percona
diff --git a/‎build/crd/crunchy/generated/postgres-operator.crunchydata.com_postgresclusters.yaml‎
Lines changed: 61 additions & 0 deletions b/‎build/crd/crunchy/generated/postgres-operator.crunchydata.com_postgresclusters.yaml‎
Lines changed: 61 additions & 0 deletions
diff --git a/‎build/crd/percona/generated/pgv2.percona.com_perconapgclusters.yaml‎
Lines changed: 60 additions & 0 deletions b/‎build/crd/percona/generated/pgv2.percona.com_perconapgclusters.yaml‎
Lines changed: 60 additions & 0 deletions
diff --git a/‎config/crd/bases/pgv2.percona.com_perconapgclusters.yaml‎
Lines changed: 60 additions & 0 deletions b/‎config/crd/bases/pgv2.percona.com_perconapgclusters.yaml‎
Lines changed: 60 additions & 0 deletions
diff --git a/‎config/crd/bases/postgres-operator.crunchydata.com_postgresclusters.yaml‎
Lines changed: 61 additions & 0 deletions b/‎config/crd/bases/postgres-operator.crunchydata.com_postgresclusters.yaml‎
Lines changed: 61 additions & 0 deletions
@@ -5151,6 +5151,67 @@ spec:
                     type: boolean
                 type: object
                 x-kubernetes-map-type: atomic
+              customRootCATLSSecret:
+                description: |-
+                  The secret containing the root CA certificate and key for
+                  secure connections to the PostgreSQL server. It will need to contain the
+                  CA TLS certificate and CA TLS key with the data keys set to
+                  root.crt and root.key, respectively.
+                  Part of K8SPG-553 ticket.
+                properties:
+                  items:
+                    description: |-
+                      items if unspecified, each key-value pair in the Data field of the referenced
+                      Secret will be projected into the volume as a file whose name is the
+                      key and content is the value. If specified, the listed keys will be
+                      projected into the specified paths, and unlisted keys will not be
+                      present. If a key is specified which is not present in the Secret,
+                      the volume setup will error unless it is marked optional. Paths must be
+                      relative and may not contain the '..' path or start with '..'.
+                    items:
+                      description: Maps a string key to a path within a volume.
+                      properties:
+                        key:
+                          description: key is the key to project.
+                          type: string
+                        mode:
+                          description: |-
+                            mode is Optional: mode bits used to set permissions on this file.
+                            Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.
+                            YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.
+                            If not specified, the volume defaultMode will be used.
+                            This might be in conflict with other options that affect the file
+                            mode, like fsGroup, and the result can be other mode bits set.
+                          format: int32
+                          type: integer
+                        path:
+                          description: |-
+                            path is the relative path of the file to map the key to.
+                            May not be an absolute path.
+                            May not contain the path element '..'.
+                            May not start with the string '..'.
+                          type: string
+                      required:
+                      - key
+                      - path
+                      type: object
+                    type: array
+                    x-kubernetes-list-type: atomic
+                  name:
+                    default: ""
+                    description: |-
+                      Name of the referent.
+                      This field is effectively required, but due to backwards compatibility is
+                      allowed to be empty. Instances of this type with an empty value here are
+                      almost certainly wrong.
+                      More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                    type: string
+                  optional:
+                    description: optional field specify whether the Secret or its
+                      key must be defined
+                    type: boolean
+                type: object
+                x-kubernetes-map-type: atomic
               customTLSSecret:
                 description: |-
                   The secret containing the Certificates and Keys to encrypt PostgreSQL
 
@@ -17144,6 +17144,66 @@ spec:
                         type: boolean
                     type: object
                     x-kubernetes-map-type: atomic
+                  customRootCATLSSecret:
+                    description: |-
+                      The secret containing the root CA certificate and key for
+                      secure connections to the PostgreSQL server. It will need to contain the
+                      CA TLS certificate and CA TLS key with the data keys set to
+                      root.crt and root.key, respectively.
+                    properties:
+                      items:
+                        description: |-
+                          items if unspecified, each key-value pair in the Data field of the referenced
+                          Secret will be projected into the volume as a file whose name is the
+                          key and content is the value. If specified, the listed keys will be
+                          projected into the specified paths, and unlisted keys will not be
+                          present. If a key is specified which is not present in the Secret,
+                          the volume setup will error unless it is marked optional. Paths must be
+                          relative and may not contain the '..' path or start with '..'.
+                        items:
+                          description: Maps a string key to a path within a volume.
+                          properties:
+                            key:
+                              description: key is the key to project.
+                              type: string
+                            mode:
+                              description: |-
+                                mode is Optional: mode bits used to set permissions on this file.
+                                Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.
+                                YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.
+                                If not specified, the volume defaultMode will be used.
+                                This might be in conflict with other options that affect the file
+                                mode, like fsGroup, and the result can be other mode bits set.
+                              format: int32
+                              type: integer
+                            path:
+                              description: |-
+                                path is the relative path of the file to map the key to.
+                                May not be an absolute path.
+                                May not contain the path element '..'.
+                                May not start with the string '..'.
+                              type: string
+                          required:
+                          - key
+                          - path
+                          type: object
+                        type: array
+                        x-kubernetes-list-type: atomic
+                      name:
+                        default: ""
+                        description: |-
+                          Name of the referent.
+                          This field is effectively required, but due to backwards compatibility is
+                          allowed to be empty. Instances of this type with an empty value here are
+                          almost certainly wrong.
+                          More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                        type: string
+                      optional:
+                        description: optional field specify whether the Secret or
+                          its key must be defined
+                        type: boolean
+                    type: object
+                    x-kubernetes-map-type: atomic
                   customTLSSecret:
                     description: |-
                       The secret containing the Certificates and Keys to encrypt PostgreSQL
 
@@ -17549,6 +17549,66 @@ spec:
                         type: boolean
                     type: object
                     x-kubernetes-map-type: atomic
+                  customRootCATLSSecret:
+                    description: |-
+                      The secret containing the root CA certificate and key for
+                      secure connections to the PostgreSQL server. It will need to contain the
+                      CA TLS certificate and CA TLS key with the data keys set to
+                      root.crt and root.key, respectively.
+                    properties:
+                      items:
+                        description: |-
+                          items if unspecified, each key-value pair in the Data field of the referenced
+                          Secret will be projected into the volume as a file whose name is the
+                          key and content is the value. If specified, the listed keys will be
+                          projected into the specified paths, and unlisted keys will not be
+                          present. If a key is specified which is not present in the Secret,
+                          the volume setup will error unless it is marked optional. Paths must be
+                          relative and may not contain the '..' path or start with '..'.
+                        items:
+                          description: Maps a string key to a path within a volume.
+                          properties:
+                            key:
+                              description: key is the key to project.
+                              type: string
+                            mode:
+                              description: |-
+                                mode is Optional: mode bits used to set permissions on this file.
+                                Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.
+                                YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.
+                                If not specified, the volume defaultMode will be used.
+                                This might be in conflict with other options that affect the file
+                                mode, like fsGroup, and the result can be other mode bits set.
+                              format: int32
+                              type: integer
+                            path:
+                              description: |-
+                                path is the relative path of the file to map the key to.
+                                May not be an absolute path.
+                                May not contain the path element '..'.
+                                May not start with the string '..'.
+                              type: string
+                          required:
+                          - key
+                          - path
+                          type: object
+                        type: array
+                        x-kubernetes-list-type: atomic
+                      name:
+                        default: ""
+                        description: |-
+                          Name of the referent.
+                          This field is effectively required, but due to backwards compatibility is
+                          allowed to be empty. Instances of this type with an empty value here are
+                          almost certainly wrong.
+                          More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                        type: string
+                      optional:
+                        description: optional field specify whether the Secret or
+                          its key must be defined
+                        type: boolean
+                    type: object
+                    x-kubernetes-map-type: atomic
                   customTLSSecret:
                     description: |-
                       The secret containing the Certificates and Keys to encrypt PostgreSQL
 
@@ -5126,6 +5126,67 @@ spec:
                     type: boolean
                 type: object
                 x-kubernetes-map-type: atomic
+              customRootCATLSSecret:
+                description: |-
+                  The secret containing the root CA certificate and key for
+                  secure connections to the PostgreSQL server. It will need to contain the
+                  CA TLS certificate and CA TLS key with the data keys set to
+                  root.crt and root.key, respectively.
+                  Part of K8SPG-553 ticket.
+                properties:
+                  items:
+                    description: |-
+                      items if unspecified, each key-value pair in the Data field of the referenced
+                      Secret will be projected into the volume as a file whose name is the
+                      key and content is the value. If specified, the listed keys will be
+                      projected into the specified paths, and unlisted keys will not be
+                      present. If a key is specified which is not present in the Secret,
+                      the volume setup will error unless it is marked optional. Paths must be
+                      relative and may not contain the '..' path or start with '..'.
+                    items:
+                      description: Maps a string key to a path within a volume.
+                      properties:
+                        key:
+                          description: key is the key to project.
+                          type: string
+                        mode:
+                          description: |-
+                            mode is Optional: mode bits used to set permissions on this file.
+                            Must be an octal value between 0000 and 0777 or a decimal value between 0 and 511.
+                            YAML accepts both octal and decimal values, JSON requires decimal values for mode bits.
+                            If not specified, the volume defaultMode will be used.
+                            This might be in conflict with other options that affect the file
+                            mode, like fsGroup, and the result can be other mode bits set.
+                          format: int32
+                          type: integer
+                        path:
+                          description: |-
+                            path is the relative path of the file to map the key to.
+                            May not be an absolute path.
+                            May not contain the path element '..'.
+                            May not start with the string '..'.
+                          type: string
+                      required:
+                      - key
+                      - path
+                      type: object
+                    type: array
+                    x-kubernetes-list-type: atomic
+                  name:
+                    default: ""
+                    description: |-
+                      Name of the referent.
+                      This field is effectively required, but due to backwards compatibility is
+                      allowed to be empty. Instances of this type with an empty value here are
+                      almost certainly wrong.
+                      More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
+                    type: string
+                  optional:
+                    description: optional field specify whether the Secret or its
+                      key must be defined
+                    type: boolean
+                type: object
+                x-kubernetes-map-type: atomic
               customTLSSecret:
                 description: |-
                   The secret containing the Certificates and Keys to encrypt PostgreSQL