diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_circuitbreakers.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_circuitbreakers.yaml index bf8146db37..cfe3125380 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_circuitbreakers.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_circuitbreakers.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: circuitbreakers.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_containerpatches.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_containerpatches.yaml index fe22cd4f97..0a948367fc 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_containerpatches.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_containerpatches.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: containerpatches.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_dataplaneinsights.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_dataplaneinsights.yaml index c0996a65ec..8c668c5195 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_dataplaneinsights.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_dataplaneinsights.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: dataplaneinsights.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_dataplanes.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_dataplanes.yaml index 0f8b57d30c..00668f1b9c 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_dataplanes.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_dataplanes.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: dataplanes.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_externalservices.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_externalservices.yaml index 7c1f4221f1..3712a11e09 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_externalservices.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_externalservices.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: externalservices.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_faultinjections.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_faultinjections.yaml index 7a96b2ebf4..89ccfc66ae 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_faultinjections.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_faultinjections.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: faultinjections.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_healthchecks.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_healthchecks.yaml index b7be5248c7..019475e133 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_healthchecks.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_healthchecks.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: healthchecks.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_hostnamegenerators.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_hostnamegenerators.yaml index 8725429a16..5275aa207a 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_hostnamegenerators.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_hostnamegenerators.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: hostnamegenerators.kuma.io spec: group: kuma.io @@ -21,6 +21,11 @@ spec: - name: v1alpha1 schema: openAPIV3Schema: + description: HostnameGenerator automatically generates DNS hostnames for services + in the mesh based on customizable templates. It provides a consistent naming + scheme for service discovery by creating predictable hostnames from service + labels and metadata, supporting both MeshService, MeshExternalService, and + MeshMultiZoneService resources. properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshaccesslogs.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshaccesslogs.yaml index 064dd877f1..5ee8931a2a 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshaccesslogs.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshaccesslogs.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshaccesslogs.kuma.io spec: group: kuma.io @@ -28,6 +28,10 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: MeshAccessLog configures access logging for traffic between services + in the mesh. It allows you to capture and export request/response logs to + various backends (file, TCP, or OpenTelemetry) for monitoring, debugging, + and auditing purposes. properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshcircuitbreakers.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshcircuitbreakers.yaml index 951f3c9a5f..e9361babde 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshcircuitbreakers.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshcircuitbreakers.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshcircuitbreakers.kuma.io spec: group: kuma.io @@ -28,6 +28,10 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: MeshCircuitBreaker protects services from cascading failures + by limiting connections and detecting unhealthy instances. It provides connection + limits to prevent overload and outlier detection to temporarily remove failing + endpoints from the load balancing pool. properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshes.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshes.yaml index 87352b45aa..0ede5ef319 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshes.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshes.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshes.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshexternalservices.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshexternalservices.yaml index 444ed32ae0..5ed4f02c61 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshexternalservices.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshexternalservices.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshexternalservices.kuma.io spec: group: kuma.io @@ -25,6 +25,11 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: MeshExternalService represents external services (outside the + mesh) that mesh services can communicate with securely. It enables mesh + services to reach external APIs, databases, or third-party services by defining + endpoints, ports, protocols, and optional TLS configuration for secure outbound + connections with hostname-based routing support. properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshfaultinjections.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshfaultinjections.yaml index a1e16efd0e..8a85407b44 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshfaultinjections.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshfaultinjections.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshfaultinjections.kuma.io spec: group: kuma.io @@ -28,6 +28,10 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: MeshFaultInjection allows you to test the resiliency of your + services by injecting faults like delays, connection aborts, and response + bandwidth limits into the traffic. This is useful for chaos testing and + validating that your applications handle failures gracefully. properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshgatewayconfigs.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshgatewayconfigs.yaml index 951aa155b8..261dff220d 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshgatewayconfigs.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshgatewayconfigs.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshgatewayconfigs.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshgatewayinstances.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshgatewayinstances.yaml index 9f40682347..d02966fa48 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshgatewayinstances.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshgatewayinstances.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshgatewayinstances.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshgatewayroutes.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshgatewayroutes.yaml index 9aeabf806e..5561772eac 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshgatewayroutes.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshgatewayroutes.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshgatewayroutes.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshgateways.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshgateways.yaml index 73c847596b..032e35a779 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshgateways.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshgateways.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshgateways.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshglobalratelimits.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshglobalratelimits.yaml index d9b5806545..1d3c27d5f6 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshglobalratelimits.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshglobalratelimits.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshglobalratelimits.kuma.io spec: group: kuma.io @@ -28,6 +28,7 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: MeshGlobalRateLimit properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshhealthchecks.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshhealthchecks.yaml index e8238d08b4..d042b4a385 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshhealthchecks.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshhealthchecks.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshhealthchecks.kuma.io spec: group: kuma.io @@ -28,6 +28,10 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: MeshHealthCheck enables active health checking of services in + the mesh. It periodically probes service endpoints using TCP, HTTP, or gRPC + health checks to detect and remove unhealthy instances from the load balancing + pool, improving overall service reliability. properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshhttproutes.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshhttproutes.yaml index 33726d9985..af12534af9 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshhttproutes.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshhttproutes.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshhttproutes.kuma.io spec: group: kuma.io @@ -28,6 +28,12 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: |- + NOTICE: This policy defines its own `GetDefault` method so that it can have the given + structure for deserialization but still use the generic policy merging + machinery. + // + MeshHTTPRoute configures how HTTP requests are routed between services in the mesh. It enables advanced traffic management including path-based routing, header matching, request/response modification, redirects, URL rewrites, traffic mirroring, and weighted load balancing across service endpoints. properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshidentities.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshidentities.yaml index fc93f2c339..5c758c9b13 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshidentities.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshidentities.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshidentities.kuma.io spec: group: kuma.io @@ -21,6 +21,11 @@ spec: - name: v1alpha1 schema: openAPIV3Schema: + description: MeshIdentity manages service identity and certificate provisioning + for workloads in the mesh. It configures how services obtain their identity + certificates, supporting multiple providers including bundled certificates + (self-signed or user-provided CA), SPIRE integration, and custom SPIFFE + ID configuration for secure service-to-service authentication. properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshinsights.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshinsights.yaml index 6d67334057..7af76453ee 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshinsights.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshinsights.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshinsights.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshloadbalancingstrategies.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshloadbalancingstrategies.yaml index 5c210e435e..127590bba9 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshloadbalancingstrategies.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshloadbalancingstrategies.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshloadbalancingstrategies.kuma.io spec: group: kuma.io @@ -28,6 +28,11 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: MeshLoadBalancingStrategy configures how traffic is distributed + across service instances. It supports multiple load balancing algorithms + (round-robin, least request, ring hash, random, maglev), locality-aware + routing to prefer nearby instances, and cross-zone failover strategies for + high availability. properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshmetrics.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshmetrics.yaml index 96634aaf06..4104377878 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshmetrics.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshmetrics.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshmetrics.kuma.io spec: group: kuma.io @@ -28,6 +28,10 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: MeshMetric enables collection and export of service mesh metrics. + It configures sidecar and application metrics scraping, allows customization + of which metrics are published, and supports exporting to Prometheus or + OpenTelemetry backends for monitoring and observability. properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshmultizoneservices.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshmultizoneservices.yaml index e49f151ced..2a247bf6e2 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshmultizoneservices.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshmultizoneservices.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshmultizoneservices.kuma.io spec: group: kuma.io @@ -25,6 +25,9 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: |- + MeshMultiZoneService provides global load balancing and service discovery across multiple zones in a multi-zone mesh deployment. It aggregates MeshServices from different zones by label selectors, creating a unified service endpoint with automatic VIP assignment and hostname generation for cross-zone communication and failover. + MeshMultizoneServices are only created on global properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshopas.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshopas.yaml index af8c560e3f..b8ca837ff4 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshopas.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshopas.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshopas.kuma.io spec: group: kuma.io @@ -28,6 +28,7 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: MeshOPA properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshpassthroughs.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshpassthroughs.yaml index 510923f81a..399fe09f5f 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshpassthroughs.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshpassthroughs.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshpassthroughs.kuma.io spec: group: kuma.io @@ -28,6 +28,10 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: MeshPassthrough controls how traffic to external services (outside + the mesh) is handled by the sidecar proxy. It allows you to configure passthrough + mode to permit, deny, or selectively allow traffic to specific external + destinations based on domain names, IPs, or CIDR ranges. properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshproxypatches.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshproxypatches.yaml index 1a224f99d2..162c8bc4ad 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshproxypatches.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshproxypatches.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshproxypatches.kuma.io spec: group: kuma.io @@ -28,6 +28,10 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: MeshProxyPatch provides advanced customization of the Envoy proxy + configuration generated by Kuma. It allows you to add, remove, or modify + Envoy resources (clusters, listeners, filters, virtual hosts) using YAML + patches or JSON patches for fine-grained control beyond standard policies. properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshratelimits.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshratelimits.yaml index d39c4dd32c..28dacd0948 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshratelimits.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshratelimits.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshratelimits.kuma.io spec: group: kuma.io @@ -28,6 +28,10 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: MeshRateLimit protects services from being overwhelmed by limiting + the rate of incoming requests or connections. It supports local rate limiting + for both HTTP (requests per interval) and TCP (connections per interval) + traffic with customizable response codes and headers for rate-limited requests. properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshretries.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshretries.yaml index 6a6c5ecb20..4c263f6958 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshretries.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshretries.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshretries.kuma.io spec: group: kuma.io @@ -28,6 +28,10 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: MeshRetry configures automatic retry behavior for failed requests + to improve service reliability. It supports configurable retry conditions, + limits, timeouts, and backoff strategies for HTTP, gRPC, and TCP traffic, + helping services recover from transient failures. properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshservices.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshservices.yaml index 79b56f627f..1b76f23ec5 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshservices.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshservices.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshservices.kuma.io spec: group: kuma.io @@ -25,6 +25,11 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: MeshService represents a service in the mesh with its connectivity + and health information. It defines service endpoints by selecting data plane + proxies through labels or direct references, configures service ports and + protocols, tracks service availability and health status, and provides automatic + VIP assignment and hostname generation for service discovery. properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshtcproutes.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshtcproutes.yaml index 66c1976c71..3c7721ecaf 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshtcproutes.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshtcproutes.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshtcproutes.kuma.io spec: group: kuma.io @@ -28,6 +28,12 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: |- + NOTICE: This policy defines its own `GetDefault` method so that it can have the given + structure for deserialization but still use the generic policy merging + machinery. + // + MeshTCPRoute configures routing for TCP traffic between services in the mesh. It enables traffic splitting and weighted load balancing across different backend endpoints, useful for canary deployments, blue-green deployments, and gradual traffic migration for TCP-based services. properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshtimeouts.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshtimeouts.yaml index efdcda3f50..ef528a433d 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshtimeouts.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshtimeouts.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshtimeouts.kuma.io spec: group: kuma.io @@ -28,6 +28,11 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: MeshTimeout configures timeout limits for service-to-service + communication to prevent requests from hanging indefinitely. It supports + connection timeouts, idle timeouts, and HTTP-specific timeouts (request, + stream, headers) to ensure timely failure detection and improve service + responsiveness. properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshtlses.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshtlses.yaml index cee58e3a88..c349053372 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshtlses.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshtlses.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshtlses.kuma.io spec: group: kuma.io @@ -28,6 +28,10 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: MeshTLS configures TLS and mutual TLS (mTLS) settings for secure + communication between services in the mesh. It allows you to enforce encryption, + configure TLS versions and cipher suites, and control whether mTLS is required + (strict mode) or optional (permissive mode) for inbound traffic. properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshtraces.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshtraces.yaml index 61295324bc..df9f168b12 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshtraces.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshtraces.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshtraces.kuma.io spec: group: kuma.io @@ -28,6 +28,11 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: MeshTrace enables distributed tracing to track requests as they + flow through multiple services in the mesh. It supports exporting trace + data to backends like Zipkin, Datadog, and OpenTelemetry, with configurable + sampling rates and custom tags for detailed observability and debugging + of service interactions. properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshtrafficpermissions.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshtrafficpermissions.yaml index f14eeef07d..16b0a308dc 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshtrafficpermissions.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshtrafficpermissions.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshtrafficpermissions.kuma.io spec: group: kuma.io @@ -28,6 +28,11 @@ spec: name: v1alpha1 schema: openAPIV3Schema: + description: MeshTrafficPermission controls which services are allowed to + communicate with each other in the mesh. It provides fine-grained access + control by allowing you to define allow/deny rules based on service identity, + enabling zero-trust security and supporting shadow mode for testing permission + changes before enforcement. properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_meshtrusts.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_meshtrusts.yaml index 216b46da7f..eb551eb17c 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_meshtrusts.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_meshtrusts.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: meshtrusts.kuma.io spec: group: kuma.io @@ -21,6 +21,11 @@ spec: - name: v1alpha1 schema: openAPIV3Schema: + description: MeshTrust defines trusted Certificate Authority (CA) bundles + for a trust domain in the mesh. It establishes trust relationships for service-to-service + mTLS authentication by specifying which CA certificates are trusted to verify + service identities, supporting PEM-encoded CA bundles and enabling secure + cross-service communication within the trust domain. properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_proxytemplates.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_proxytemplates.yaml index 2c37430585..07c2b09e2b 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_proxytemplates.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_proxytemplates.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: proxytemplates.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_ratelimits.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_ratelimits.yaml index 2b165493da..0a66a3a756 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_ratelimits.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_ratelimits.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: ratelimits.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_retries.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_retries.yaml index 486c612cb8..9ae1f9f2d6 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_retries.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_retries.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: retries.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_serviceinsights.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_serviceinsights.yaml index a2099358ce..363f71bd6e 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_serviceinsights.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_serviceinsights.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: serviceinsights.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_timeouts.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_timeouts.yaml index f7066816f1..03a9df03dc 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_timeouts.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_timeouts.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: timeouts.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_trafficlogs.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_trafficlogs.yaml index 6e4d0df114..051eda7f5b 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_trafficlogs.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_trafficlogs.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: trafficlogs.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_trafficpermissions.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_trafficpermissions.yaml index 2966f62ae6..a51cb28d72 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_trafficpermissions.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_trafficpermissions.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: trafficpermissions.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_trafficroutes.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_trafficroutes.yaml index 542027f182..5e0e0b7dfa 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_trafficroutes.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_trafficroutes.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: trafficroutes.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_traffictraces.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_traffictraces.yaml index ed89cfe25c..8d38d8cb9f 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_traffictraces.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_traffictraces.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: traffictraces.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_virtualoutbounds.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_virtualoutbounds.yaml index 631871b34f..3d0d168f89 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_virtualoutbounds.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_virtualoutbounds.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: virtualoutbounds.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_workloads.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_workloads.yaml index 16acc7f052..5e1f40f1f0 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_workloads.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_workloads.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: workloads.kuma.io spec: group: kuma.io @@ -21,6 +21,12 @@ spec: - name: v1alpha1 schema: openAPIV3Schema: + description: Workload represents a logical grouping of data plane proxies + in the mesh, providing visibility into their operational status. It tracks + statistics about the data plane proxies that belong to a workload, including + the number of connected, healthy, and total proxies, enabling monitoring + and health assessment of your workload deployments. Workloads is also the + primary way data-planes are grouped together in metrics and traces. properties: apiVersion: description: |- diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_zoneegresses.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_zoneegresses.yaml index 1261e0e1b3..5dccc7ee73 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_zoneegresses.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_zoneegresses.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: zoneegresses.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_zoneegressinsights.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_zoneegressinsights.yaml index 40ad515c10..82aad94722 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_zoneegressinsights.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_zoneegressinsights.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: zoneegressinsights.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_zoneingresses.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_zoneingresses.yaml index ea68ba6e05..345517f741 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_zoneingresses.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_zoneingresses.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: zoneingresses.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_zoneingressinsights.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_zoneingressinsights.yaml index 753cf263dd..b2bb88893f 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_zoneingressinsights.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_zoneingressinsights.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: zoneingressinsights.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_zoneinsights.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_zoneinsights.yaml index 2c513e18cd..dd3bb96508 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_zoneinsights.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_zoneinsights.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: zoneinsights.kuma.io spec: group: kuma.io diff --git a/app/assets/mesh/dev/raw/crds/kuma.io_zones.yaml b/app/assets/mesh/dev/raw/crds/kuma.io_zones.yaml index a5102a3d56..b3f3d8146b 100644 --- a/app/assets/mesh/dev/raw/crds/kuma.io_zones.yaml +++ b/app/assets/mesh/dev/raw/crds/kuma.io_zones.yaml @@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.19.0 + controller-gen.kubebuilder.io/version: v0.20.0 name: zones.kuma.io spec: group: kuma.io