VaultConnection

secrets.hashicorp.com / v1beta1

apiVersion: secrets.hashicorp.com/v1beta1 kind: VaultConnection metadata: name: example

apiVersion string

APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources

kind string

Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds

metadata object

spec object

VaultConnectionSpec defines the desired state of VaultConnection

address string required

Address of the Vault server

caCertPath string

CACertPath is the path to a trusted PEM-encoded CA certificate file on the filesystem that can be used to validate the certificate presented by the Vault server. CACertPath and CACertSecretRef are mutually exclusive, and only one should be specified.

caCertSecretRef string

CACertSecretRef is the name of a Kubernetes secret containing the trusted PEM encoded CA certificate chain as `ca.crt`. CACertPath and CACertSecretRef are mutually exclusive, and only one should be specified.

headers object

Headers to be included in all Vault requests.

skipTLSVerify boolean required

SkipTLSVerify for TLS connections.

timeout string

Timeout applied to all Vault requests for this connection. If not set, the default timeout from the Vault API client config is used.

pattern: ^([0-9]+(\.[0-9]+)?(s|m|h))$

tlsServerName string

TLSServerName to use as the SNI host for TLS connections.

status object

VaultConnectionStatus defines the observed state of VaultConnection

conditions []object

Conditions hold information that can be used by other apps to determine the health of the resource instance.

lastTransitionTime string required

lastTransitionTime is the last time the condition transitioned from one status to another. This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable.

format: date-time

message string required

message is a human readable message indicating details about the transition. This may be an empty string.

maxLength: 32768

observedGeneration integer

observedGeneration represents the .metadata.generation that the condition was set based upon. For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date with respect to the current state of the instance.

format: int64

minimum: 0

reason string required

reason contains a programmatic identifier indicating the reason for the condition's last transition. Producers of specific condition types may define expected values and meanings for this field, and whether the values are considered a guaranteed API. The value should be a CamelCase string. This field may not be empty.

pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$

minLength: 1

maxLength: 1024

status string required

status of the condition, one of True, False, Unknown.

enum: True, False, Unknown

type string required

type of condition in CamelCase or in foo.example.com/CamelCase.

pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$

maxLength: 316

valid boolean required

Valid auth mechanism.

No matches. Try .spec.address for an exact path