
| - MeshService | ||
| - MeshExternalService | ||
| - MeshMultiZoneService | ||
| - MeshServiceSubset | ||
| - MeshHTTPRoute | ||
| type: string | ||
| labels: | ||
| additionalProperties: | ||
| type: string | ||
| description: |- | ||
| Labels are used to select group of MeshServices that match labels. Either Labels or | ||
| Name and Namespace can be used. | ||
| type: object | ||
| mesh: | ||
| description: Mesh is reserved for future use to identify | ||
| cross mesh resources. | ||
| type: string | ||
| name: | ||
| description: |- | ||
| Name of the referenced resource. Can only be used with kinds: `MeshService`, | ||
| `MeshServiceSubset` and `MeshGatewayRoute` | ||
| type: string | ||
| namespace: | ||
| description: |- | ||
| Namespace specifies the namespace of target resource. If empty only resources in policy namespace | ||
| will be targeted. | ||
| type: string | ||
| proxyTypes: | ||
| description: |- | ||
| ProxyTypes specifies the data plane types that are subject to the policy. When not specified, | ||
| all data plane types are targeted by the policy. | ||
| items: | ||
| enum: | ||
| - Sidecar | ||
| - Gateway | ||
| type: string | ||
| minItems: 1 | ||
| type: array | ||
| sectionName: | ||
| description: |- | ||
| SectionName is used to target specific section of resource. | ||
| For example, you can target port from MeshService.ports[] by its name. Only traffic to this port will be affected. | ||
| type: string | ||
| tags: | ||
| additionalProperties: | ||
| type: string | ||
| description: |- | ||
| Tags used to select a subset of proxies by tags. Can only be used with kinds | ||
| `MeshSubset` and `MeshServiceSubset` | ||
| type: object | ||
| type: object | ||
| required: | ||
| - targetRef | ||
| type: object | ||
| type: array | ||
| targetRef: | ||
| description: |- | ||
| TargetRef is a reference to the resource the policy takes an effect on. | ||
| The resource could be either a real store object or virtual resource | ||
| defined in-place. | ||
| properties: | ||
| kind: | ||
| description: Kind of the referenced resource | ||
| enum: | ||
| - Mesh | ||
| - MeshSubset | ||
| - MeshGateway | ||
| - MeshService | ||
| - MeshExternalService | ||
| - MeshMultiZoneService | ||
| - MeshServiceSubset | ||
| - MeshHTTPRoute | ||
| type: string | ||
| labels: | ||
| additionalProperties: | ||
| type: string | ||
| description: |- | ||
| Labels are used to select group of MeshServices that match labels. Either Labels or | ||
| Name and Namespace can be used. | ||
| type: object | ||
| mesh: | ||
| description: Mesh is reserved for future use to identify cross | ||
| mesh resources. | ||
| type: string | ||
| name: | ||
| description: |- | ||
| Name of the referenced resource. Can only be used with kinds: `MeshService`, | ||
| `MeshServiceSubset` and `MeshGatewayRoute` | ||
| type: string | ||
| namespace: | ||
| description: |- | ||
| Namespace specifies the namespace of target resource. If empty only resources in policy namespace | ||
| will be targeted. | ||
| type: string | ||
| proxyTypes: | ||
| description: |- | ||
| ProxyTypes specifies the data plane types that are subject to the policy. When not specified, | ||
| all data plane types are targeted by the policy. | ||
| items: | ||
| enum: | ||
| - Sidecar | ||
| - Gateway | ||
| type: string | ||
| minItems: 1 | ||
| type: array | ||
| sectionName: | ||
| description: |- | ||
| SectionName is used to target specific section of resource. | ||
| For example, you can target port from MeshService.ports[] by its name. Only traffic to this port will be affected. | ||
| type: string | ||
| tags: | ||
| additionalProperties: | ||
| type: string | ||
| description: |- | ||
| Tags used to select a subset of proxies by tags. Can only be used with kinds | ||
| `MeshSubset` and `MeshServiceSubset` | ||
| type: object | ||
| type: object | ||
| required: | ||
| - targetRef | ||
| type: object | ||
| type: object | ||
| served: true | ||
| storage: true | ||
| subresources: {} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters