update: source github.com/jsonnet-libs/k8s@ee47b88d

rmr · jsonnet-libs-bot · commit 9720a7adb2a3 · 2024-06-07T15:09:17.000Z
diff --git a/0.1.0/_gen/secrets/v1beta1/vaultAuth.libsonnet b/0.1.0/_gen/secrets/v1beta1/vaultAuth.libsonnet
@@ -123,6 +123,20 @@
       '#withMount':: d.fn(help='"Mount path of the Transit engine in Vault."', args=[d.arg(name='mount', type=d.T.string)]),
       withMount(mount): { spec+: { storageEncryption+: { mount: mount } } },
     },
+    '#vaultAuthGlobalRef':: d.obj(help='"VaultAuthGlobalRef."'),
+    vaultAuthGlobalRef: {
+      '#mergeStrategy':: d.obj(help='"MergeStrategy configures the merge strategy for HTTP headers and parameters\\nthat are included in all Vault authentication requests."'),
+      mergeStrategy: {
+        '#withHeaders':: d.fn(help='"Headers configures the merge strategy for HTTP headers that are included in\\nall Vault requests. Choices are `union`, `replace`, or `none`.\\n\\n\\nIf `union` is set, the headers from the VaultAuthGlobal and VaultAuth\\nresources are merged. The headers from the VaultAuth always take precedence.\\n\\n\\nIf `replace` is set, the first set of non-empty headers taken in order from:\\nVaultAuth, VaultAuthGlobal auth method, VaultGlobal default headers.\\n\\n\\nIf `none` is set, the headers from the\\nVaultAuthGlobal resource are ignored and only the headers from the VaultAuth\\nresource are used. The default is `none`."', args=[d.arg(name='headers', type=d.T.string)]),
+        withHeaders(headers): { spec+: { vaultAuthGlobalRef+: { mergeStrategy+: { headers: headers } } } },
+        '#withParams':: d.fn(help='"Params configures the merge strategy for HTTP parameters that are included in\\nall Vault requests. Choices are `union`, `replace`, or `none`.\\n\\n\\nIf `union` is set, the parameters from the VaultAuthGlobal and VaultAuth\\nresources are merged. The parameters from the VaultAuth always take\\nprecedence.\\n\\n\\nIf `replace` is set, the first set of non-empty parameters taken in order from:\\nVaultAuth, VaultAuthGlobal auth method, VaultGlobal default parameters.\\n\\n\\nIf `none` is set, the parameters from the VaultAuthGlobal resource are ignored\\nand only the parameters from the VaultAuth resource are used. The default is\\n`none`."', args=[d.arg(name='params', type=d.T.string)]),
+        withParams(params): { spec+: { vaultAuthGlobalRef+: { mergeStrategy+: { params: params } } } },
+      },
+      '#withName':: d.fn(help='"Name of the VaultAuthGlobal resource."', args=[d.arg(name='name', type=d.T.string)]),
+      withName(name): { spec+: { vaultAuthGlobalRef+: { name: name } } },
+      '#withNamespace':: d.fn(help='"Namespace of the VaultAuthGlobal resource. If not provided, the namespace of\\nthe referring VaultAuth resource is used."', args=[d.arg(name='namespace', type=d.T.string)]),
+      withNamespace(namespace): { spec+: { vaultAuthGlobalRef+: { namespace: namespace } } },
+    },
     '#withAllowedNamespaces':: d.fn(help="\"AllowedNamespaces Kubernetes Namespaces which are allow-listed for use with this AuthMethod.\\nThis field allows administrators to customize which Kubernetes namespaces are authorized to\\nuse with this AuthMethod. While Vault will still enforce its own rules, this has the added\\nconfigurability of restricting which VaultAuthMethods can be used by which namespaces.\\nAccepted values:\\n[]{\\\"*\\\"} - wildcard, all namespaces.\\n[]{\\\"a\\\", \\\"b\\\"} - list of namespaces.\\nunset - disallow all namespaces except the Operator's the VaultAuthMethod's namespace, this\\nis the default behavior.\"", args=[d.arg(name='allowedNamespaces', type=d.T.array)]),
     withAllowedNamespaces(allowedNamespaces): { spec+: { allowedNamespaces: if std.isArray(v=allowedNamespaces) then allowedNamespaces else [allowedNamespaces] } },
     '#withAllowedNamespacesMixin':: d.fn(help="\"AllowedNamespaces Kubernetes Namespaces which are allow-listed for use with this AuthMethod.\\nThis field allows administrators to customize which Kubernetes namespaces are authorized to\\nuse with this AuthMethod. While Vault will still enforce its own rules, this has the added\\nconfigurability of restricting which VaultAuthMethods can be used by which namespaces.\\nAccepted values:\\n[]{\\\"*\\\"} - wildcard, all namespaces.\\n[]{\\\"a\\\", \\\"b\\\"} - list of namespaces.\\nunset - disallow all namespaces except the Operator's the VaultAuthMethod's namespace, this\\nis the default behavior.\"\n\n**Note:** This function appends passed data to existing values", args=[d.arg(name='allowedNamespaces', type=d.T.array)]),
diff --git a/0.2.0/_gen/secrets/v1beta1/vaultAuth.libsonnet b/0.2.0/_gen/secrets/v1beta1/vaultAuth.libsonnet
@@ -123,6 +123,20 @@
       '#withMount':: d.fn(help='"Mount path of the Transit engine in Vault."', args=[d.arg(name='mount', type=d.T.string)]),
       withMount(mount): { spec+: { storageEncryption+: { mount: mount } } },
     },
+    '#vaultAuthGlobalRef':: d.obj(help='"VaultAuthGlobalRef."'),
+    vaultAuthGlobalRef: {
+      '#mergeStrategy':: d.obj(help='"MergeStrategy configures the merge strategy for HTTP headers and parameters\\nthat are included in all Vault authentication requests."'),
+      mergeStrategy: {
+        '#withHeaders':: d.fn(help='"Headers configures the merge strategy for HTTP headers that are included in\\nall Vault requests. Choices are `union`, `replace`, or `none`.\\n\\n\\nIf `union` is set, the headers from the VaultAuthGlobal and VaultAuth\\nresources are merged. The headers from the VaultAuth always take precedence.\\n\\n\\nIf `replace` is set, the first set of non-empty headers taken in order from:\\nVaultAuth, VaultAuthGlobal auth method, VaultGlobal default headers.\\n\\n\\nIf `none` is set, the headers from the\\nVaultAuthGlobal resource are ignored and only the headers from the VaultAuth\\nresource are used. The default is `none`."', args=[d.arg(name='headers', type=d.T.string)]),
+        withHeaders(headers): { spec+: { vaultAuthGlobalRef+: { mergeStrategy+: { headers: headers } } } },
+        '#withParams':: d.fn(help='"Params configures the merge strategy for HTTP parameters that are included in\\nall Vault requests. Choices are `union`, `replace`, or `none`.\\n\\n\\nIf `union` is set, the parameters from the VaultAuthGlobal and VaultAuth\\nresources are merged. The parameters from the VaultAuth always take\\nprecedence.\\n\\n\\nIf `replace` is set, the first set of non-empty parameters taken in order from:\\nVaultAuth, VaultAuthGlobal auth method, VaultGlobal default parameters.\\n\\n\\nIf `none` is set, the parameters from the VaultAuthGlobal resource are ignored\\nand only the parameters from the VaultAuth resource are used. The default is\\n`none`."', args=[d.arg(name='params', type=d.T.string)]),
+        withParams(params): { spec+: { vaultAuthGlobalRef+: { mergeStrategy+: { params: params } } } },
+      },
+      '#withName':: d.fn(help='"Name of the VaultAuthGlobal resource."', args=[d.arg(name='name', type=d.T.string)]),
+      withName(name): { spec+: { vaultAuthGlobalRef+: { name: name } } },
+      '#withNamespace':: d.fn(help='"Namespace of the VaultAuthGlobal resource. If not provided, the namespace of\\nthe referring VaultAuth resource is used."', args=[d.arg(name='namespace', type=d.T.string)]),
+      withNamespace(namespace): { spec+: { vaultAuthGlobalRef+: { namespace: namespace } } },
+    },
     '#withAllowedNamespaces':: d.fn(help="\"AllowedNamespaces Kubernetes Namespaces which are allow-listed for use with this AuthMethod.\\nThis field allows administrators to customize which Kubernetes namespaces are authorized to\\nuse with this AuthMethod. While Vault will still enforce its own rules, this has the added\\nconfigurability of restricting which VaultAuthMethods can be used by which namespaces.\\nAccepted values:\\n[]{\\\"*\\\"} - wildcard, all namespaces.\\n[]{\\\"a\\\", \\\"b\\\"} - list of namespaces.\\nunset - disallow all namespaces except the Operator's the VaultAuthMethod's namespace, this\\nis the default behavior.\"", args=[d.arg(name='allowedNamespaces', type=d.T.array)]),
     withAllowedNamespaces(allowedNamespaces): { spec+: { allowedNamespaces: if std.isArray(v=allowedNamespaces) then allowedNamespaces else [allowedNamespaces] } },
     '#withAllowedNamespacesMixin':: d.fn(help="\"AllowedNamespaces Kubernetes Namespaces which are allow-listed for use with this AuthMethod.\\nThis field allows administrators to customize which Kubernetes namespaces are authorized to\\nuse with this AuthMethod. While Vault will still enforce its own rules, this has the added\\nconfigurability of restricting which VaultAuthMethods can be used by which namespaces.\\nAccepted values:\\n[]{\\\"*\\\"} - wildcard, all namespaces.\\n[]{\\\"a\\\", \\\"b\\\"} - list of namespaces.\\nunset - disallow all namespaces except the Operator's the VaultAuthMethod's namespace, this\\nis the default behavior.\"\n\n**Note:** This function appends passed data to existing values", args=[d.arg(name='allowedNamespaces', type=d.T.array)]),
diff --git a/0.3.0/_gen/secrets/v1beta1/vaultAuth.libsonnet b/0.3.0/_gen/secrets/v1beta1/vaultAuth.libsonnet
@@ -123,6 +123,20 @@
       '#withMount':: d.fn(help='"Mount path of the Transit engine in Vault."', args=[d.arg(name='mount', type=d.T.string)]),
       withMount(mount): { spec+: { storageEncryption+: { mount: mount } } },
     },
+    '#vaultAuthGlobalRef':: d.obj(help='"VaultAuthGlobalRef."'),
+    vaultAuthGlobalRef: {
+      '#mergeStrategy':: d.obj(help='"MergeStrategy configures the merge strategy for HTTP headers and parameters\\nthat are included in all Vault authentication requests."'),
+      mergeStrategy: {
+        '#withHeaders':: d.fn(help='"Headers configures the merge strategy for HTTP headers that are included in\\nall Vault requests. Choices are `union`, `replace`, or `none`.\\n\\n\\nIf `union` is set, the headers from the VaultAuthGlobal and VaultAuth\\nresources are merged. The headers from the VaultAuth always take precedence.\\n\\n\\nIf `replace` is set, the first set of non-empty headers taken in order from:\\nVaultAuth, VaultAuthGlobal auth method, VaultGlobal default headers.\\n\\n\\nIf `none` is set, the headers from the\\nVaultAuthGlobal resource are ignored and only the headers from the VaultAuth\\nresource are used. The default is `none`."', args=[d.arg(name='headers', type=d.T.string)]),
+        withHeaders(headers): { spec+: { vaultAuthGlobalRef+: { mergeStrategy+: { headers: headers } } } },
+        '#withParams':: d.fn(help='"Params configures the merge strategy for HTTP parameters that are included in\\nall Vault requests. Choices are `union`, `replace`, or `none`.\\n\\n\\nIf `union` is set, the parameters from the VaultAuthGlobal and VaultAuth\\nresources are merged. The parameters from the VaultAuth always take\\nprecedence.\\n\\n\\nIf `replace` is set, the first set of non-empty parameters taken in order from:\\nVaultAuth, VaultAuthGlobal auth method, VaultGlobal default parameters.\\n\\n\\nIf `none` is set, the parameters from the VaultAuthGlobal resource are ignored\\nand only the parameters from the VaultAuth resource are used. The default is\\n`none`."', args=[d.arg(name='params', type=d.T.string)]),
+        withParams(params): { spec+: { vaultAuthGlobalRef+: { mergeStrategy+: { params: params } } } },
+      },
+      '#withName':: d.fn(help='"Name of the VaultAuthGlobal resource."', args=[d.arg(name='name', type=d.T.string)]),
+      withName(name): { spec+: { vaultAuthGlobalRef+: { name: name } } },
+      '#withNamespace':: d.fn(help='"Namespace of the VaultAuthGlobal resource. If not provided, the namespace of\\nthe referring VaultAuth resource is used."', args=[d.arg(name='namespace', type=d.T.string)]),
+      withNamespace(namespace): { spec+: { vaultAuthGlobalRef+: { namespace: namespace } } },
+    },
     '#withAllowedNamespaces':: d.fn(help="\"AllowedNamespaces Kubernetes Namespaces which are allow-listed for use with this AuthMethod.\\nThis field allows administrators to customize which Kubernetes namespaces are authorized to\\nuse with this AuthMethod. While Vault will still enforce its own rules, this has the added\\nconfigurability of restricting which VaultAuthMethods can be used by which namespaces.\\nAccepted values:\\n[]{\\\"*\\\"} - wildcard, all namespaces.\\n[]{\\\"a\\\", \\\"b\\\"} - list of namespaces.\\nunset - disallow all namespaces except the Operator's the VaultAuthMethod's namespace, this\\nis the default behavior.\"", args=[d.arg(name='allowedNamespaces', type=d.T.array)]),
     withAllowedNamespaces(allowedNamespaces): { spec+: { allowedNamespaces: if std.isArray(v=allowedNamespaces) then allowedNamespaces else [allowedNamespaces] } },
     '#withAllowedNamespacesMixin':: d.fn(help="\"AllowedNamespaces Kubernetes Namespaces which are allow-listed for use with this AuthMethod.\\nThis field allows administrators to customize which Kubernetes namespaces are authorized to\\nuse with this AuthMethod. While Vault will still enforce its own rules, this has the added\\nconfigurability of restricting which VaultAuthMethods can be used by which namespaces.\\nAccepted values:\\n[]{\\\"*\\\"} - wildcard, all namespaces.\\n[]{\\\"a\\\", \\\"b\\\"} - list of namespaces.\\nunset - disallow all namespaces except the Operator's the VaultAuthMethod's namespace, this\\nis the default behavior.\"\n\n**Note:** This function appends passed data to existing values", args=[d.arg(name='allowedNamespaces', type=d.T.array)]),
diff --git a/docs/0.1.0/secrets/v1beta1/vaultAuth.md b/docs/0.1.0/secrets/v1beta1/vaultAuth.md
@@ -74,6 +74,12 @@ permalink: /0.1.0/secrets/v1beta1/vaultAuth/
   * [`obj spec.storageEncryption`](#obj-specstorageencryption)
     * [`fn withKeyName(keyName)`](#fn-specstorageencryptionwithkeyname)
     * [`fn withMount(mount)`](#fn-specstorageencryptionwithmount)
+  * [`obj spec.vaultAuthGlobalRef`](#obj-specvaultauthglobalref)
+    * [`fn withName(name)`](#fn-specvaultauthglobalrefwithname)
+    * [`fn withNamespace(namespace)`](#fn-specvaultauthglobalrefwithnamespace)
+    * [`obj spec.vaultAuthGlobalRef.mergeStrategy`](#obj-specvaultauthglobalrefmergestrategy)
+      * [`fn withHeaders(headers)`](#fn-specvaultauthglobalrefmergestrategywithheaders)
+      * [`fn withParams(params)`](#fn-specvaultauthglobalrefmergestrategywithparams)
 
 ## Fields
 
@@ -589,4 +595,44 @@ withKeyName(keyName)
 withMount(mount)
 ```
 
-"Mount path of the Transit engine in Vault."
+"Mount path of the Transit engine in Vault."
+
+## obj spec.vaultAuthGlobalRef
+
+"VaultAuthGlobalRef."
+
+### fn spec.vaultAuthGlobalRef.withName
+
+```ts
+withName(name)
+```
+
+"Name of the VaultAuthGlobal resource."
+
+### fn spec.vaultAuthGlobalRef.withNamespace
+
+```ts
+withNamespace(namespace)
+```
+
+"Namespace of the VaultAuthGlobal resource. If not provided, the namespace of\nthe referring VaultAuth resource is used."
+
+## obj spec.vaultAuthGlobalRef.mergeStrategy
+
+"MergeStrategy configures the merge strategy for HTTP headers and parameters\nthat are included in all Vault authentication requests."
+
+### fn spec.vaultAuthGlobalRef.mergeStrategy.withHeaders
+
+```ts
+withHeaders(headers)
+```
+
+"Headers configures the merge strategy for HTTP headers that are included in\nall Vault requests. Choices are `union`, `replace`, or `none`.\n\n\nIf `union` is set, the headers from the VaultAuthGlobal and VaultAuth\nresources are merged. The headers from the VaultAuth always take precedence.\n\n\nIf `replace` is set, the first set of non-empty headers taken in order from:\nVaultAuth, VaultAuthGlobal auth method, VaultGlobal default headers.\n\n\nIf `none` is set, the headers from the\nVaultAuthGlobal resource are ignored and only the headers from the VaultAuth\nresource are used. The default is `none`."
+
+### fn spec.vaultAuthGlobalRef.mergeStrategy.withParams
+
+```ts
+withParams(params)
+```
+
+"Params configures the merge strategy for HTTP parameters that are included in\nall Vault requests. Choices are `union`, `replace`, or `none`.\n\n\nIf `union` is set, the parameters from the VaultAuthGlobal and VaultAuth\nresources are merged. The parameters from the VaultAuth always take\nprecedence.\n\n\nIf `replace` is set, the first set of non-empty parameters taken in order from:\nVaultAuth, VaultAuthGlobal auth method, VaultGlobal default parameters.\n\n\nIf `none` is set, the parameters from the VaultAuthGlobal resource are ignored\nand only the parameters from the VaultAuth resource are used. The default is\n`none`."
diff --git a/docs/0.2.0/secrets/v1beta1/vaultAuth.md b/docs/0.2.0/secrets/v1beta1/vaultAuth.md
@@ -74,6 +74,12 @@ permalink: /0.2.0/secrets/v1beta1/vaultAuth/
   * [`obj spec.storageEncryption`](#obj-specstorageencryption)
     * [`fn withKeyName(keyName)`](#fn-specstorageencryptionwithkeyname)
     * [`fn withMount(mount)`](#fn-specstorageencryptionwithmount)
+  * [`obj spec.vaultAuthGlobalRef`](#obj-specvaultauthglobalref)
+    * [`fn withName(name)`](#fn-specvaultauthglobalrefwithname)
+    * [`fn withNamespace(namespace)`](#fn-specvaultauthglobalrefwithnamespace)
+    * [`obj spec.vaultAuthGlobalRef.mergeStrategy`](#obj-specvaultauthglobalrefmergestrategy)
+      * [`fn withHeaders(headers)`](#fn-specvaultauthglobalrefmergestrategywithheaders)
+      * [`fn withParams(params)`](#fn-specvaultauthglobalrefmergestrategywithparams)
 
 ## Fields
 
@@ -589,4 +595,44 @@ withKeyName(keyName)
 withMount(mount)
 ```
 
-"Mount path of the Transit engine in Vault."
+"Mount path of the Transit engine in Vault."
+
+## obj spec.vaultAuthGlobalRef
+
+"VaultAuthGlobalRef."
+
+### fn spec.vaultAuthGlobalRef.withName
+
+```ts
+withName(name)
+```
+
+"Name of the VaultAuthGlobal resource."
+
+### fn spec.vaultAuthGlobalRef.withNamespace
+
+```ts
+withNamespace(namespace)
+```
+
+"Namespace of the VaultAuthGlobal resource. If not provided, the namespace of\nthe referring VaultAuth resource is used."
+
+## obj spec.vaultAuthGlobalRef.mergeStrategy
+
+"MergeStrategy configures the merge strategy for HTTP headers and parameters\nthat are included in all Vault authentication requests."
+
+### fn spec.vaultAuthGlobalRef.mergeStrategy.withHeaders
+
+```ts
+withHeaders(headers)
+```
+
+"Headers configures the merge strategy for HTTP headers that are included in\nall Vault requests. Choices are `union`, `replace`, or `none`.\n\n\nIf `union` is set, the headers from the VaultAuthGlobal and VaultAuth\nresources are merged. The headers from the VaultAuth always take precedence.\n\n\nIf `replace` is set, the first set of non-empty headers taken in order from:\nVaultAuth, VaultAuthGlobal auth method, VaultGlobal default headers.\n\n\nIf `none` is set, the headers from the\nVaultAuthGlobal resource are ignored and only the headers from the VaultAuth\nresource are used. The default is `none`."
+
+### fn spec.vaultAuthGlobalRef.mergeStrategy.withParams
+
+```ts
+withParams(params)
+```
+
+"Params configures the merge strategy for HTTP parameters that are included in\nall Vault requests. Choices are `union`, `replace`, or `none`.\n\n\nIf `union` is set, the parameters from the VaultAuthGlobal and VaultAuth\nresources are merged. The parameters from the VaultAuth always take\nprecedence.\n\n\nIf `replace` is set, the first set of non-empty parameters taken in order from:\nVaultAuth, VaultAuthGlobal auth method, VaultGlobal default parameters.\n\n\nIf `none` is set, the parameters from the VaultAuthGlobal resource are ignored\nand only the parameters from the VaultAuth resource are used. The default is\n`none`."
diff --git a/docs/0.3.0/secrets/v1beta1/vaultAuth.md b/docs/0.3.0/secrets/v1beta1/vaultAuth.md
