-
Notifications
You must be signed in to change notification settings - Fork 5
Expand file tree
/
Copy pathpostgresql.easymile.com_postgresqluserroles.yaml
More file actions
187 lines (187 loc) · 6.85 KB
/
postgresql.easymile.com_postgresqluserroles.yaml
File metadata and controls
187 lines (187 loc) · 6.85 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
---
apiVersion: apiextensions.k8s.io/v1
kind: CustomResourceDefinition
metadata:
annotations:
controller-gen.kubebuilder.io/version: v0.14.0
name: postgresqluserroles.postgresql.easymile.com
spec:
group: postgresql.easymile.com
names:
kind: PostgresqlUserRole
listKind: PostgresqlUserRoleList
plural: postgresqluserroles
shortNames:
- pguserrole
- pgur
singular: postgresqluserrole
scope: Namespaced
versions:
- additionalPrinterColumns:
- description: User role
jsonPath: .status.postgresRole
name: User role
type: string
- description: Last time the password was changed
jsonPath: .status.lastPasswordChangedTime
name: Last Password Change
type: date
- description: Status phase
jsonPath: .status.phase
name: Phase
type: string
- jsonPath: .metadata.creationTimestamp
name: Age
type: date
name: v1alpha1
schema:
openAPIV3Schema:
description: PostgresqlUserRole is the Schema for the postgresqluserroles
API.
properties:
apiVersion:
description: |-
APIVersion defines the versioned schema of this representation of an object.
Servers should convert recognized schemas to the latest internal value, and
may reject unrecognized values.
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
type: string
kind:
description: |-
Kind is a string value representing the REST resource this object represents.
Servers may infer this from the endpoint the client submits requests to.
Cannot be updated.
In CamelCase.
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
type: string
metadata:
type: object
spec:
description: PostgresqlUserRoleSpec defines the desired state of PostgresqlUserRole.
properties:
importSecretName:
description: Import secret name
type: string
mode:
description: User mode
enum:
- PROVIDED
- MANAGED
type: string
privileges:
description: Privileges
items:
properties:
connectionType:
default: PRIMARY
description: |-
User Connection type.
This is referring to the user connection type needed for this user.
enum:
- PRIMARY
- BOUNCER
type: string
database:
description: Postgresql Database
properties:
name:
description: Custom resource name
type: string
namespace:
description: Custom resource namespace
type: string
required:
- name
type: object
extraConnectionUrlParameters:
additionalProperties:
type: string
description: Extra connection URL Parameters
type: object
generatedSecretName:
description: Generated secret name prefix
minLength: 1
type: string
privilege:
description: User privileges
enum:
- OWNER
- WRITER
- READER
type: string
required:
- database
- generatedSecretName
- privilege
type: object
type: array
roleAttributes:
description: |-
Role attributes
Note: Only attributes that aren't conflicting with operator are supported.
properties:
bypassRLS:
description: |-
BYPASSRLS attribute
Note: This can be either true, false or null (to ignore this parameter)
type: boolean
connectionLimit:
description: |-
CONNECTION LIMIT connlimit attribute
Note: This can be either -1, a number or null (to ignore this parameter)
Note: Increase your number by one because operator is using the created user to perform some operations.
type: integer
replication:
description: |-
REPLICATION attribute
Note: This can be either true, false or null (to ignore this parameter)
type: boolean
type: object
rolePrefix:
description: User role prefix
type: string
userPasswordRotationDuration:
description: User password rotation duration
type: string
workGeneratedSecretName:
description: Simple user password tuple generated secret name
type: string
required:
- privileges
type: object
status:
description: PostgresqlUserRoleStatus defines the observed state of PostgresqlUserRole.
properties:
lastPasswordChangedTime:
description: Last password changed time
type: string
message:
description: Human-readable message indicating details about current
operator phase or error.
type: string
oldPostgresRoles:
description: Postgres old roles to cleanup
items:
type: string
type: array
phase:
description: Current phase of the operator
type: string
postgresRole:
description: Postgres role for user
type: string
ready:
description: True if all resources are in a ready state and all work
is done.
type: boolean
roleName:
description: User role
type: string
required:
- phase
type: object
type: object
served: true
storage: true
subresources:
status: {}