UNPKG

cdktf-crd

Version:

github.com/glacion/cdktf-typescript-crd

glacion/cdktf-typescript-crd

305 lines (304 loc) 17.6 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
import { Construct } from "constructs"; import { Manifest, type ManifestConfig } from "@cdktn/provider-kubernetes/lib/manifest"; export declare class EdgecontainerCnrmCloudGoogleComEdgeContainerClusterV1beta1 extends Manifest { constructor(scope: Construct, id: string, config: EdgecontainerCnrmCloudGoogleComEdgeContainerClusterV1beta1Config); } export interface EdgecontainerCnrmCloudGoogleComEdgeContainerClusterV1beta1Config extends ManifestConfig { manifest: { apiVersion: "edgecontainer.cnrm.cloud.google.com/v1beta1"; kind: "EdgeContainerCluster"; metadata: { annotations?: { [key: string]: string; }; labels?: { [key: string]: string; }; name: string; namespace?: string; }; spec: { /** @description Immutable. RBAC policy that will be applied and managed by GEC. */ authorization: { /** * @description User that will be granted the cluster-admin role on the cluster, providing * full access to the cluster. Currently, this is a singular field, but will * be expanded to allow multiple admins in the future. */ adminUsers: { usernameRef: { /** @description Allowed value: The `email` field of an `IAMServiceAccount` resource. */ external?: string; /** @description Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names */ name?: string; /** @description Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ */ namespace?: string; } & (unknown | unknown); }; }; /** @description The configuration of the cluster control plane. */ controlPlane?: { /** @description Immutable. Local control plane configuration. */ local?: { /** * @description Only machines matching this filter will be allowed to host control * plane nodes. The filtering language accepts strings like "name=<name>", * and is documented here: [AIP-160](https://google.aip.dev/160). */ machineFilter?: string; /** * @description The number of nodes to serve as replicas of the Control Plane. * Only 1 and 3 are supported. */ nodeCount?: number; /** * @description Immutable. Name of the Google Distributed Cloud Edge zones where this node pool * will be created. For example: 'us-central1-edge-customer-a'. */ nodeLocation?: string; /** @description Policy configuration about how user applications are deployed. Possible values: ["SHARED_DEPLOYMENT_POLICY_UNSPECIFIED", "ALLOWED", "DISALLOWED"]. */ sharedDeploymentPolicy?: string; }; /** @description Immutable. Remote control plane configuration. */ remote?: { /** * @description Immutable. Name of the Google Distributed Cloud Edge zones where this node pool * will be created. For example: 'us-central1-edge-customer-a'. */ nodeLocation?: string; }; }; /** * @description Remote control plane disk encryption options. This field is only used when * enabling CMEK support. */ controlPlaneEncryption?: { /** * @description The Cloud KMS CryptoKeyVersion currently in use for protecting control * plane disks. Only applicable if kms_key is set. */ kmsKeyActiveVersion?: string; kmsKeyRef?: { /** @description Allowed value: The `selfLink` field of a `KMSCryptoKey` resource. */ external?: string; /** @description Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names */ name?: string; /** @description Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ */ namespace?: string; } & (unknown | unknown); /** * @description Availability of the Cloud KMS CryptoKey. If not 'KEY_AVAILABLE', then * nodes may go offline as they cannot access their local data. This can be * caused by a lack of permissions to use the key, or if the key is disabled * or deleted. */ kmsKeyState?: string; /** * @description Error status returned by Cloud KMS when using this key. This field may be * populated only if 'kms_key_state' is not 'KMS_KEY_STATE_KEY_AVAILABLE'. * If populated, this field contains the error status reported by Cloud KMS. */ kmsStatus?: { /** @description The status code, which should be an enum value of google.rpc.Code. */ code?: number; /** @description A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client. */ message?: string; }[]; }; /** * @description The default maximum number of pods per node used if a maximum value is not * specified explicitly for a node pool in this cluster. If unspecified, the * Kubernetes default value will be used. */ defaultMaxPodsPerNode?: number; /** @description Address pools for cluster data plane external load balancing. */ externalLoadBalancerIpv4AddressPools?: string[]; /** * @description Immutable. Fleet related configuration. * Fleets are a Google Cloud concept for logically organizing clusters, * letting you use and manage multi-cluster capabilities and apply * consistent policies across your systems. */ fleet: { /** * @description The name of the managed Hub Membership resource associated to this cluster. * Membership names are formatted as * 'projects/<project-number>/locations/global/membership/<cluster-id>'. */ membership?: string; /** @description The number of the Fleet host project where this cluster will be registered. */ projectRef: { /** @description Allowed value: string of the format `projects/{{value}}`, where {{value}} is the `number` field of a `Project` resource. */ external?: string; /** @description Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names */ name?: string; /** @description Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ */ namespace?: string; } & (unknown | unknown); }; /** @description Immutable. The location of the resource. */ location: string; /** @description Cluster-wide maintenance policy configuration. */ maintenancePolicy?: { /** @description Specifies the maintenance window in which maintenance may be performed. */ window: { /** @description Represents an arbitrary window of time that recurs. */ recurringWindow: { /** * @description An RRULE (https://tools.ietf.org/html/rfc5545#section-3.8.5.3) for how * this window recurs. They go on for the span of time between the start and * end time. */ recurrence?: string; /** @description Represents an arbitrary window of time. */ window?: { /** * @description The time that the window ends. The end time must take place after the * start time. */ endTime?: string; /** @description The time that the window first starts. */ startTime?: string; }; }; }; }; /** * @description Fleet related configuration. * Fleets are a Google Cloud concept for logically organizing clusters, * letting you use and manage multi-cluster capabilities and apply * consistent policies across your systems. */ networking: { /** * @description Immutable. All pods in the cluster are assigned an RFC1918 IPv4 address from these * blocks. Only a single block is supported. This field cannot be changed * after creation. */ clusterIpv4CidrBlocks: string[]; /** * @description Immutable. If specified, dual stack mode is enabled and all pods in the cluster are * assigned an IPv6 address from these blocks alongside from an IPv4 * address. Only a single block is supported. This field cannot be changed * after creation. */ clusterIpv6CidrBlocks?: string[]; /** @description IP addressing type of this cluster i.e. SINGLESTACK_V4 vs DUALSTACK_V4_V6. */ networkType?: string; /** * @description Immutable. All services in the cluster are assigned an RFC1918 IPv4 address from these * blocks. Only a single block is supported. This field cannot be changed * after creation. */ servicesIpv4CidrBlocks: string[]; /** * @description Immutable. If specified, dual stack mode is enabled and all services in the cluster are * assigned an IPv6 address from these blocks alongside from an IPv4 * address. Only a single block is supported. This field cannot be changed * after creation. */ servicesIpv6CidrBlocks?: string[]; }; /** @description The project that this resource belongs to. */ projectRef: { /** @description Allowed value: The `name` field of a `Project` resource. */ external?: string; /** @description Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names */ name?: string; /** @description Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/ */ namespace?: string; } & (unknown | unknown); /** @description The release channel a cluster is subscribed to. Possible values: ["RELEASE_CHANNEL_UNSPECIFIED", "NONE", "REGULAR"]. */ releaseChannel?: string; /** @description Immutable. Optional. The name of the resource. Used for creation and acquisition. When unset, the value of `metadata.name` is used as the default. */ resourceID?: string; /** @description Config that customers are allowed to define for GDCE system add-ons. */ systemAddonsConfig?: { /** * @description Config for the Ingress add-on which allows customers to create an Ingress * object to manage external access to the servers in a cluster. The add-on * consists of istiod and istio-ingress. */ ingress?: { /** @description Whether Ingress is disabled. */ disabled?: boolean; /** @description Ingress VIP. */ ipv4Vip?: string; }; }; /** @description The target cluster version. For example: "1.5.0". */ targetVersion?: string; }; status?: { /** @description The PEM-encoded public certificate of the cluster's CA. */ clusterCaCertificate?: string; /** @description Conditions represent the latest available observation of the resource's current state. */ conditions?: { /** @description Last time the condition transitioned from one status to another. */ lastTransitionTime?: string; /** @description Human-readable message indicating details about last transition. */ message?: string; /** @description Unique, one-word, CamelCase reason for the condition's last transition. */ reason?: string; /** @description Status is the status of the condition. Can be True, False, Unknown. */ status?: string; /** @description Type is the type of the condition. */ type?: string; }[]; /** @description The control plane release version. */ controlPlaneVersion?: string; /** @description The time the cluster was created, in RFC3339 text format. */ createTime?: string; /** @description The IP address of the Kubernetes API server. */ endpoint?: string; /** * @description All the maintenance events scheduled for the cluster, including the ones * ongoing, planned for the future and done in the past (up to 90 days). */ maintenanceEvents?: { /** @description The time when the maintenance event request was created. */ createTime?: string; /** * @description The time when the maintenance event ended, either successfully or not. If * the maintenance event is split into multiple maintenance windows, * end_time is only updated when the whole flow ends. */ endTime?: string; /** * @description The operation for running the maintenance event. Specified in the format * projects/*\/locations/*\/operations/*. If the maintenance event is split * into multiple operations (e.g. due to maintenance windows), the latest * one is recorded. */ operation?: string; /** @description The schedule of the maintenance event. */ schedule?: string; /** @description The time when the maintenance event started. */ startTime?: string; /** @description Indicates the maintenance event state. */ state?: string; /** @description The target version of the cluster. */ targetVersion?: string; /** @description Indicates the maintenance event type. */ type?: string; /** @description The time when the maintenance event message was updated. */ updateTime?: string; /** @description UUID of the maintenance event. */ uuid?: string; }[]; /** * @description The lowest release version among all worker nodes. This field can be empty * if the cluster does not have any worker nodes. */ nodeVersion?: string; /** @description ObservedGeneration is the generation of the resource that was most recently observed by the Config Connector controller. If this is equal to metadata.generation, then that means that the current reported status reflects the most recent desired state of the resource. */ observedGeneration?: number; /** @description The port number of the Kubernetes API server. */ port?: number; /** @description Indicates the status of the cluster. */ status?: string; /** @description The time the cluster was last updated, in RFC3339 text format. */ updateTime?: string; }; }; }