205 lines
7.9 KiB
YAML
205 lines
7.9 KiB
YAML
---
|
|
apiVersion: apiextensions.k8s.io/v1
|
|
kind: CustomResourceDefinition
|
|
metadata:
|
|
annotations:
|
|
controller-gen.kubebuilder.io/version: v0.9.2
|
|
creationTimestamp: null
|
|
name: tlsedges.ingress.k8s.ngrok.com
|
|
spec:
|
|
group: ingress.k8s.ngrok.com
|
|
names:
|
|
kind: TLSEdge
|
|
listKind: TLSEdgeList
|
|
plural: tlsedges
|
|
singular: tlsedge
|
|
scope: Namespaced
|
|
versions:
|
|
- additionalPrinterColumns:
|
|
- description: Domain ID
|
|
jsonPath: .status.id
|
|
name: ID
|
|
type: string
|
|
- description: Hostports
|
|
jsonPath: .status.hostports
|
|
name: Hostports
|
|
type: string
|
|
- description: Tunnel Group Backend ID
|
|
jsonPath: .status.backend.id
|
|
name: Backend ID
|
|
type: string
|
|
- description: Age
|
|
jsonPath: .metadata.creationTimestamp
|
|
name: Age
|
|
type: date
|
|
name: v1alpha1
|
|
schema:
|
|
openAPIV3Schema:
|
|
description: TLSEdge is the Schema for the tlsedges API
|
|
properties:
|
|
apiVersion:
|
|
description: 'APIVersion defines the versioned schema of this representation
|
|
of an object. Servers should convert recognized schemas to the latest
|
|
internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
|
|
type: string
|
|
kind:
|
|
description: 'Kind is a string value representing the REST resource this
|
|
object represents. Servers may infer this from the endpoint the client
|
|
submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
|
|
type: string
|
|
metadata:
|
|
type: object
|
|
spec:
|
|
description: TLSEdgeSpec defines the desired state of TLSEdge
|
|
properties:
|
|
backend:
|
|
description: Backend is the definition for the tunnel group backend
|
|
that serves traffic for this edge
|
|
properties:
|
|
description:
|
|
default: Created by kubernetes-ingress-controller
|
|
description: Description is a human-readable description of the
|
|
object in the ngrok API/Dashboard
|
|
type: string
|
|
labels:
|
|
additionalProperties:
|
|
type: string
|
|
description: Labels to watch for tunnels on this backend
|
|
type: object
|
|
metadata:
|
|
default: '{"owned-by":"kubernetes-ingress-controller"}'
|
|
description: Metadata is a string of arbitrary data associated
|
|
with the object in the ngrok API/Dashboard
|
|
type: string
|
|
type: object
|
|
description:
|
|
default: Created by kubernetes-ingress-controller
|
|
description: Description is a human-readable description of the object
|
|
in the ngrok API/Dashboard
|
|
type: string
|
|
hostports:
|
|
description: Hostports is a list of hostports served by this edge
|
|
items:
|
|
type: string
|
|
type: array
|
|
ipRestriction:
|
|
description: IPRestriction is an IPRestriction to apply to this edge
|
|
properties:
|
|
policies:
|
|
items:
|
|
type: string
|
|
type: array
|
|
type: object
|
|
metadata:
|
|
default: '{"owned-by":"kubernetes-ingress-controller"}'
|
|
description: Metadata is a string of arbitrary data associated with
|
|
the object in the ngrok API/Dashboard
|
|
type: string
|
|
mutualTls:
|
|
properties:
|
|
certificateAuthorities:
|
|
description: List of CA IDs that will be used to validate incoming
|
|
connections to the edge.
|
|
items:
|
|
type: string
|
|
type: array
|
|
type: object
|
|
policy:
|
|
properties:
|
|
enabled:
|
|
description: Determines if the rule will be applied to traffic
|
|
type: boolean
|
|
inbound:
|
|
description: Inbound traffic rule
|
|
items:
|
|
properties:
|
|
actions:
|
|
description: Actions
|
|
items:
|
|
properties:
|
|
config:
|
|
type: object
|
|
x-kubernetes-preserve-unknown-fields: true
|
|
type:
|
|
type: string
|
|
type: object
|
|
type: array
|
|
expressions:
|
|
description: Expressions
|
|
items:
|
|
type: string
|
|
type: array
|
|
name:
|
|
description: Name
|
|
type: string
|
|
type: object
|
|
type: array
|
|
outbound:
|
|
description: Outbound traffic rule
|
|
items:
|
|
properties:
|
|
actions:
|
|
description: Actions
|
|
items:
|
|
properties:
|
|
config:
|
|
type: object
|
|
x-kubernetes-preserve-unknown-fields: true
|
|
type:
|
|
type: string
|
|
type: object
|
|
type: array
|
|
expressions:
|
|
description: Expressions
|
|
items:
|
|
type: string
|
|
type: array
|
|
name:
|
|
description: Name
|
|
type: string
|
|
type: object
|
|
type: array
|
|
type: object
|
|
tlsTermination:
|
|
properties:
|
|
minVersion:
|
|
description: MinVersion is the minimum TLS version to allow for
|
|
connections to the edge
|
|
type: string
|
|
terminateAt:
|
|
description: TerminateAt determines where the TLS connection should
|
|
be terminated. "edge" if the ngrok edge should terminate TLS
|
|
traffic, "upstream" if TLS traffic should be passed through
|
|
to the upstream ngrok agent / application server for termination.
|
|
type: string
|
|
type: object
|
|
type: object
|
|
status:
|
|
description: TLSEdgeStatus defines the observed state of TLSEdge
|
|
properties:
|
|
backend:
|
|
description: Backend stores the status of the tunnel group backend,
|
|
mainly the ID of the backend
|
|
properties:
|
|
id:
|
|
description: ID is the unique identifier for this backend
|
|
type: string
|
|
type: object
|
|
hostports:
|
|
description: Hostports served by this edge
|
|
items:
|
|
type: string
|
|
type: array
|
|
id:
|
|
description: ID is the unique identifier for this edge
|
|
type: string
|
|
uri:
|
|
description: URI is the URI of the edge
|
|
type: string
|
|
type: object
|
|
type: object
|
|
served: true
|
|
storage: true
|
|
subresources:
|
|
status: {}
|