kcr_secrets_crossplane_io 3.20260113.133849

Kubernetes Custom Resource Bindings
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136

// WARNING: generated by kopium - manual changes will be overwritten
// kopium command: kopium --docs --derive=Default --derive=PartialEq --smart-derive-elision --filename crd-catalog/crossplane/crossplane/secrets.crossplane.io/v1alpha1/storeconfigs.yaml
// kopium version: 0.22.5

#[allow(unused_imports)]
mod prelude {
    pub use kube::CustomResource;
    pub use serde::{Serialize, Deserialize};
}
use self::prelude::*;

/// A StoreConfigSpec defines the desired state of a StoreConfig.
#[derive(CustomResource, Serialize, Deserialize, Clone, Debug, Default, PartialEq)]
#[kube(group = "secrets.crossplane.io", version = "v1alpha1", kind = "StoreConfig", plural = "storeconfigs")]
#[kube(schema = "disabled")]
#[kube(derive="Default")]
#[kube(derive="PartialEq")]
pub struct StoreConfigSpec {
    /// DefaultScope used for scoping secrets for "cluster-scoped" resources.
    /// If store type is "Kubernetes", this would mean the default namespace to
    /// store connection secrets for cluster scoped resources.
    /// In case of "Vault", this would be used as the default parent path.
    /// Typically, should be set as Crossplane installation namespace.
    #[serde(rename = "defaultScope")]
    pub default_scope: String,
    /// Kubernetes configures a Kubernetes secret store.
    /// If the "type" is "Kubernetes" but no config provided, in cluster config
    /// will be used.
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub kubernetes: Option<StoreConfigKubernetes>,
    /// Plugin configures External secret store as a plugin.
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub plugin: Option<StoreConfigPlugin>,
    /// Type configures which secret store to be used. Only the configuration
    /// block for this store will be used and others will be ignored if provided.
    /// Default is Kubernetes.
    #[serde(default, skip_serializing_if = "Option::is_none", rename = "type")]
    pub r#type: Option<StoreConfigType>,
}

/// Kubernetes configures a Kubernetes secret store.
/// If the "type" is "Kubernetes" but no config provided, in cluster config
/// will be used.
#[derive(Serialize, Deserialize, Clone, Debug, PartialEq)]
pub struct StoreConfigKubernetes {
    /// Credentials used to connect to the Kubernetes API.
    pub auth: StoreConfigKubernetesAuth,
}

/// Credentials used to connect to the Kubernetes API.
#[derive(Serialize, Deserialize, Clone, Debug, PartialEq)]
pub struct StoreConfigKubernetesAuth {
    /// Env is a reference to an environment variable that contains credentials
    /// that must be used to connect to the provider.
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub env: Option<StoreConfigKubernetesAuthEnv>,
    /// Fs is a reference to a filesystem location that contains credentials that
    /// must be used to connect to the provider.
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub fs: Option<StoreConfigKubernetesAuthFs>,
    /// A SecretRef is a reference to a secret key that contains the credentials
    /// that must be used to connect to the provider.
    #[serde(default, skip_serializing_if = "Option::is_none", rename = "secretRef")]
    pub secret_ref: Option<StoreConfigKubernetesAuthSecretRef>,
    /// Source of the credentials.
    pub source: StoreConfigKubernetesAuthSource,
}

/// Env is a reference to an environment variable that contains credentials
/// that must be used to connect to the provider.
#[derive(Serialize, Deserialize, Clone, Debug, Default, PartialEq)]
pub struct StoreConfigKubernetesAuthEnv {
    /// Name is the name of an environment variable.
    pub name: String,
}

/// Fs is a reference to a filesystem location that contains credentials that
/// must be used to connect to the provider.
#[derive(Serialize, Deserialize, Clone, Debug, Default, PartialEq)]
pub struct StoreConfigKubernetesAuthFs {
    /// Path is a filesystem path.
    pub path: String,
}

/// A SecretRef is a reference to a secret key that contains the credentials
/// that must be used to connect to the provider.
#[derive(Serialize, Deserialize, Clone, Debug, Default, PartialEq)]
pub struct StoreConfigKubernetesAuthSecretRef {
    /// The key to select.
    pub key: String,
    /// Name of the secret.
    pub name: String,
    /// Namespace of the secret.
    pub namespace: String,
}

/// Credentials used to connect to the Kubernetes API.
#[derive(Serialize, Deserialize, Clone, Debug, PartialEq)]
pub enum StoreConfigKubernetesAuthSource {
    None,
    Secret,
    Environment,
    Filesystem,
}

/// Plugin configures External secret store as a plugin.
#[derive(Serialize, Deserialize, Clone, Debug, Default, PartialEq)]
pub struct StoreConfigPlugin {
    /// ConfigRef contains store config reference info.
    #[serde(default, skip_serializing_if = "Option::is_none", rename = "configRef")]
    pub config_ref: Option<StoreConfigPluginConfigRef>,
    /// Endpoint is the endpoint of the gRPC server.
    #[serde(default, skip_serializing_if = "Option::is_none")]
    pub endpoint: Option<String>,
}

/// ConfigRef contains store config reference info.
#[derive(Serialize, Deserialize, Clone, Debug, Default, PartialEq)]
pub struct StoreConfigPluginConfigRef {
    /// APIVersion of the referenced config.
    #[serde(rename = "apiVersion")]
    pub api_version: String,
    /// Kind of the referenced config.
    pub kind: String,
    /// Name of the referenced config.
    pub name: String,
}

/// A StoreConfigSpec defines the desired state of a StoreConfig.
#[derive(Serialize, Deserialize, Clone, Debug, PartialEq)]
pub enum StoreConfigType {
    Kubernetes,
    Vault,
    Plugin,
}