Path: blob/main/production/operator/crds/monitoring.grafana.com_integrations.yaml
4096 views
---1apiVersion: apiextensions.k8s.io/v12kind: CustomResourceDefinition3metadata:4annotations:5controller-gen.kubebuilder.io/version: v0.9.26creationTimestamp: null7name: integrations.monitoring.grafana.com8spec:9group: monitoring.grafana.com10names:11categories:12- agent-operator13kind: Integration14listKind: IntegrationList15plural: integrations16singular: integration17scope: Namespaced18versions:19- name: v1alpha120schema:21openAPIV3Schema:22description: "Integration runs a single Grafana Agent integration. Integrations23that generate telemetry must be configured to send that telemetry somewhere,24such as autoscrape for exporter-based integrations. \n Integrations have25access to the LogsInstances and MetricsInstances in the same GrafanaAgent26resource set, referenced by the <namespace>/<name> of the Instance resource.27\n For example, if there is a default/production MetricsInstance, you can28configure a supported integration's autoscrape block with: \n autoscrape:29enable: true metrics_instance: default/production \n There is currently30no way for telemetry created by an Operator-managed integration to be collected31from outside of the integration itself."32properties:33apiVersion:34description: 'APIVersion defines the versioned schema of this representation35of an object. Servers should convert recognized schemas to the latest36internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'37type: string38kind:39description: 'Kind is a string value representing the REST resource this40object represents. Servers may infer this from the endpoint the client41submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'42type: string43metadata:44type: object45spec:46description: Specifies the desired behavior of the Integration.47properties:48config:49description: "The configuration for the named integration. Note that50Integrations are deployed with the integrations-next feature flag,51which has different common settings: \n https://grafana.com/docs/agent/latest/configuration/integrations/integrations-next/"52type: object53x-kubernetes-preserve-unknown-fields: true54configMaps:55description: "An extra list of keys from ConfigMaps in the same namespace56as the Integration which will be mounted into the Grafana Agent57pod running this Integration. \n ConfigMaps are mounted at /etc/grafana-agent/integrations/configMaps/<configmap_namespace>/<configmap_name>/<key>."58items:59description: Selects a key from a ConfigMap.60properties:61key:62description: The key to select.63type: string64name:65description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names66TODO: Add other useful fields. apiVersion, kind, uid?'67type: string68optional:69description: Specify whether the ConfigMap or its key must be70defined71type: boolean72required:73- key74type: object75x-kubernetes-map-type: atomic76type: array77name:78description: Name of the integration to run (e.g., "node_exporter",79"mysqld_exporter").80type: string81secrets:82description: "An extra list of keys from Secrets in the same namespace83as the Integration which will be mounted into the Grafana Agent84pod running this Integration. \n Secrets will be mounted at /etc/grafana-agent/integrations/secrets/<secret_namespace>/<secret_name>/<key>."85items:86description: SecretKeySelector selects a key of a Secret.87properties:88key:89description: The key of the secret to select from. Must be90a valid secret key.91type: string92name:93description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names94TODO: Add other useful fields. apiVersion, kind, uid?'95type: string96optional:97description: Specify whether the Secret or its key must be defined98type: boolean99required:100- key101type: object102x-kubernetes-map-type: atomic103type: array104type:105description: Type informs Grafana Agent Operator about how to manage106the integration being configured.107properties:108allNodes:109description: When true, the configured integration should be run110on every Node in the cluster. This is required for Integrations111that generate Node-specific metrics like node_exporter, otherwise112it must be false to avoid generating duplicate metrics.113type: boolean114unique:115description: Whether this integration can only be defined once116for a Grafana Agent process, such as statsd_exporter. It is117invalid for a GrafanaAgent to discover multiple unique Integrations118with the same Integration name (i.e., a single GrafanaAgent119cannot deploy two statsd_exporters).120type: boolean121type: object122volumeMounts:123description: "An extra list of VolumeMounts to be associated with124the Grafana Agent pods running this integration. VolumeMount names125are mutated to be unique across all used IntegrationSpecs. \n Mount126paths should include the namespace/name of the Integration CR to127avoid potentially colliding with other resources."128items:129description: VolumeMount describes a mounting of a Volume within130a container.131properties:132mountPath:133description: Path within the container at which the volume should134be mounted. Must not contain ':'.135type: string136mountPropagation:137description: mountPropagation determines how mounts are propagated138from the host to container and the other way around. When139not set, MountPropagationNone is used. This field is beta140in 1.10.141type: string142name:143description: This must match the Name of a Volume.144type: string145readOnly:146description: Mounted read-only if true, read-write otherwise147(false or unspecified). Defaults to false.148type: boolean149subPath:150description: Path within the volume from which the container's151volume should be mounted. Defaults to "" (volume's root).152type: string153subPathExpr:154description: Expanded path within the volume from which the155container's volume should be mounted. Behaves similarly to156SubPath but environment variable references $(VAR_NAME) are157expanded using the container's environment. Defaults to ""158(volume's root). SubPathExpr and SubPath are mutually exclusive.159type: string160required:161- mountPath162- name163type: object164type: array165volumes:166description: "An extra list of Volumes to be associated with the Grafana167Agent pods running this integration. Volume names are mutated to168be unique across all Integrations. Note that the specified volumes169should be able to tolerate existing on multiple pods at once when170type is daemonset. \n Don't use volumes for loading Secrets or ConfigMaps171from the same namespace as the Integration; use the Secrets and172ConfigMaps fields instead."173items:174description: Volume represents a named volume in a pod that may175be accessed by any container in the pod.176properties:177awsElasticBlockStore:178description: 'awsElasticBlockStore represents an AWS Disk resource179that is attached to a kubelet''s host machine and then exposed180to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore'181properties:182fsType:183description: 'fsType is the filesystem type of the volume184that you want to mount. Tip: Ensure that the filesystem185type is supported by the host operating system. Examples:186"ext4", "xfs", "ntfs". Implicitly inferred to be "ext4"187if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore188TODO: how do we prevent errors in the filesystem from189compromising the machine'190type: string191partition:192description: 'partition is the partition in the volume that193you want to mount. If omitted, the default is to mount194by volume name. Examples: For volume /dev/sda1, you specify195the partition as "1". Similarly, the volume partition196for /dev/sda is "0" (or you can leave the property empty).'197format: int32198type: integer199readOnly:200description: 'readOnly value true will force the readOnly201setting in VolumeMounts. More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore'202type: boolean203volumeID:204description: 'volumeID is unique ID of the persistent disk205resource in AWS (Amazon EBS volume). More info: https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstore'206type: string207required:208- volumeID209type: object210azureDisk:211description: azureDisk represents an Azure Data Disk mount on212the host and bind mount to the pod.213properties:214cachingMode:215description: 'cachingMode is the Host Caching mode: None,216Read Only, Read Write.'217type: string218diskName:219description: diskName is the Name of the data disk in the220blob storage221type: string222diskURI:223description: diskURI is the URI of data disk in the blob224storage225type: string226fsType:227description: fsType is Filesystem type to mount. Must be228a filesystem type supported by the host operating system.229Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4"230if unspecified.231type: string232kind:233description: 'kind expected values are Shared: multiple234blob disks per storage account Dedicated: single blob235disk per storage account Managed: azure managed data236disk (only in managed availability set). defaults to shared'237type: string238readOnly:239description: readOnly Defaults to false (read/write). ReadOnly240here will force the ReadOnly setting in VolumeMounts.241type: boolean242required:243- diskName244- diskURI245type: object246azureFile:247description: azureFile represents an Azure File Service mount248on the host and bind mount to the pod.249properties:250readOnly:251description: readOnly defaults to false (read/write). ReadOnly252here will force the ReadOnly setting in VolumeMounts.253type: boolean254secretName:255description: secretName is the name of secret that contains256Azure Storage Account Name and Key257type: string258shareName:259description: shareName is the azure share Name260type: string261required:262- secretName263- shareName264type: object265cephfs:266description: cephFS represents a Ceph FS mount on the host that267shares a pod's lifetime268properties:269monitors:270description: 'monitors is Required: Monitors is a collection271of Ceph monitors More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it'272items:273type: string274type: array275path:276description: 'path is Optional: Used as the mounted root,277rather than the full Ceph tree, default is /'278type: string279readOnly:280description: 'readOnly is Optional: Defaults to false (read/write).281ReadOnly here will force the ReadOnly setting in VolumeMounts.282More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it'283type: boolean284secretFile:285description: 'secretFile is Optional: SecretFile is the286path to key ring for User, default is /etc/ceph/user.secret287More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it'288type: string289secretRef:290description: 'secretRef is Optional: SecretRef is reference291to the authentication secret for User, default is empty.292More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it'293properties:294name:295description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names296TODO: Add other useful fields. apiVersion, kind, uid?'297type: string298type: object299x-kubernetes-map-type: atomic300user:301description: 'user is optional: User is the rados user name,302default is admin More info: https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-it'303type: string304required:305- monitors306type: object307cinder:308description: 'cinder represents a cinder volume attached and309mounted on kubelets host machine. More info: https://examples.k8s.io/mysql-cinder-pd/README.md'310properties:311fsType:312description: 'fsType is the filesystem type to mount. Must313be a filesystem type supported by the host operating system.314Examples: "ext4", "xfs", "ntfs". Implicitly inferred to315be "ext4" if unspecified. More info: https://examples.k8s.io/mysql-cinder-pd/README.md'316type: string317readOnly:318description: 'readOnly defaults to false (read/write). ReadOnly319here will force the ReadOnly setting in VolumeMounts.320More info: https://examples.k8s.io/mysql-cinder-pd/README.md'321type: boolean322secretRef:323description: 'secretRef is optional: points to a secret324object containing parameters used to connect to OpenStack.'325properties:326name:327description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names328TODO: Add other useful fields. apiVersion, kind, uid?'329type: string330type: object331x-kubernetes-map-type: atomic332volumeID:333description: 'volumeID used to identify the volume in cinder.334More info: https://examples.k8s.io/mysql-cinder-pd/README.md'335type: string336required:337- volumeID338type: object339configMap:340description: configMap represents a configMap that should populate341this volume342properties:343defaultMode:344description: 'defaultMode is optional: mode bits used to345set permissions on created files by default. Must be an346octal value between 0000 and 0777 or a decimal value between3470 and 511. YAML accepts both octal and decimal values,348JSON requires decimal values for mode bits. Defaults to3490644. Directories within the path are not affected by350this setting. This might be in conflict with other options351that affect the file mode, like fsGroup, and the result352can be other mode bits set.'353format: int32354type: integer355items:356description: items if unspecified, each key-value pair in357the Data field of the referenced ConfigMap will be projected358into the volume as a file whose name is the key and content359is the value. If specified, the listed keys will be projected360into the specified paths, and unlisted keys will not be361present. If a key is specified which is not present in362the ConfigMap, the volume setup will error unless it is363marked optional. Paths must be relative and may not contain364the '..' path or start with '..'.365items:366description: Maps a string key to a path within a volume.367properties:368key:369description: key is the key to project.370type: string371mode:372description: 'mode is Optional: mode bits used to373set permissions on this file. Must be an octal value374between 0000 and 0777 or a decimal value between3750 and 511. YAML accepts both octal and decimal values,376JSON requires decimal values for mode bits. If not377specified, the volume defaultMode will be used.378This might be in conflict with other options that379affect the file mode, like fsGroup, and the result380can be other mode bits set.'381format: int32382type: integer383path:384description: path is the relative path of the file385to map the key to. May not be an absolute path.386May not contain the path element '..'. May not start387with the string '..'.388type: string389required:390- key391- path392type: object393type: array394name:395description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names396TODO: Add other useful fields. apiVersion, kind, uid?'397type: string398optional:399description: optional specify whether the ConfigMap or its400keys must be defined401type: boolean402type: object403x-kubernetes-map-type: atomic404csi:405description: csi (Container Storage Interface) represents ephemeral406storage that is handled by certain external CSI drivers (Beta407feature).408properties:409driver:410description: driver is the name of the CSI driver that handles411this volume. Consult with your admin for the correct name412as registered in the cluster.413type: string414fsType:415description: fsType to mount. Ex. "ext4", "xfs", "ntfs".416If not provided, the empty value is passed to the associated417CSI driver which will determine the default filesystem418to apply.419type: string420nodePublishSecretRef:421description: nodePublishSecretRef is a reference to the422secret object containing sensitive information to pass423to the CSI driver to complete the CSI NodePublishVolume424and NodeUnpublishVolume calls. This field is optional,425and may be empty if no secret is required. If the secret426object contains more than one secret, all secret references427are passed.428properties:429name:430description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names431TODO: Add other useful fields. apiVersion, kind, uid?'432type: string433type: object434x-kubernetes-map-type: atomic435readOnly:436description: readOnly specifies a read-only configuration437for the volume. Defaults to false (read/write).438type: boolean439volumeAttributes:440additionalProperties:441type: string442description: volumeAttributes stores driver-specific properties443that are passed to the CSI driver. Consult your driver's444documentation for supported values.445type: object446required:447- driver448type: object449downwardAPI:450description: downwardAPI represents downward API about the pod451that should populate this volume452properties:453defaultMode:454description: 'Optional: mode bits to use on created files455by default. Must be a Optional: mode bits used to set456permissions on created files by default. Must be an octal457value between 0000 and 0777 or a decimal value between4580 and 511. YAML accepts both octal and decimal values,459JSON requires decimal values for mode bits. Defaults to4600644. Directories within the path are not affected by461this setting. This might be in conflict with other options462that affect the file mode, like fsGroup, and the result463can be other mode bits set.'464format: int32465type: integer466items:467description: Items is a list of downward API volume file468items:469description: DownwardAPIVolumeFile represents information470to create the file containing the pod field471properties:472fieldRef:473description: 'Required: Selects a field of the pod:474only annotations, labels, name and namespace are475supported.'476properties:477apiVersion:478description: Version of the schema the FieldPath479is written in terms of, defaults to "v1".480type: string481fieldPath:482description: Path of the field to select in the483specified API version.484type: string485required:486- fieldPath487type: object488x-kubernetes-map-type: atomic489mode:490description: 'Optional: mode bits used to set permissions491on this file, must be an octal value between 0000492and 0777 or a decimal value between 0 and 511. YAML493accepts both octal and decimal values, JSON requires494decimal values for mode bits. If not specified,495the volume defaultMode will be used. This might496be in conflict with other options that affect the497file mode, like fsGroup, and the result can be other498mode bits set.'499format: int32500type: integer501path:502description: 'Required: Path is the relative path503name of the file to be created. Must not be absolute504or contain the ''..'' path. Must be utf-8 encoded.505The first item of the relative path must not start506with ''..'''507type: string508resourceFieldRef:509description: 'Selects a resource of the container:510only resources limits and requests (limits.cpu,511limits.memory, requests.cpu and requests.memory)512are currently supported.'513properties:514containerName:515description: 'Container name: required for volumes,516optional for env vars'517type: string518divisor:519anyOf:520- type: integer521- type: string522description: Specifies the output format of the523exposed resources, defaults to "1"524pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$525x-kubernetes-int-or-string: true526resource:527description: 'Required: resource to select'528type: string529required:530- resource531type: object532x-kubernetes-map-type: atomic533required:534- path535type: object536type: array537type: object538emptyDir:539description: 'emptyDir represents a temporary directory that540shares a pod''s lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir'541properties:542medium:543description: 'medium represents what type of storage medium544should back this directory. The default is "" which means545to use the node''s default medium. Must be an empty string546(default) or Memory. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir'547type: string548sizeLimit:549anyOf:550- type: integer551- type: string552description: 'sizeLimit is the total amount of local storage553required for this EmptyDir volume. The size limit is also554applicable for memory medium. The maximum usage on memory555medium EmptyDir would be the minimum value between the556SizeLimit specified here and the sum of memory limits557of all containers in a pod. The default is nil which means558that the limit is undefined. More info: https://kubernetes.io/docs/concepts/storage/volumes/#emptydir'559pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$560x-kubernetes-int-or-string: true561type: object562ephemeral:563description: "ephemeral represents a volume that is handled564by a cluster storage driver. The volume's lifecycle is tied565to the pod that defines it - it will be created before the566pod starts, and deleted when the pod is removed. \n Use this567if: a) the volume is only needed while the pod runs, b) features568of normal volumes like restoring from snapshot or capacity569tracking are needed, c) the storage driver is specified through570a storage class, and d) the storage driver supports dynamic571volume provisioning through a PersistentVolumeClaim (see EphemeralVolumeSource572for more information on the connection between this volume573type and PersistentVolumeClaim). \n Use PersistentVolumeClaim574or one of the vendor-specific APIs for volumes that persist575for longer than the lifecycle of an individual pod. \n Use576CSI for light-weight local ephemeral volumes if the CSI driver577is meant to be used that way - see the documentation of the578driver for more information. \n A pod can use both types of579ephemeral volumes and persistent volumes at the same time."580properties:581volumeClaimTemplate:582description: "Will be used to create a stand-alone PVC to583provision the volume. The pod in which this EphemeralVolumeSource584is embedded will be the owner of the PVC, i.e. the PVC585will be deleted together with the pod. The name of the586PVC will be `<pod name>-<volume name>` where `<volume587name>` is the name from the `PodSpec.Volumes` array entry.588Pod validation will reject the pod if the concatenated589name is not valid for a PVC (for example, too long). \n590An existing PVC with that name that is not owned by the591pod will *not* be used for the pod to avoid using an unrelated592volume by mistake. Starting the pod is then blocked until593the unrelated PVC is removed. If such a pre-created PVC594is meant to be used by the pod, the PVC has to updated595with an owner reference to the pod once the pod exists.596Normally this should not be necessary, but it may be useful597when manually reconstructing a broken cluster. \n This598field is read-only and no changes will be made by Kubernetes599to the PVC after it has been created. \n Required, must600not be nil."601properties:602metadata:603description: May contain labels and annotations that604will be copied into the PVC when creating it. No other605fields are allowed and will be rejected during validation.606type: object607spec:608description: The specification for the PersistentVolumeClaim.609The entire content is copied unchanged into the PVC610that gets created from this template. The same fields611as in a PersistentVolumeClaim are also valid here.612properties:613accessModes:614description: 'accessModes contains the desired access615modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1'616items:617type: string618type: array619dataSource:620description: 'dataSource field can be used to specify621either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot)622* An existing PVC (PersistentVolumeClaim) If the623provisioner or an external controller can support624the specified data source, it will create a new625volume based on the contents of the specified626data source. If the AnyVolumeDataSource feature627gate is enabled, this field will always have the628same contents as the DataSourceRef field.'629properties:630apiGroup:631description: APIGroup is the group for the resource632being referenced. If APIGroup is not specified,633the specified Kind must be in the core API634group. For any other third-party types, APIGroup635is required.636type: string637kind:638description: Kind is the type of resource being639referenced640type: string641name:642description: Name is the name of resource being643referenced644type: string645required:646- kind647- name648type: object649x-kubernetes-map-type: atomic650dataSourceRef:651description: 'dataSourceRef specifies the object652from which to populate the volume with data, if653a non-empty volume is desired. This may be any654local object from a non-empty API group (non core655object) or a PersistentVolumeClaim object. When656this field is specified, volume binding will only657succeed if the type of the specified object matches658some installed volume populator or dynamic provisioner.659This field will replace the functionality of the660DataSource field and as such if both fields are661non-empty, they must have the same value. For662backwards compatibility, both fields (DataSource663and DataSourceRef) will be set to the same value664automatically if one of them is empty and the665other is non-empty. There are two important differences666between DataSource and DataSourceRef: * While667DataSource only allows two specific types of objects,668DataSourceRef allows any non-core object, as well669as PersistentVolumeClaim objects. * While DataSource670ignores disallowed values (dropping them), DataSourceRef671preserves all values, and generates an error if672a disallowed value is specified. (Beta) Using673this field requires the AnyVolumeDataSource feature674gate to be enabled.'675properties:676apiGroup:677description: APIGroup is the group for the resource678being referenced. If APIGroup is not specified,679the specified Kind must be in the core API680group. For any other third-party types, APIGroup681is required.682type: string683kind:684description: Kind is the type of resource being685referenced686type: string687name:688description: Name is the name of resource being689referenced690type: string691required:692- kind693- name694type: object695x-kubernetes-map-type: atomic696resources:697description: 'resources represents the minimum resources698the volume should have. If RecoverVolumeExpansionFailure699feature is enabled users are allowed to specify700resource requirements that are lower than previous701value but must still be higher than capacity recorded702in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources'703properties:704limits:705additionalProperties:706anyOf:707- type: integer708- type: string709pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$710x-kubernetes-int-or-string: true711description: 'Limits describes the maximum amount712of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/'713type: object714requests:715additionalProperties:716anyOf:717- type: integer718- type: string719pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$720x-kubernetes-int-or-string: true721description: 'Requests describes the minimum722amount of compute resources required. If Requests723is omitted for a container, it defaults to724Limits if that is explicitly specified, otherwise725to an implementation-defined value. More info:726https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/'727type: object728type: object729selector:730description: selector is a label query over volumes731to consider for binding.732properties:733matchExpressions:734description: matchExpressions is a list of label735selector requirements. The requirements are736ANDed.737items:738description: A label selector requirement739is a selector that contains values, a key,740and an operator that relates the key and741values.742properties:743key:744description: key is the label key that745the selector applies to.746type: string747operator:748description: operator represents a key's749relationship to a set of values. Valid750operators are In, NotIn, Exists and751DoesNotExist.752type: string753values:754description: values is an array of string755values. If the operator is In or NotIn,756the values array must be non-empty.757If the operator is Exists or DoesNotExist,758the values array must be empty. This759array is replaced during a strategic760merge patch.761items:762type: string763type: array764required:765- key766- operator767type: object768type: array769matchLabels:770additionalProperties:771type: string772description: matchLabels is a map of {key,value}773pairs. A single {key,value} in the matchLabels774map is equivalent to an element of matchExpressions,775whose key field is "key", the operator is776"In", and the values array contains only "value".777The requirements are ANDed.778type: object779type: object780x-kubernetes-map-type: atomic781storageClassName:782description: 'storageClassName is the name of the783StorageClass required by the claim. More info:784https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1'785type: string786volumeMode:787description: volumeMode defines what type of volume788is required by the claim. Value of Filesystem789is implied when not included in claim spec.790type: string791volumeName:792description: volumeName is the binding reference793to the PersistentVolume backing this claim.794type: string795type: object796required:797- spec798type: object799type: object800fc:801description: fc represents a Fibre Channel resource that is802attached to a kubelet's host machine and then exposed to the803pod.804properties:805fsType:806description: 'fsType is the filesystem type to mount. Must807be a filesystem type supported by the host operating system.808Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4"809if unspecified. TODO: how do we prevent errors in the810filesystem from compromising the machine'811type: string812lun:813description: 'lun is Optional: FC target lun number'814format: int32815type: integer816readOnly:817description: 'readOnly is Optional: Defaults to false (read/write).818ReadOnly here will force the ReadOnly setting in VolumeMounts.'819type: boolean820targetWWNs:821description: 'targetWWNs is Optional: FC target worldwide822names (WWNs)'823items:824type: string825type: array826wwids:827description: 'wwids Optional: FC volume world wide identifiers828(wwids) Either wwids or combination of targetWWNs and829lun must be set, but not both simultaneously.'830items:831type: string832type: array833type: object834flexVolume:835description: flexVolume represents a generic volume resource836that is provisioned/attached using an exec based plugin.837properties:838driver:839description: driver is the name of the driver to use for840this volume.841type: string842fsType:843description: fsType is the filesystem type to mount. Must844be a filesystem type supported by the host operating system.845Ex. "ext4", "xfs", "ntfs". The default filesystem depends846on FlexVolume script.847type: string848options:849additionalProperties:850type: string851description: 'options is Optional: this field holds extra852command options if any.'853type: object854readOnly:855description: 'readOnly is Optional: defaults to false (read/write).856ReadOnly here will force the ReadOnly setting in VolumeMounts.'857type: boolean858secretRef:859description: 'secretRef is Optional: secretRef is reference860to the secret object containing sensitive information861to pass to the plugin scripts. This may be empty if no862secret object is specified. If the secret object contains863more than one secret, all secrets are passed to the plugin864scripts.'865properties:866name:867description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names868TODO: Add other useful fields. apiVersion, kind, uid?'869type: string870type: object871x-kubernetes-map-type: atomic872required:873- driver874type: object875flocker:876description: flocker represents a Flocker volume attached to877a kubelet's host machine. This depends on the Flocker control878service being running879properties:880datasetName:881description: datasetName is Name of the dataset stored as882metadata -> name on the dataset for Flocker should be883considered as deprecated884type: string885datasetUUID:886description: datasetUUID is the UUID of the dataset. This887is unique identifier of a Flocker dataset888type: string889type: object890gcePersistentDisk:891description: 'gcePersistentDisk represents a GCE Disk resource892that is attached to a kubelet''s host machine and then exposed893to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk'894properties:895fsType:896description: 'fsType is filesystem type of the volume that897you want to mount. Tip: Ensure that the filesystem type898is supported by the host operating system. Examples: "ext4",899"xfs", "ntfs". Implicitly inferred to be "ext4" if unspecified.900More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk901TODO: how do we prevent errors in the filesystem from902compromising the machine'903type: string904partition:905description: 'partition is the partition in the volume that906you want to mount. If omitted, the default is to mount907by volume name. Examples: For volume /dev/sda1, you specify908the partition as "1". Similarly, the volume partition909for /dev/sda is "0" (or you can leave the property empty).910More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk'911format: int32912type: integer913pdName:914description: 'pdName is unique name of the PD resource in915GCE. Used to identify the disk in GCE. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk'916type: string917readOnly:918description: 'readOnly here will force the ReadOnly setting919in VolumeMounts. Defaults to false. More info: https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdisk'920type: boolean921required:922- pdName923type: object924gitRepo:925description: 'gitRepo represents a git repository at a particular926revision. DEPRECATED: GitRepo is deprecated. To provision927a container with a git repo, mount an EmptyDir into an InitContainer928that clones the repo using git, then mount the EmptyDir into929the Pod''s container.'930properties:931directory:932description: directory is the target directory name. Must933not contain or start with '..'. If '.' is supplied, the934volume directory will be the git repository. Otherwise,935if specified, the volume will contain the git repository936in the subdirectory with the given name.937type: string938repository:939description: repository is the URL940type: string941revision:942description: revision is the commit hash for the specified943revision.944type: string945required:946- repository947type: object948glusterfs:949description: 'glusterfs represents a Glusterfs mount on the950host that shares a pod''s lifetime. More info: https://examples.k8s.io/volumes/glusterfs/README.md'951properties:952endpoints:953description: 'endpoints is the endpoint name that details954Glusterfs topology. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod'955type: string956path:957description: 'path is the Glusterfs volume path. More info:958https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod'959type: string960readOnly:961description: 'readOnly here will force the Glusterfs volume962to be mounted with read-only permissions. Defaults to963false. More info: https://examples.k8s.io/volumes/glusterfs/README.md#create-a-pod'964type: boolean965required:966- endpoints967- path968type: object969hostPath:970description: 'hostPath represents a pre-existing file or directory971on the host machine that is directly exposed to the container.972This is generally used for system agents or other privileged973things that are allowed to see the host machine. Most containers974will NOT need this. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath975--- TODO(jonesdl) We need to restrict who can use host directory976mounts and who can/can not mount host directories as read/write.'977properties:978path:979description: 'path of the directory on the host. If the980path is a symlink, it will follow the link to the real981path. More info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath'982type: string983type:984description: 'type for HostPath Volume Defaults to "" More985info: https://kubernetes.io/docs/concepts/storage/volumes#hostpath'986type: string987required:988- path989type: object990iscsi:991description: 'iscsi represents an ISCSI Disk resource that is992attached to a kubelet''s host machine and then exposed to993the pod. More info: https://examples.k8s.io/volumes/iscsi/README.md'994properties:995chapAuthDiscovery:996description: chapAuthDiscovery defines whether support iSCSI997Discovery CHAP authentication998type: boolean999chapAuthSession:1000description: chapAuthSession defines whether support iSCSI1001Session CHAP authentication1002type: boolean1003fsType:1004description: 'fsType is the filesystem type of the volume1005that you want to mount. Tip: Ensure that the filesystem1006type is supported by the host operating system. Examples:1007"ext4", "xfs", "ntfs". Implicitly inferred to be "ext4"1008if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#iscsi1009TODO: how do we prevent errors in the filesystem from1010compromising the machine'1011type: string1012initiatorName:1013description: initiatorName is the custom iSCSI Initiator1014Name. If initiatorName is specified with iscsiInterface1015simultaneously, new iSCSI interface <target portal>:<volume1016name> will be created for the connection.1017type: string1018iqn:1019description: iqn is the target iSCSI Qualified Name.1020type: string1021iscsiInterface:1022description: iscsiInterface is the interface Name that uses1023an iSCSI transport. Defaults to 'default' (tcp).1024type: string1025lun:1026description: lun represents iSCSI Target Lun number.1027format: int321028type: integer1029portals:1030description: portals is the iSCSI Target Portal List. The1031portal is either an IP or ip_addr:port if the port is1032other than default (typically TCP ports 860 and 3260).1033items:1034type: string1035type: array1036readOnly:1037description: readOnly here will force the ReadOnly setting1038in VolumeMounts. Defaults to false.1039type: boolean1040secretRef:1041description: secretRef is the CHAP Secret for iSCSI target1042and initiator authentication1043properties:1044name:1045description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names1046TODO: Add other useful fields. apiVersion, kind, uid?'1047type: string1048type: object1049x-kubernetes-map-type: atomic1050targetPortal:1051description: targetPortal is iSCSI Target Portal. The Portal1052is either an IP or ip_addr:port if the port is other than1053default (typically TCP ports 860 and 3260).1054type: string1055required:1056- iqn1057- lun1058- targetPortal1059type: object1060name:1061description: 'name of the volume. Must be a DNS_LABEL and unique1062within the pod. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'1063type: string1064nfs:1065description: 'nfs represents an NFS mount on the host that shares1066a pod''s lifetime More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs'1067properties:1068path:1069description: 'path that is exported by the NFS server. More1070info: https://kubernetes.io/docs/concepts/storage/volumes#nfs'1071type: string1072readOnly:1073description: 'readOnly here will force the NFS export to1074be mounted with read-only permissions. Defaults to false.1075More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs'1076type: boolean1077server:1078description: 'server is the hostname or IP address of the1079NFS server. More info: https://kubernetes.io/docs/concepts/storage/volumes#nfs'1080type: string1081required:1082- path1083- server1084type: object1085persistentVolumeClaim:1086description: 'persistentVolumeClaimVolumeSource represents a1087reference to a PersistentVolumeClaim in the same namespace.1088More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims'1089properties:1090claimName:1091description: 'claimName is the name of a PersistentVolumeClaim1092in the same namespace as the pod using this volume. More1093info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims'1094type: string1095readOnly:1096description: readOnly Will force the ReadOnly setting in1097VolumeMounts. Default false.1098type: boolean1099required:1100- claimName1101type: object1102photonPersistentDisk:1103description: photonPersistentDisk represents a PhotonController1104persistent disk attached and mounted on kubelets host machine1105properties:1106fsType:1107description: fsType is the filesystem type to mount. Must1108be a filesystem type supported by the host operating system.1109Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4"1110if unspecified.1111type: string1112pdID:1113description: pdID is the ID that identifies Photon Controller1114persistent disk1115type: string1116required:1117- pdID1118type: object1119portworxVolume:1120description: portworxVolume represents a portworx volume attached1121and mounted on kubelets host machine1122properties:1123fsType:1124description: fSType represents the filesystem type to mount1125Must be a filesystem type supported by the host operating1126system. Ex. "ext4", "xfs". Implicitly inferred to be "ext4"1127if unspecified.1128type: string1129readOnly:1130description: readOnly defaults to false (read/write). ReadOnly1131here will force the ReadOnly setting in VolumeMounts.1132type: boolean1133volumeID:1134description: volumeID uniquely identifies a Portworx volume1135type: string1136required:1137- volumeID1138type: object1139projected:1140description: projected items for all in one resources secrets,1141configmaps, and downward API1142properties:1143defaultMode:1144description: defaultMode are the mode bits used to set permissions1145on created files by default. Must be an octal value between11460000 and 0777 or a decimal value between 0 and 511. YAML1147accepts both octal and decimal values, JSON requires decimal1148values for mode bits. Directories within the path are1149not affected by this setting. This might be in conflict1150with other options that affect the file mode, like fsGroup,1151and the result can be other mode bits set.1152format: int321153type: integer1154sources:1155description: sources is the list of volume projections1156items:1157description: Projection that may be projected along with1158other supported volume types1159properties:1160configMap:1161description: configMap information about the configMap1162data to project1163properties:1164items:1165description: items if unspecified, each key-value1166pair in the Data field of the referenced ConfigMap1167will be projected into the volume as a file1168whose name is the key and content is the value.1169If specified, the listed keys will be projected1170into the specified paths, and unlisted keys1171will not be present. If a key is specified which1172is not present in the ConfigMap, the volume1173setup will error unless it is marked optional.1174Paths must be relative and may not contain the1175'..' path or start with '..'.1176items:1177description: Maps a string key to a path within1178a volume.1179properties:1180key:1181description: key is the key to project.1182type: string1183mode:1184description: 'mode is Optional: mode bits1185used to set permissions on this file.1186Must be an octal value between 0000 and11870777 or a decimal value between 0 and1188511. YAML accepts both octal and decimal1189values, JSON requires decimal values for1190mode bits. If not specified, the volume1191defaultMode will be used. This might be1192in conflict with other options that affect1193the file mode, like fsGroup, and the result1194can be other mode bits set.'1195format: int321196type: integer1197path:1198description: path is the relative path of1199the file to map the key to. May not be1200an absolute path. May not contain the1201path element '..'. May not start with1202the string '..'.1203type: string1204required:1205- key1206- path1207type: object1208type: array1209name:1210description: 'Name of the referent. More info:1211https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names1212TODO: Add other useful fields. apiVersion, kind,1213uid?'1214type: string1215optional:1216description: optional specify whether the ConfigMap1217or its keys must be defined1218type: boolean1219type: object1220x-kubernetes-map-type: atomic1221downwardAPI:1222description: downwardAPI information about the downwardAPI1223data to project1224properties:1225items:1226description: Items is a list of DownwardAPIVolume1227file1228items:1229description: DownwardAPIVolumeFile represents1230information to create the file containing1231the pod field1232properties:1233fieldRef:1234description: 'Required: Selects a field1235of the pod: only annotations, labels,1236name and namespace are supported.'1237properties:1238apiVersion:1239description: Version of the schema the1240FieldPath is written in terms of,1241defaults to "v1".1242type: string1243fieldPath:1244description: Path of the field to select1245in the specified API version.1246type: string1247required:1248- fieldPath1249type: object1250x-kubernetes-map-type: atomic1251mode:1252description: 'Optional: mode bits used to1253set permissions on this file, must be1254an octal value between 0000 and 0777 or1255a decimal value between 0 and 511. YAML1256accepts both octal and decimal values,1257JSON requires decimal values for mode1258bits. If not specified, the volume defaultMode1259will be used. This might be in conflict1260with other options that affect the file1261mode, like fsGroup, and the result can1262be other mode bits set.'1263format: int321264type: integer1265path:1266description: 'Required: Path is the relative1267path name of the file to be created. Must1268not be absolute or contain the ''..''1269path. Must be utf-8 encoded. The first1270item of the relative path must not start1271with ''..'''1272type: string1273resourceFieldRef:1274description: 'Selects a resource of the1275container: only resources limits and requests1276(limits.cpu, limits.memory, requests.cpu1277and requests.memory) are currently supported.'1278properties:1279containerName:1280description: 'Container name: required1281for volumes, optional for env vars'1282type: string1283divisor:1284anyOf:1285- type: integer1286- type: string1287description: Specifies the output format1288of the exposed resources, defaults1289to "1"1290pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$1291x-kubernetes-int-or-string: true1292resource:1293description: 'Required: resource to1294select'1295type: string1296required:1297- resource1298type: object1299x-kubernetes-map-type: atomic1300required:1301- path1302type: object1303type: array1304type: object1305secret:1306description: secret information about the secret data1307to project1308properties:1309items:1310description: items if unspecified, each key-value1311pair in the Data field of the referenced Secret1312will be projected into the volume as a file1313whose name is the key and content is the value.1314If specified, the listed keys will be projected1315into the specified paths, and unlisted keys1316will not be present. If a key is specified which1317is not present in the Secret, the volume setup1318will error unless it is marked optional. Paths1319must be relative and may not contain the '..'1320path or start with '..'.1321items:1322description: Maps a string key to a path within1323a volume.1324properties:1325key:1326description: key is the key to project.1327type: string1328mode:1329description: 'mode is Optional: mode bits1330used to set permissions on this file.1331Must be an octal value between 0000 and13320777 or a decimal value between 0 and1333511. YAML accepts both octal and decimal1334values, JSON requires decimal values for1335mode bits. If not specified, the volume1336defaultMode will be used. This might be1337in conflict with other options that affect1338the file mode, like fsGroup, and the result1339can be other mode bits set.'1340format: int321341type: integer1342path:1343description: path is the relative path of1344the file to map the key to. May not be1345an absolute path. May not contain the1346path element '..'. May not start with1347the string '..'.1348type: string1349required:1350- key1351- path1352type: object1353type: array1354name:1355description: 'Name of the referent. More info:1356https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names1357TODO: Add other useful fields. apiVersion, kind,1358uid?'1359type: string1360optional:1361description: optional field specify whether the1362Secret or its key must be defined1363type: boolean1364type: object1365x-kubernetes-map-type: atomic1366serviceAccountToken:1367description: serviceAccountToken is information about1368the serviceAccountToken data to project1369properties:1370audience:1371description: audience is the intended audience1372of the token. A recipient of a token must identify1373itself with an identifier specified in the audience1374of the token, and otherwise should reject the1375token. The audience defaults to the identifier1376of the apiserver.1377type: string1378expirationSeconds:1379description: expirationSeconds is the requested1380duration of validity of the service account1381token. As the token approaches expiration, the1382kubelet volume plugin will proactively rotate1383the service account token. The kubelet will1384start trying to rotate the token if the token1385is older than 80 percent of its time to live1386or if the token is older than 24 hours.Defaults1387to 1 hour and must be at least 10 minutes.1388format: int641389type: integer1390path:1391description: path is the path relative to the1392mount point of the file to project the token1393into.1394type: string1395required:1396- path1397type: object1398type: object1399type: array1400type: object1401quobyte:1402description: quobyte represents a Quobyte mount on the host1403that shares a pod's lifetime1404properties:1405group:1406description: group to map volume access to Default is no1407group1408type: string1409readOnly:1410description: readOnly here will force the Quobyte volume1411to be mounted with read-only permissions. Defaults to1412false.1413type: boolean1414registry:1415description: registry represents a single or multiple Quobyte1416Registry services specified as a string as host:port pair1417(multiple entries are separated with commas) which acts1418as the central registry for volumes1419type: string1420tenant:1421description: tenant owning the given Quobyte volume in the1422Backend Used with dynamically provisioned Quobyte volumes,1423value is set by the plugin1424type: string1425user:1426description: user to map volume access to Defaults to serivceaccount1427user1428type: string1429volume:1430description: volume is a string that references an already1431created Quobyte volume by name.1432type: string1433required:1434- registry1435- volume1436type: object1437rbd:1438description: 'rbd represents a Rados Block Device mount on the1439host that shares a pod''s lifetime. More info: https://examples.k8s.io/volumes/rbd/README.md'1440properties:1441fsType:1442description: 'fsType is the filesystem type of the volume1443that you want to mount. Tip: Ensure that the filesystem1444type is supported by the host operating system. Examples:1445"ext4", "xfs", "ntfs". Implicitly inferred to be "ext4"1446if unspecified. More info: https://kubernetes.io/docs/concepts/storage/volumes#rbd1447TODO: how do we prevent errors in the filesystem from1448compromising the machine'1449type: string1450image:1451description: 'image is the rados image name. More info:1452https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it'1453type: string1454keyring:1455description: 'keyring is the path to key ring for RBDUser.1456Default is /etc/ceph/keyring. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it'1457type: string1458monitors:1459description: 'monitors is a collection of Ceph monitors.1460More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it'1461items:1462type: string1463type: array1464pool:1465description: 'pool is the rados pool name. Default is rbd.1466More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it'1467type: string1468readOnly:1469description: 'readOnly here will force the ReadOnly setting1470in VolumeMounts. Defaults to false. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it'1471type: boolean1472secretRef:1473description: 'secretRef is name of the authentication secret1474for RBDUser. If provided overrides keyring. Default is1475nil. More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it'1476properties:1477name:1478description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names1479TODO: Add other useful fields. apiVersion, kind, uid?'1480type: string1481type: object1482x-kubernetes-map-type: atomic1483user:1484description: 'user is the rados user name. Default is admin.1485More info: https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it'1486type: string1487required:1488- image1489- monitors1490type: object1491scaleIO:1492description: scaleIO represents a ScaleIO persistent volume1493attached and mounted on Kubernetes nodes.1494properties:1495fsType:1496description: fsType is the filesystem type to mount. Must1497be a filesystem type supported by the host operating system.1498Ex. "ext4", "xfs", "ntfs". Default is "xfs".1499type: string1500gateway:1501description: gateway is the host address of the ScaleIO1502API Gateway.1503type: string1504protectionDomain:1505description: protectionDomain is the name of the ScaleIO1506Protection Domain for the configured storage.1507type: string1508readOnly:1509description: readOnly Defaults to false (read/write). ReadOnly1510here will force the ReadOnly setting in VolumeMounts.1511type: boolean1512secretRef:1513description: secretRef references to the secret for ScaleIO1514user and other sensitive information. If this is not provided,1515Login operation will fail.1516properties:1517name:1518description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names1519TODO: Add other useful fields. apiVersion, kind, uid?'1520type: string1521type: object1522x-kubernetes-map-type: atomic1523sslEnabled:1524description: sslEnabled Flag enable/disable SSL communication1525with Gateway, default false1526type: boolean1527storageMode:1528description: storageMode indicates whether the storage for1529a volume should be ThickProvisioned or ThinProvisioned.1530Default is ThinProvisioned.1531type: string1532storagePool:1533description: storagePool is the ScaleIO Storage Pool associated1534with the protection domain.1535type: string1536system:1537description: system is the name of the storage system as1538configured in ScaleIO.1539type: string1540volumeName:1541description: volumeName is the name of a volume already1542created in the ScaleIO system that is associated with1543this volume source.1544type: string1545required:1546- gateway1547- secretRef1548- system1549type: object1550secret:1551description: 'secret represents a secret that should populate1552this volume. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret'1553properties:1554defaultMode:1555description: 'defaultMode is Optional: mode bits used to1556set permissions on created files by default. Must be an1557octal value between 0000 and 0777 or a decimal value between15580 and 511. YAML accepts both octal and decimal values,1559JSON requires decimal values for mode bits. Defaults to15600644. Directories within the path are not affected by1561this setting. This might be in conflict with other options1562that affect the file mode, like fsGroup, and the result1563can be other mode bits set.'1564format: int321565type: integer1566items:1567description: items If unspecified, each key-value pair in1568the Data field of the referenced Secret will be projected1569into the volume as a file whose name is the key and content1570is the value. If specified, the listed keys will be projected1571into the specified paths, and unlisted keys will not be1572present. If a key is specified which is not present in1573the Secret, the volume setup will error unless it is marked1574optional. Paths must be relative and may not contain the1575'..' path or start with '..'.1576items:1577description: Maps a string key to a path within a volume.1578properties:1579key:1580description: key is the key to project.1581type: string1582mode:1583description: 'mode is Optional: mode bits used to1584set permissions on this file. Must be an octal value1585between 0000 and 0777 or a decimal value between15860 and 511. YAML accepts both octal and decimal values,1587JSON requires decimal values for mode bits. If not1588specified, the volume defaultMode will be used.1589This might be in conflict with other options that1590affect the file mode, like fsGroup, and the result1591can be other mode bits set.'1592format: int321593type: integer1594path:1595description: path is the relative path of the file1596to map the key to. May not be an absolute path.1597May not contain the path element '..'. May not start1598with the string '..'.1599type: string1600required:1601- key1602- path1603type: object1604type: array1605optional:1606description: optional field specify whether the Secret or1607its keys must be defined1608type: boolean1609secretName:1610description: 'secretName is the name of the secret in the1611pod''s namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret'1612type: string1613type: object1614storageos:1615description: storageOS represents a StorageOS volume attached1616and mounted on Kubernetes nodes.1617properties:1618fsType:1619description: fsType is the filesystem type to mount. Must1620be a filesystem type supported by the host operating system.1621Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4"1622if unspecified.1623type: string1624readOnly:1625description: readOnly defaults to false (read/write). ReadOnly1626here will force the ReadOnly setting in VolumeMounts.1627type: boolean1628secretRef:1629description: secretRef specifies the secret to use for obtaining1630the StorageOS API credentials. If not specified, default1631values will be attempted.1632properties:1633name:1634description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names1635TODO: Add other useful fields. apiVersion, kind, uid?'1636type: string1637type: object1638x-kubernetes-map-type: atomic1639volumeName:1640description: volumeName is the human-readable name of the1641StorageOS volume. Volume names are only unique within1642a namespace.1643type: string1644volumeNamespace:1645description: volumeNamespace specifies the scope of the1646volume within StorageOS. If no namespace is specified1647then the Pod's namespace will be used. This allows the1648Kubernetes name scoping to be mirrored within StorageOS1649for tighter integration. Set VolumeName to any name to1650override the default behaviour. Set to "default" if you1651are not using namespaces within StorageOS. Namespaces1652that do not pre-exist within StorageOS will be created.1653type: string1654type: object1655vsphereVolume:1656description: vsphereVolume represents a vSphere volume attached1657and mounted on kubelets host machine1658properties:1659fsType:1660description: fsType is filesystem type to mount. Must be1661a filesystem type supported by the host operating system.1662Ex. "ext4", "xfs", "ntfs". Implicitly inferred to be "ext4"1663if unspecified.1664type: string1665storagePolicyID:1666description: storagePolicyID is the storage Policy Based1667Management (SPBM) profile ID associated with the StoragePolicyName.1668type: string1669storagePolicyName:1670description: storagePolicyName is the storage Policy Based1671Management (SPBM) profile name.1672type: string1673volumePath:1674description: volumePath is the path that identifies vSphere1675volume vmdk1676type: string1677required:1678- volumePath1679type: object1680required:1681- name1682type: object1683type: array1684required:1685- config1686- name1687- type1688type: object1689type: object1690served: true1691storage: true169216931694