Skip to content

Commit

Permalink
update: source github.com/jsonnet-libs/k8s@ee47b88d
Browse files Browse the repository at this point in the history
  • Loading branch information
@rmr @jsonnet-libs-bot
rmr authored and jsonnet-libs-bot committed Jun 7, 2024
1 parent 57f9d98 commit 9720a7a
Show file tree
Hide file tree
Showing 6 changed files with 183 additions and 3 deletions.
14 changes: 14 additions & 0 deletions 0.1.0/_gen/secrets/v1beta1/vaultAuth.libsonnet
View file
Original file line number Diff line number Diff line change
Expand Up @@ -123,6 +123,20 @@
'#withMount':: d.fn(help='"Mount path of the Transit engine in Vault."', args=[d.arg(name='mount', type=d.T.string)]),
withMount(mount): { spec+: { storageEncryption+: { mount: mount } } },
},
'#vaultAuthGlobalRef':: d.obj(help='"VaultAuthGlobalRef."'),
vaultAuthGlobalRef: {
'#mergeStrategy':: d.obj(help='"MergeStrategy configures the merge strategy for HTTP headers and parameters\\nthat are included in all Vault authentication requests."'),
mergeStrategy: {
'#withHeaders':: d.fn(help='"Headers configures the merge strategy for HTTP headers that are included in\\nall Vault requests. Choices are `union`, `replace`, or `none`.\\n\\n\\nIf `union` is set, the headers from the VaultAuthGlobal and VaultAuth\\nresources are merged. The headers from the VaultAuth always take precedence.\\n\\n\\nIf `replace` is set, the first set of non-empty headers taken in order from:\\nVaultAuth, VaultAuthGlobal auth method, VaultGlobal default headers.\\n\\n\\nIf `none` is set, the headers from the\\nVaultAuthGlobal resource are ignored and only the headers from the VaultAuth\\nresource are used. The default is `none`."', args=[d.arg(name='headers', type=d.T.string)]),
withHeaders(headers): { spec+: { vaultAuthGlobalRef+: { mergeStrategy+: { headers: headers } } } },
'#withParams':: d.fn(help='"Params configures the merge strategy for HTTP parameters that are included in\\nall Vault requests. Choices are `union`, `replace`, or `none`.\\n\\n\\nIf `union` is set, the parameters from the VaultAuthGlobal and VaultAuth\\nresources are merged. The parameters from the VaultAuth always take\\nprecedence.\\n\\n\\nIf `replace` is set, the first set of non-empty parameters taken in order from:\\nVaultAuth, VaultAuthGlobal auth method, VaultGlobal default parameters.\\n\\n\\nIf `none` is set, the parameters from the VaultAuthGlobal resource are ignored\\nand only the parameters from the VaultAuth resource are used. The default is\\n`none`."', args=[d.arg(name='params', type=d.T.string)]),
withParams(params): { spec+: { vaultAuthGlobalRef+: { mergeStrategy+: { params: params } } } },
},
'#withName':: d.fn(help='"Name of the VaultAuthGlobal resource."', args=[d.arg(name='name', type=d.T.string)]),
withName(name): { spec+: { vaultAuthGlobalRef+: { name: name } } },
'#withNamespace':: d.fn(help='"Namespace of the VaultAuthGlobal resource. If not provided, the namespace of\\nthe referring VaultAuth resource is used."', args=[d.arg(name='namespace', type=d.T.string)]),
withNamespace(namespace): { spec+: { vaultAuthGlobalRef+: { namespace: namespace } } },
},
'#withAllowedNamespaces':: d.fn(help="\"AllowedNamespaces Kubernetes Namespaces which are allow-listed for use with this AuthMethod.\\nThis field allows administrators to customize which Kubernetes namespaces are authorized to\\nuse with this AuthMethod. While Vault will still enforce its own rules, this has the added\\nconfigurability of restricting which VaultAuthMethods can be used by which namespaces.\\nAccepted values:\\n[]{\\\"*\\\"} - wildcard, all namespaces.\\n[]{\\\"a\\\", \\\"b\\\"} - list of namespaces.\\nunset - disallow all namespaces except the Operator's the VaultAuthMethod's namespace, this\\nis the default behavior.\"", args=[d.arg(name='allowedNamespaces', type=d.T.array)]),
withAllowedNamespaces(allowedNamespaces): { spec+: { allowedNamespaces: if std.isArray(v=allowedNamespaces) then allowedNamespaces else [allowedNamespaces] } },
'#withAllowedNamespacesMixin':: d.fn(help="\"AllowedNamespaces Kubernetes Namespaces which are allow-listed for use with this AuthMethod.\\nThis field allows administrators to customize which Kubernetes namespaces are authorized to\\nuse with this AuthMethod. While Vault will still enforce its own rules, this has the added\\nconfigurability of restricting which VaultAuthMethods can be used by which namespaces.\\nAccepted values:\\n[]{\\\"*\\\"} - wildcard, all namespaces.\\n[]{\\\"a\\\", \\\"b\\\"} - list of namespaces.\\nunset - disallow all namespaces except the Operator's the VaultAuthMethod's namespace, this\\nis the default behavior.\"\n\n**Note:** This function appends passed data to existing values", args=[d.arg(name='allowedNamespaces', type=d.T.array)]),
Expand Down
14 changes: 14 additions & 0 deletions 0.2.0/_gen/secrets/v1beta1/vaultAuth.libsonnet
View file
Original file line number Diff line number Diff line change
Expand Up @@ -123,6 +123,20 @@
'#withMount':: d.fn(help='"Mount path of the Transit engine in Vault."', args=[d.arg(name='mount', type=d.T.string)]),
withMount(mount): { spec+: { storageEncryption+: { mount: mount } } },
},
'#vaultAuthGlobalRef':: d.obj(help='"VaultAuthGlobalRef."'),
vaultAuthGlobalRef: {
'#mergeStrategy':: d.obj(help='"MergeStrategy configures the merge strategy for HTTP headers and parameters\\nthat are included in all Vault authentication requests."'),
mergeStrategy: {
'#withHeaders':: d.fn(help='"Headers configures the merge strategy for HTTP headers that are included in\\nall Vault requests. Choices are `union`, `replace`, or `none`.\\n\\n\\nIf `union` is set, the headers from the VaultAuthGlobal and VaultAuth\\nresources are merged. The headers from the VaultAuth always take precedence.\\n\\n\\nIf `replace` is set, the first set of non-empty headers taken in order from:\\nVaultAuth, VaultAuthGlobal auth method, VaultGlobal default headers.\\n\\n\\nIf `none` is set, the headers from the\\nVaultAuthGlobal resource are ignored and only the headers from the VaultAuth\\nresource are used. The default is `none`."', args=[d.arg(name='headers', type=d.T.string)]),
withHeaders(headers): { spec+: { vaultAuthGlobalRef+: { mergeStrategy+: { headers: headers } } } },
'#withParams':: d.fn(help='"Params configures the merge strategy for HTTP parameters that are included in\\nall Vault requests. Choices are `union`, `replace`, or `none`.\\n\\n\\nIf `union` is set, the parameters from the VaultAuthGlobal and VaultAuth\\nresources are merged. The parameters from the VaultAuth always take\\nprecedence.\\n\\n\\nIf `replace` is set, the first set of non-empty parameters taken in order from:\\nVaultAuth, VaultAuthGlobal auth method, VaultGlobal default parameters.\\n\\n\\nIf `none` is set, the parameters from the VaultAuthGlobal resource are ignored\\nand only the parameters from the VaultAuth resource are used. The default is\\n`none`."', args=[d.arg(name='params', type=d.T.string)]),
withParams(params): { spec+: { vaultAuthGlobalRef+: { mergeStrategy+: { params: params } } } },
},
'#withName':: d.fn(help='"Name of the VaultAuthGlobal resource."', args=[d.arg(name='name', type=d.T.string)]),
withName(name): { spec+: { vaultAuthGlobalRef+: { name: name } } },
'#withNamespace':: d.fn(help='"Namespace of the VaultAuthGlobal resource. If not provided, the namespace of\\nthe referring VaultAuth resource is used."', args=[d.arg(name='namespace', type=d.T.string)]),
withNamespace(namespace): { spec+: { vaultAuthGlobalRef+: { namespace: namespace } } },
},
'#withAllowedNamespaces':: d.fn(help="\"AllowedNamespaces Kubernetes Namespaces which are allow-listed for use with this AuthMethod.\\nThis field allows administrators to customize which Kubernetes namespaces are authorized to\\nuse with this AuthMethod. While Vault will still enforce its own rules, this has the added\\nconfigurability of restricting which VaultAuthMethods can be used by which namespaces.\\nAccepted values:\\n[]{\\\"*\\\"} - wildcard, all namespaces.\\n[]{\\\"a\\\", \\\"b\\\"} - list of namespaces.\\nunset - disallow all namespaces except the Operator's the VaultAuthMethod's namespace, this\\nis the default behavior.\"", args=[d.arg(name='allowedNamespaces', type=d.T.array)]),
withAllowedNamespaces(allowedNamespaces): { spec+: { allowedNamespaces: if std.isArray(v=allowedNamespaces) then allowedNamespaces else [allowedNamespaces] } },
'#withAllowedNamespacesMixin':: d.fn(help="\"AllowedNamespaces Kubernetes Namespaces which are allow-listed for use with this AuthMethod.\\nThis field allows administrators to customize which Kubernetes namespaces are authorized to\\nuse with this AuthMethod. While Vault will still enforce its own rules, this has the added\\nconfigurability of restricting which VaultAuthMethods can be used by which namespaces.\\nAccepted values:\\n[]{\\\"*\\\"} - wildcard, all namespaces.\\n[]{\\\"a\\\", \\\"b\\\"} - list of namespaces.\\nunset - disallow all namespaces except the Operator's the VaultAuthMethod's namespace, this\\nis the default behavior.\"\n\n**Note:** This function appends passed data to existing values", args=[d.arg(name='allowedNamespaces', type=d.T.array)]),
Expand Down
14 changes: 14 additions & 0 deletions 0.3.0/_gen/secrets/v1beta1/vaultAuth.libsonnet
View file
Original file line number Diff line number Diff line change
Expand Up @@ -123,6 +123,20 @@
'#withMount':: d.fn(help='"Mount path of the Transit engine in Vault."', args=[d.arg(name='mount', type=d.T.string)]),
withMount(mount): { spec+: { storageEncryption+: { mount: mount } } },
},
'#vaultAuthGlobalRef':: d.obj(help='"VaultAuthGlobalRef."'),
vaultAuthGlobalRef: {
'#mergeStrategy':: d.obj(help='"MergeStrategy configures the merge strategy for HTTP headers and parameters\\nthat are included in all Vault authentication requests."'),
mergeStrategy: {
'#withHeaders':: d.fn(help='"Headers configures the merge strategy for HTTP headers that are included in\\nall Vault requests. Choices are `union`, `replace`, or `none`.\\n\\n\\nIf `union` is set, the headers from the VaultAuthGlobal and VaultAuth\\nresources are merged. The headers from the VaultAuth always take precedence.\\n\\n\\nIf `replace` is set, the first set of non-empty headers taken in order from:\\nVaultAuth, VaultAuthGlobal auth method, VaultGlobal default headers.\\n\\n\\nIf `none` is set, the headers from the\\nVaultAuthGlobal resource are ignored and only the headers from the VaultAuth\\nresource are used. The default is `none`."', args=[d.arg(name='headers', type=d.T.string)]),
withHeaders(headers): { spec+: { vaultAuthGlobalRef+: { mergeStrategy+: { headers: headers } } } },
'#withParams':: d.fn(help='"Params configures the merge strategy for HTTP parameters that are included in\\nall Vault requests. Choices are `union`, `replace`, or `none`.\\n\\n\\nIf `union` is set, the parameters from the VaultAuthGlobal and VaultAuth\\nresources are merged. The parameters from the VaultAuth always take\\nprecedence.\\n\\n\\nIf `replace` is set, the first set of non-empty parameters taken in order from:\\nVaultAuth, VaultAuthGlobal auth method, VaultGlobal default parameters.\\n\\n\\nIf `none` is set, the parameters from the VaultAuthGlobal resource are ignored\\nand only the parameters from the VaultAuth resource are used. The default is\\n`none`."', args=[d.arg(name='params', type=d.T.string)]),
withParams(params): { spec+: { vaultAuthGlobalRef+: { mergeStrategy+: { params: params } } } },
},
'#withName':: d.fn(help='"Name of the VaultAuthGlobal resource."', args=[d.arg(name='name', type=d.T.string)]),
withName(name): { spec+: { vaultAuthGlobalRef+: { name: name } } },
'#withNamespace':: d.fn(help='"Namespace of the VaultAuthGlobal resource. If not provided, the namespace of\\nthe referring VaultAuth resource is used."', args=[d.arg(name='namespace', type=d.T.string)]),
withNamespace(namespace): { spec+: { vaultAuthGlobalRef+: { namespace: namespace } } },
},
'#withAllowedNamespaces':: d.fn(help="\"AllowedNamespaces Kubernetes Namespaces which are allow-listed for use with this AuthMethod.\\nThis field allows administrators to customize which Kubernetes namespaces are authorized to\\nuse with this AuthMethod. While Vault will still enforce its own rules, this has the added\\nconfigurability of restricting which VaultAuthMethods can be used by which namespaces.\\nAccepted values:\\n[]{\\\"*\\\"} - wildcard, all namespaces.\\n[]{\\\"a\\\", \\\"b\\\"} - list of namespaces.\\nunset - disallow all namespaces except the Operator's the VaultAuthMethod's namespace, this\\nis the default behavior.\"", args=[d.arg(name='allowedNamespaces', type=d.T.array)]),
withAllowedNamespaces(allowedNamespaces): { spec+: { allowedNamespaces: if std.isArray(v=allowedNamespaces) then allowedNamespaces else [allowedNamespaces] } },
'#withAllowedNamespacesMixin':: d.fn(help="\"AllowedNamespaces Kubernetes Namespaces which are allow-listed for use with this AuthMethod.\\nThis field allows administrators to customize which Kubernetes namespaces are authorized to\\nuse with this AuthMethod. While Vault will still enforce its own rules, this has the added\\nconfigurability of restricting which VaultAuthMethods can be used by which namespaces.\\nAccepted values:\\n[]{\\\"*\\\"} - wildcard, all namespaces.\\n[]{\\\"a\\\", \\\"b\\\"} - list of namespaces.\\nunset - disallow all namespaces except the Operator's the VaultAuthMethod's namespace, this\\nis the default behavior.\"\n\n**Note:** This function appends passed data to existing values", args=[d.arg(name='allowedNamespaces', type=d.T.array)]),
Expand Down
48 changes: 47 additions & 1 deletion docs/0.1.0/secrets/v1beta1/vaultAuth.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -74,6 +74,12 @@ permalink: /0.1.0/secrets/v1beta1/vaultAuth/
* [`obj spec.storageEncryption`](#obj-specstorageencryption)
* [`fn withKeyName(keyName)`](#fn-specstorageencryptionwithkeyname)
* [`fn withMount(mount)`](#fn-specstorageencryptionwithmount)
* [`obj spec.vaultAuthGlobalRef`](#obj-specvaultauthglobalref)
* [`fn withName(name)`](#fn-specvaultauthglobalrefwithname)
* [`fn withNamespace(namespace)`](#fn-specvaultauthglobalrefwithnamespace)
* [`obj spec.vaultAuthGlobalRef.mergeStrategy`](#obj-specvaultauthglobalrefmergestrategy)
* [`fn withHeaders(headers)`](#fn-specvaultauthglobalrefmergestrategywithheaders)
* [`fn withParams(params)`](#fn-specvaultauthglobalrefmergestrategywithparams)

## Fields

Expand Down Expand Up @@ -589,4 +595,44 @@ withKeyName(keyName)
withMount(mount)
```

"Mount path of the Transit engine in Vault."
"Mount path of the Transit engine in Vault."

## obj spec.vaultAuthGlobalRef

"VaultAuthGlobalRef."

### fn spec.vaultAuthGlobalRef.withName

```ts
withName(name)
```

"Name of the VaultAuthGlobal resource."

### fn spec.vaultAuthGlobalRef.withNamespace

```ts
withNamespace(namespace)
```

"Namespace of the VaultAuthGlobal resource. If not provided, the namespace of\nthe referring VaultAuth resource is used."

## obj spec.vaultAuthGlobalRef.mergeStrategy

"MergeStrategy configures the merge strategy for HTTP headers and parameters\nthat are included in all Vault authentication requests."

### fn spec.vaultAuthGlobalRef.mergeStrategy.withHeaders

```ts
withHeaders(headers)
```

"Headers configures the merge strategy for HTTP headers that are included in\nall Vault requests. Choices are `union`, `replace`, or `none`.\n\n\nIf `union` is set, the headers from the VaultAuthGlobal and VaultAuth\nresources are merged. The headers from the VaultAuth always take precedence.\n\n\nIf `replace` is set, the first set of non-empty headers taken in order from:\nVaultAuth, VaultAuthGlobal auth method, VaultGlobal default headers.\n\n\nIf `none` is set, the headers from the\nVaultAuthGlobal resource are ignored and only the headers from the VaultAuth\nresource are used. The default is `none`."

### fn spec.vaultAuthGlobalRef.mergeStrategy.withParams

```ts
withParams(params)
```

"Params configures the merge strategy for HTTP parameters that are included in\nall Vault requests. Choices are `union`, `replace`, or `none`.\n\n\nIf `union` is set, the parameters from the VaultAuthGlobal and VaultAuth\nresources are merged. The parameters from the VaultAuth always take\nprecedence.\n\n\nIf `replace` is set, the first set of non-empty parameters taken in order from:\nVaultAuth, VaultAuthGlobal auth method, VaultGlobal default parameters.\n\n\nIf `none` is set, the parameters from the VaultAuthGlobal resource are ignored\nand only the parameters from the VaultAuth resource are used. The default is\n`none`."
48 changes: 47 additions & 1 deletion docs/0.2.0/secrets/v1beta1/vaultAuth.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -74,6 +74,12 @@ permalink: /0.2.0/secrets/v1beta1/vaultAuth/
* [`obj spec.storageEncryption`](#obj-specstorageencryption)
* [`fn withKeyName(keyName)`](#fn-specstorageencryptionwithkeyname)
* [`fn withMount(mount)`](#fn-specstorageencryptionwithmount)
* [`obj spec.vaultAuthGlobalRef`](#obj-specvaultauthglobalref)
* [`fn withName(name)`](#fn-specvaultauthglobalrefwithname)
* [`fn withNamespace(namespace)`](#fn-specvaultauthglobalrefwithnamespace)
* [`obj spec.vaultAuthGlobalRef.mergeStrategy`](#obj-specvaultauthglobalrefmergestrategy)
* [`fn withHeaders(headers)`](#fn-specvaultauthglobalrefmergestrategywithheaders)
* [`fn withParams(params)`](#fn-specvaultauthglobalrefmergestrategywithparams)

## Fields

Expand Down Expand Up @@ -589,4 +595,44 @@ withKeyName(keyName)
withMount(mount)
```

"Mount path of the Transit engine in Vault."
"Mount path of the Transit engine in Vault."

## obj spec.vaultAuthGlobalRef

"VaultAuthGlobalRef."

### fn spec.vaultAuthGlobalRef.withName

```ts
withName(name)
```

"Name of the VaultAuthGlobal resource."

### fn spec.vaultAuthGlobalRef.withNamespace

```ts
withNamespace(namespace)
```

"Namespace of the VaultAuthGlobal resource. If not provided, the namespace of\nthe referring VaultAuth resource is used."

## obj spec.vaultAuthGlobalRef.mergeStrategy

"MergeStrategy configures the merge strategy for HTTP headers and parameters\nthat are included in all Vault authentication requests."

### fn spec.vaultAuthGlobalRef.mergeStrategy.withHeaders

```ts
withHeaders(headers)
```

"Headers configures the merge strategy for HTTP headers that are included in\nall Vault requests. Choices are `union`, `replace`, or `none`.\n\n\nIf `union` is set, the headers from the VaultAuthGlobal and VaultAuth\nresources are merged. The headers from the VaultAuth always take precedence.\n\n\nIf `replace` is set, the first set of non-empty headers taken in order from:\nVaultAuth, VaultAuthGlobal auth method, VaultGlobal default headers.\n\n\nIf `none` is set, the headers from the\nVaultAuthGlobal resource are ignored and only the headers from the VaultAuth\nresource are used. The default is `none`."

### fn spec.vaultAuthGlobalRef.mergeStrategy.withParams

```ts
withParams(params)
```

"Params configures the merge strategy for HTTP parameters that are included in\nall Vault requests. Choices are `union`, `replace`, or `none`.\n\n\nIf `union` is set, the parameters from the VaultAuthGlobal and VaultAuth\nresources are merged. The parameters from the VaultAuth always take\nprecedence.\n\n\nIf `replace` is set, the first set of non-empty parameters taken in order from:\nVaultAuth, VaultAuthGlobal auth method, VaultGlobal default parameters.\n\n\nIf `none` is set, the parameters from the VaultAuthGlobal resource are ignored\nand only the parameters from the VaultAuth resource are used. The default is\n`none`."
Loading

0 comments on commit 9720a7a

Please sign in to comment.