openstack-k8s-operators
diff --git a/‎api/bases/ironic.openstack.org_ironicapis.yaml‎
Lines changed: 9 additions & 0 deletions b/‎api/bases/ironic.openstack.org_ironicapis.yaml‎
Lines changed: 9 additions & 0 deletions
diff --git a/‎api/bases/ironic.openstack.org_ironicconductors.yaml‎
Lines changed: 9 additions & 0 deletions b/‎api/bases/ironic.openstack.org_ironicconductors.yaml‎
Lines changed: 9 additions & 0 deletions
diff --git a/‎api/bases/ironic.openstack.org_ironicinspectors.yaml‎
Lines changed: 8 additions & 0 deletions b/‎api/bases/ironic.openstack.org_ironicinspectors.yaml‎
Lines changed: 8 additions & 0 deletions
diff --git a/‎api/bases/ironic.openstack.org_ironicneutronagents.yaml‎
Lines changed: 9 additions & 0 deletions b/‎api/bases/ironic.openstack.org_ironicneutronagents.yaml‎
Lines changed: 9 additions & 0 deletions
diff --git a/‎api/bases/ironic.openstack.org_ironics.yaml‎
Lines changed: 17 additions & 0 deletions b/‎api/bases/ironic.openstack.org_ironics.yaml‎
Lines changed: 17 additions & 0 deletions
diff --git a/‎api/v1beta1/common_types.go‎
Lines changed: 9 additions & 1 deletion b/‎api/v1beta1/common_types.go‎
Lines changed: 9 additions & 1 deletion
diff --git a/‎api/v1beta1/ironic_types.go‎
Lines changed: 5 additions & 0 deletions b/‎api/v1beta1/ironic_types.go‎
Lines changed: 5 additions & 0 deletions
diff --git a/‎api/v1beta1/ironicapi_types.go‎
Lines changed: 6 additions & 1 deletion b/‎api/v1beta1/ironicapi_types.go‎
Lines changed: 6 additions & 1 deletion
diff --git a/‎api/v1beta1/ironicconductor_types.go‎
Lines changed: 5 additions & 0 deletions b/‎api/v1beta1/ironicconductor_types.go‎
Lines changed: 5 additions & 0 deletions
diff --git a/‎api/v1beta1/ironicinspector_types.go‎
Lines changed: 6 additions & 1 deletion b/‎api/v1beta1/ironicinspector_types.go‎
Lines changed: 6 additions & 1 deletion
@@ -57,6 +57,15 @@ spec:
                 description: APITimeout for HAProxy, Apache
                 minimum: 10
                 type: integer
+              auth:
+                description: Auth - Parameters related to authentication (inherited
+                  from parent Ironic CR)
+                properties:
+                  applicationCredentialSecret:
+                    description: ApplicationCredentialSecret - Secret containing Application
+                      Credential ID and Secret
+                    type: string
+                type: object
               containerImage:
                 description: ContainerImage - Ironic API Container Image
                 type: string
 
@@ -52,6 +52,15 @@ spec:
           spec:
             description: IronicConductorSpec defines the desired state of IronicConductor
             properties:
+              auth:
+                description: Auth - Parameters related to authentication (inherited
+                  from parent Ironic CR)
+                properties:
+                  applicationCredentialSecret:
+                    description: ApplicationCredentialSecret - Secret containing Application
+                      Credential ID and Secret
+                    type: string
+                type: object
               conductorGroup:
                 description: ConductorGroup - Ironic Conductor conductor group.
                 type: string
 
@@ -57,6 +57,14 @@ spec:
                 description: APITimeout for HAProxy, Apache
                 minimum: 10
                 type: integer
+              auth:
+                description: Auth - Parameters related to authentication
+                properties:
+                  applicationCredentialSecret:
+                    description: ApplicationCredentialSecret - Secret containing Application
+                      Credential ID and Secret
+                    type: string
+                type: object
               containerImage:
                 description: ContainerImage - Ironic Inspector Container Image
                 type: string
 
@@ -54,6 +54,15 @@ spec:
             description: IronicNeutronAgentSpec defines the desired state of ML2 baremetal
               - ironic-neutron-agent agents
             properties:
+              auth:
+                description: Auth - Parameters related to authentication (inherited
+                  from parent Ironic CR)
+                properties:
+                  applicationCredentialSecret:
+                    description: ApplicationCredentialSecret - Secret containing Application
+                      Credential ID and Secret
+                    type: string
+                type: object
               containerImage:
                 description: ContainerImage - ML2 baremtal - Ironic Neutron Agent
                   Image
 
@@ -53,6 +53,15 @@ spec:
                 description: APITimeout for HAProxy, Apache
                 minimum: 10
                 type: integer
+              auth:
+                description: Auth - Parameters related to authentication (shared by
+                  IronicAPI, IronicConductor, and IronicNeutronAgent)
+                properties:
+                  applicationCredentialSecret:
+                    description: ApplicationCredentialSecret - Secret containing Application
+                      Credential ID and Secret
+                    type: string
+                type: object
               customServiceConfig:
                 default: '# add your customization here'
                 description: |-
@@ -621,6 +630,14 @@ spec:
                 description: IronicInspector - Spec definition for the inspector service
                   of this Ironic deployment
                 properties:
+                  auth:
+                    description: Auth - Parameters related to authentication
+                    properties:
+                      applicationCredentialSecret:
+                        description: ApplicationCredentialSecret - Secret containing
+                          Application Credential ID and Secret
+                        type: string
+                    type: object
                   customServiceConfig:
                     default: '# add your customization here'
                     description: |-
 
@@ -17,8 +17,8 @@ limitations under the License.
 package v1beta1
 
 import (
-	corev1 "k8s.io/api/core/v1"
 	topologyv1 "github.com/openstack-k8s-operators/infra-operator/apis/topology/v1beta1"
+	corev1 "k8s.io/api/core/v1"
 	"k8s.io/apimachinery/pkg/util/validation/field"
 )
 
@@ -78,6 +78,14 @@ type KeystoneEndpoints struct {
 	Public string `json:"public"`
 }
 
+// AuthSpec defines authentication parameters
+type AuthSpec struct {
+	// +kubebuilder:validation:Optional
+	// +operator-sdk:csv:customresourcedefinitions:type=spec
+	// ApplicationCredentialSecret - Secret containing Application Credential ID and Secret
+	ApplicationCredentialSecret string `json:"applicationCredentialSecret,omitempty"`
+}
+
 // ValidateTopology -
 func (instance *IronicServiceTemplate) ValidateTopology(
 	basePath *field.Path,
 
@@ -143,6 +143,11 @@ type IronicSpecCore struct {
 	// require oslo.messaging transport when not in standalone mode.
 	RPCTransport string `json:"rpcTransport"`
 
+	// +kubebuilder:validation:Optional
+	// +operator-sdk:csv:customresourcedefinitions:type=spec
+	// Auth - Parameters related to authentication (shared by IronicAPI, IronicConductor, and IronicNeutronAgent)
+	Auth AuthSpec `json:"auth,omitempty"`
+
 	// +kubebuilder:validation:Optional
 	// NodeSelector to target subset of worker nodes running this service. Setting
 	// NodeSelector here acts as a default value and can be overridden by service
 
@@ -19,11 +19,11 @@ package v1beta1
 import (
 	"fmt"
 
+	topologyv1 "github.com/openstack-k8s-operators/infra-operator/apis/topology/v1beta1"
 	condition "github.com/openstack-k8s-operators/lib-common/modules/common/condition"
 	"github.com/openstack-k8s-operators/lib-common/modules/common/endpoint"
 	"github.com/openstack-k8s-operators/lib-common/modules/common/service"
 	"github.com/openstack-k8s-operators/lib-common/modules/common/tls"
-	topologyv1 "github.com/openstack-k8s-operators/infra-operator/apis/topology/v1beta1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 )
 
@@ -116,6 +116,11 @@ type IronicAPISpec struct {
 	// +kubebuilder:validation:Minimum=10
 	// APITimeout for HAProxy, Apache
 	APITimeout int `json:"apiTimeout"`
+
+	// +kubebuilder:validation:Optional
+	// +operator-sdk:csv:customresourcedefinitions:type=spec
+	// Auth - Parameters related to authentication (inherited from parent Ironic CR)
+	Auth AuthSpec `json:"auth,omitempty"`
 }
 
 // IronicAPIStatus defines the observed state of IronicAPI
 
@@ -149,6 +149,11 @@ type IronicConductorSpec struct {
 	// +kubebuilder:validation:Optional
 	// ConsoleImage - Ironic Graphical Console Container Image
 	ConsoleImage string `json:"consoleImage"`
+
+	// +kubebuilder:validation:Optional
+	// +operator-sdk:csv:customresourcedefinitions:type=spec
+	// Auth - Parameters related to authentication (inherited from parent Ironic CR)
+	Auth AuthSpec `json:"auth,omitempty"`
 }
 
 // IronicConductorStatus defines the observed state of IronicConductor
 
@@ -17,8 +17,8 @@ limitations under the License.
 package v1beta1
 
 import (
-	condition "github.com/openstack-k8s-operators/lib-common/modules/common/condition"
 	topologyv1 "github.com/openstack-k8s-operators/infra-operator/apis/topology/v1beta1"
+	condition "github.com/openstack-k8s-operators/lib-common/modules/common/condition"
 	"github.com/openstack-k8s-operators/lib-common/modules/common/service"
 	"github.com/openstack-k8s-operators/lib-common/modules/common/tls"
 	corev1 "k8s.io/api/core/v1"
@@ -114,6 +114,11 @@ type IronicInspectorTemplate struct {
 	// TLS - Parameters related to the TLS
 	TLS tls.API `json:"tls,omitempty"`
 
+	// +kubebuilder:validation:Optional
+	// +operator-sdk:csv:customresourcedefinitions:type=spec
+	// Auth - Parameters related to authentication
+	Auth AuthSpec `json:"auth,omitempty"`
+
 	// +kubebuilder:validation:Optional
 	// TopologyRef to apply the Topology defined by the associated CR referenced
 	// by name