kcr_couchbase_com 3.20260601.153757

Kubernetes Custom Resource Bindings
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364

// WARNING: generated by kopium - manual changes will be overwritten
// kopium command: kopium --docs --derive=Default --derive=PartialEq --smart-derive-elision --filename crd-catalog/couchbase-partners/helm-charts/couchbase.com/v2/couchbasegroups.yaml
// kopium version: 0.23.0

#[allow(unused_imports)]
mod prelude {
    pub use kube::CustomResource;
    pub use serde::{Serialize, Deserialize};
    pub use std::collections::BTreeMap;
}

use self::prelude::*;

/// CouchbaseGroupSpec allows the specification of Couchbase group configuration.
#[derive(CustomResource, Serialize, Deserialize, Clone, Debug, Default, PartialEq)]
#[kube(group = "couchbase.com", version = "v2", kind = "CouchbaseGroup", plural = "couchbasegroups")]
#[kube(namespaced)]
#[kube(schema = "disabled")]
#[kube(derive="Default")]
#[kube(derive="PartialEq")]
pub struct CouchbaseGroupSpec {
    /// LDAPGroupRef is a reference to an LDAP group.
    #[serde(default, skip_serializing_if = "Option::is_none", rename = "ldapGroupRef")]
    pub ldap_group_ref: Option<String>,
    /// Roles is a list of roles that this group is granted.
    pub roles: Vec<CouchbaseGroupRoles>,
}

#[derive(Serialize, Deserialize, Clone, Debug, PartialEq)]
pub struct CouchbaseGroupRoles {
    /// Bucket name for bucket admin roles.  When not specified for a role that can be scoped
    /// to a specific bucket, the role will apply to all buckets in the cluster.
    /// Deprecated:  Couchbase Autonomous Operator 2.3
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub bucket: Option<String>,
    /// Bucket level access to apply to specified role. The bucket must exist.  When not specified,
    /// the bucket field will be checked. If both are empty and the role can be scoped to a specific bucket, the role
    /// will apply to all buckets in the cluster
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub buckets: Option<CouchbaseGroupRolesBuckets>,
    /// Collection level access to apply to the specified role.  The collection must exist.
    /// When not specified, the role is subject to scope or bucket level access.
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub collections: Option<CouchbaseGroupRolesCollections>,
    /// Name of role.
    pub name: CouchbaseGroupRolesName,
    /// Scope level access to apply to specified role.  The scope must exist.  When not specified,
    /// the role will apply to selected bucket or all buckets in the cluster.
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub scopes: Option<CouchbaseGroupRolesScopes>,
}

/// Bucket level access to apply to specified role. The bucket must exist.  When not specified,
/// the bucket field will be checked. If both are empty and the role can be scoped to a specific bucket, the role
/// will apply to all buckets in the cluster
#[derive(Serialize, Deserialize, Clone, Debug, Default, PartialEq)]
pub struct CouchbaseGroupRolesBuckets {
    /// Resources is an explicit list of named bucket resources that will be considered
    /// for inclusion in this role.  If a resource reference doesn't
    /// match a resource, then no error conditions are raised due to undefined
    /// resource creation ordering and eventual consistency.
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub resources: Option<Vec<CouchbaseGroupRolesBucketsResources>>,
    /// Selector allows resources to be implicitly considered for inclusion in this
    /// role.  More info:
    /// <https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.28/#labelselector-v1-meta>
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub selector: Option<CouchbaseGroupRolesBucketsSelector>,
}

#[derive(Serialize, Deserialize, Clone, Debug, Default, PartialEq)]
pub struct CouchbaseGroupRolesBucketsResources {
    /// Kind indicates the kind of resource that is being referenced.  A Role
    /// can only reference `CouchbaseBucket` kind.  This field defaults
    /// to `CouchbaseBucket` if not specified.
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub kind: Option<CouchbaseGroupRolesBucketsResourcesKind>,
    /// Name is the name of the Kubernetes resource name that is being referenced.
    pub name: String,
}

#[derive(Serialize, Deserialize, Clone, Debug, PartialEq)]
pub enum CouchbaseGroupRolesBucketsResourcesKind {
    CouchbaseBucket,
}

/// Selector allows resources to be implicitly considered for inclusion in this
/// role.  More info:
/// <https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.28/#labelselector-v1-meta>
#[derive(Serialize, Deserialize, Clone, Debug, Default, PartialEq)]
pub struct CouchbaseGroupRolesBucketsSelector {
    /// matchExpressions is a list of label selector requirements. The requirements are ANDed.
    #[serde(default, skip_serializing_if = "Option::is_none", rename = "matchExpressions")]
    pub match_expressions: Option<Vec<CouchbaseGroupRolesBucketsSelectorMatchExpressions>>,
    /// matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
    /// map is equivalent to an element of matchExpressions, whose key field is "key", the
    /// operator is "In", and the values array contains only "value". The requirements are ANDed.
    #[serde(default, skip_serializing_if = "Option::is_none", rename = "matchLabels")]
    pub match_labels: Option<BTreeMap<String, String>>,
}

/// A label selector requirement is a selector that contains values, a key, and an operator that
/// relates the key and values.
#[derive(Serialize, Deserialize, Clone, Debug, Default, PartialEq)]
pub struct CouchbaseGroupRolesBucketsSelectorMatchExpressions {
    /// key is the label key that the selector applies to.
    pub key: String,
    /// operator represents a key's relationship to a set of values.
    /// Valid operators are In, NotIn, Exists and DoesNotExist.
    pub operator: String,
    /// values is an array of string values. If the operator is In or NotIn,
    /// the values array must be non-empty. If the operator is Exists or DoesNotExist,
    /// the values array must be empty. This array is replaced during a strategic
    /// merge patch.
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub values: Option<Vec<String>>,
}

/// Collection level access to apply to the specified role.  The collection must exist.
/// When not specified, the role is subject to scope or bucket level access.
#[derive(Serialize, Deserialize, Clone, Debug, Default, PartialEq)]
pub struct CouchbaseGroupRolesCollections {
    /// Resources is an explicit list of named resources that will be considered
    /// for inclusion in this collection or collections.  If a resource reference doesn't
    /// match a resource, then no error conditions are raised due to undefined
    /// resource creation ordering and eventual consistency.
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub resources: Option<Vec<CouchbaseGroupRolesCollectionsResources>>,
    /// Selector allows resources to be implicitly considered for inclusion in this
    /// collection or collections.  More info:
    /// <https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.28/#labelselector-v1-meta>
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub selector: Option<CouchbaseGroupRolesCollectionsSelector>,
}

#[derive(Serialize, Deserialize, Clone, Debug, Default, PartialEq)]
pub struct CouchbaseGroupRolesCollectionsResources {
    /// Kind indicates the kind of resource that is being referenced.  A scope
    /// can only reference `CouchbaseCollection` and `CouchbaseCollectionGroup`
    /// resource kinds.  This field defaults to `CouchbaseCollection` if not
    /// specified.
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub kind: Option<CouchbaseGroupRolesCollectionsResourcesKind>,
    /// Name is the name of the Kubernetes resource name that is being referenced.
    /// Legal collection names have a maximum length of 251
    /// characters and may be composed of any character from "a-z", "A-Z", "0-9" and "_-%".
    pub name: String,
}

#[derive(Serialize, Deserialize, Clone, Debug, PartialEq)]
pub enum CouchbaseGroupRolesCollectionsResourcesKind {
    CouchbaseCollection,
    CouchbaseCollectionGroup,
}

/// Selector allows resources to be implicitly considered for inclusion in this
/// collection or collections.  More info:
/// <https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.28/#labelselector-v1-meta>
#[derive(Serialize, Deserialize, Clone, Debug, Default, PartialEq)]
pub struct CouchbaseGroupRolesCollectionsSelector {
    /// matchExpressions is a list of label selector requirements. The requirements are ANDed.
    #[serde(default, skip_serializing_if = "Option::is_none", rename = "matchExpressions")]
    pub match_expressions: Option<Vec<CouchbaseGroupRolesCollectionsSelectorMatchExpressions>>,
    /// matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
    /// map is equivalent to an element of matchExpressions, whose key field is "key", the
    /// operator is "In", and the values array contains only "value". The requirements are ANDed.
    #[serde(default, skip_serializing_if = "Option::is_none", rename = "matchLabels")]
    pub match_labels: Option<BTreeMap<String, String>>,
}

/// A label selector requirement is a selector that contains values, a key, and an operator that
/// relates the key and values.
#[derive(Serialize, Deserialize, Clone, Debug, Default, PartialEq)]
pub struct CouchbaseGroupRolesCollectionsSelectorMatchExpressions {
    /// key is the label key that the selector applies to.
    pub key: String,
    /// operator represents a key's relationship to a set of values.
    /// Valid operators are In, NotIn, Exists and DoesNotExist.
    pub operator: String,
    /// values is an array of string values. If the operator is In or NotIn,
    /// the values array must be non-empty. If the operator is Exists or DoesNotExist,
    /// the values array must be empty. This array is replaced during a strategic
    /// merge patch.
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub values: Option<Vec<String>>,
}

#[derive(Serialize, Deserialize, Clone, Debug, PartialEq)]
pub enum CouchbaseGroupRolesName {
    #[serde(rename = "admin")]
    Admin,
    #[serde(rename = "analytics_admin")]
    AnalyticsAdmin,
    #[serde(rename = "analytics_manager")]
    AnalyticsManager,
    #[serde(rename = "analytics_reader")]
    AnalyticsReader,
    #[serde(rename = "analytics_select")]
    AnalyticsSelect,
    #[serde(rename = "backup_admin")]
    BackupAdmin,
    #[serde(rename = "bucket_admin")]
    BucketAdmin,
    #[serde(rename = "bucket_full_access")]
    BucketFullAccess,
    #[serde(rename = "cluster_admin")]
    ClusterAdmin,
    #[serde(rename = "data_backup")]
    DataBackup,
    #[serde(rename = "data_dcp_reader")]
    DataDcpReader,
    #[serde(rename = "data_monitoring")]
    DataMonitoring,
    #[serde(rename = "data_reader")]
    DataReader,
    #[serde(rename = "data_writer")]
    DataWriter,
    #[serde(rename = "eventing_admin")]
    EventingAdmin,
    #[serde(rename = "external_stats_reader")]
    ExternalStatsReader,
    #[serde(rename = "fts_admin")]
    FtsAdmin,
    #[serde(rename = "fts_searcher")]
    FtsSearcher,
    #[serde(rename = "mobile_sync_gateway")]
    MobileSyncGateway,
    #[serde(rename = "sync_gateway_app")]
    SyncGatewayApp,
    #[serde(rename = "sync_gateway_app_ro")]
    SyncGatewayAppRo,
    #[serde(rename = "sync_gateway_configurator")]
    SyncGatewayConfigurator,
    #[serde(rename = "sync_gateway_dev_ops")]
    SyncGatewayDevOps,
    #[serde(rename = "sync_gateway_replicator")]
    SyncGatewayReplicator,
    #[serde(rename = "query_delete")]
    QueryDelete,
    #[serde(rename = "query_execute_external_functions")]
    QueryExecuteExternalFunctions,
    #[serde(rename = "query_execute_functions")]
    QueryExecuteFunctions,
    #[serde(rename = "query_execute_global_external_functions")]
    QueryExecuteGlobalExternalFunctions,
    #[serde(rename = "query_execute_global_functions")]
    QueryExecuteGlobalFunctions,
    #[serde(rename = "query_external_access")]
    QueryExternalAccess,
    #[serde(rename = "query_insert")]
    QueryInsert,
    #[serde(rename = "query_manage_external_functions")]
    QueryManageExternalFunctions,
    #[serde(rename = "query_manage_functions")]
    QueryManageFunctions,
    #[serde(rename = "query_manage_global_external_functions")]
    QueryManageGlobalExternalFunctions,
    #[serde(rename = "query_manage_global_functions")]
    QueryManageGlobalFunctions,
    #[serde(rename = "query_manage_index")]
    QueryManageIndex,
    #[serde(rename = "query_select")]
    QuerySelect,
    #[serde(rename = "query_system_catalog")]
    QuerySystemCatalog,
    #[serde(rename = "query_update")]
    QueryUpdate,
    #[serde(rename = "replication_admin")]
    ReplicationAdmin,
    #[serde(rename = "replication_target")]
    ReplicationTarget,
    #[serde(rename = "ro_admin")]
    RoAdmin,
    #[serde(rename = "scope_admin")]
    ScopeAdmin,
    #[serde(rename = "security_admin")]
    SecurityAdmin,
    #[serde(rename = "security_admin_external")]
    SecurityAdminExternal,
    #[serde(rename = "security_admin_local")]
    SecurityAdminLocal,
    #[serde(rename = "views_admin")]
    ViewsAdmin,
    #[serde(rename = "views_reader")]
    ViewsReader,
    #[serde(rename = "eventing_manage_functions")]
    EventingManageFunctions,
    #[serde(rename = "query_use_sequential_scans")]
    QueryUseSequentialScans,
    #[serde(rename = "query_use_sequences")]
    QueryUseSequences,
    #[serde(rename = "query_manage_sequences")]
    QueryManageSequences,
}

/// Scope level access to apply to specified role.  The scope must exist.  When not specified,
/// the role will apply to selected bucket or all buckets in the cluster.
#[derive(Serialize, Deserialize, Clone, Debug, Default, PartialEq)]
pub struct CouchbaseGroupRolesScopes {
    /// Resources is an explicit list of named resources that will be considered
    /// for inclusion in this scope or scopes.  If a resource reference doesn't
    /// match a resource, then no error conditions are raised due to undefined
    /// resource creation ordering and eventual consistency.
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub resources: Option<Vec<CouchbaseGroupRolesScopesResources>>,
    /// Selector allows resources to be implicitly considered for inclusion in this
    /// scope or scopes.  More info:
    /// <https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.28/#labelselector-v1-meta>
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub selector: Option<CouchbaseGroupRolesScopesSelector>,
}

#[derive(Serialize, Deserialize, Clone, Debug, Default, PartialEq)]
pub struct CouchbaseGroupRolesScopesResources {
    /// Kind indicates the kind of resource that is being referenced.  A scope
    /// can only reference `CouchbaseScope` and `CouchbaseScopeGroup`
    /// resource kinds.  This field defaults to `CouchbaseScope` if not
    /// specified.
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub kind: Option<CouchbaseGroupRolesScopesResourcesKind>,
    /// Name is the name of the Kubernetes resource name that is being referenced.
    /// Legal scope names have a maximum length of 251
    /// characters and may be composed of any character from "a-z", "A-Z", "0-9" and "_-%".
    pub name: String,
}

#[derive(Serialize, Deserialize, Clone, Debug, PartialEq)]
pub enum CouchbaseGroupRolesScopesResourcesKind {
    CouchbaseScope,
    CouchbaseScopeGroup,
}

/// Selector allows resources to be implicitly considered for inclusion in this
/// scope or scopes.  More info:
/// <https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.28/#labelselector-v1-meta>
#[derive(Serialize, Deserialize, Clone, Debug, Default, PartialEq)]
pub struct CouchbaseGroupRolesScopesSelector {
    /// matchExpressions is a list of label selector requirements. The requirements are ANDed.
    #[serde(default, skip_serializing_if = "Option::is_none", rename = "matchExpressions")]
    pub match_expressions: Option<Vec<CouchbaseGroupRolesScopesSelectorMatchExpressions>>,
    /// matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels
    /// map is equivalent to an element of matchExpressions, whose key field is "key", the
    /// operator is "In", and the values array contains only "value". The requirements are ANDed.
    #[serde(default, skip_serializing_if = "Option::is_none", rename = "matchLabels")]
    pub match_labels: Option<BTreeMap<String, String>>,
}

/// A label selector requirement is a selector that contains values, a key, and an operator that
/// relates the key and values.
#[derive(Serialize, Deserialize, Clone, Debug, Default, PartialEq)]
pub struct CouchbaseGroupRolesScopesSelectorMatchExpressions {
    /// key is the label key that the selector applies to.
    pub key: String,
    /// operator represents a key's relationship to a set of values.
    /// Valid operators are In, NotIn, Exists and DoesNotExist.
    pub operator: String,
    /// values is an array of string values. If the operator is In or NotIn,
    /// the values array must be non-empty. If the operator is Exists or DoesNotExist,
    /// the values array must be empty. This array is replaced during a strategic
    /// merge patch.
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub values: Option<Vec<String>>,
}