140 lines
6.1 KiB
YAML
140 lines
6.1 KiB
YAML
apiVersion: apiextensions.k8s.io/v1
|
|
kind: CustomResourceDefinition
|
|
metadata:
|
|
annotations:
|
|
controller-gen.kubebuilder.io/version: v0.15.0
|
|
labels:
|
|
app.kubernetes.io/name: airlock-microgateway-operator
|
|
app.kubernetes.io/version: 4.3.0
|
|
name: contentsecurities.microgateway.airlock.com
|
|
spec:
|
|
group: microgateway.airlock.com
|
|
names:
|
|
categories:
|
|
- airlock-microgateway
|
|
kind: ContentSecurity
|
|
listKind: ContentSecurityList
|
|
plural: contentsecurities
|
|
singular: contentsecurity
|
|
scope: Namespaced
|
|
versions:
|
|
- additionalPrinterColumns:
|
|
- jsonPath: .metadata.creationTimestamp
|
|
name: Age
|
|
type: date
|
|
name: v1alpha1
|
|
schema:
|
|
openAPIV3Schema:
|
|
description: ContentSecurity specifies the options to secure an upstream web application with a Microgateway Engine container.
|
|
properties:
|
|
apiVersion:
|
|
description: |-
|
|
APIVersion defines the versioned schema of this representation of an object.
|
|
Servers should convert recognized schemas to the latest internal value, and
|
|
may reject unrecognized values.
|
|
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
|
|
type: string
|
|
kind:
|
|
description: |-
|
|
Kind is a string value representing the REST resource this object represents.
|
|
Servers may infer this from the endpoint the client submits requests to.
|
|
Cannot be updated.
|
|
In CamelCase.
|
|
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
|
|
type: string
|
|
metadata:
|
|
type: object
|
|
spec:
|
|
description: Specifies the options to secure an upstream web application with a Microgateway Engine container.
|
|
properties:
|
|
apiProtection:
|
|
description: |-
|
|
APIProtection defines the relevant configurations to protect APIs.
|
|
If undefined, default settings are applied, designed to work with most upstream web application services.
|
|
properties:
|
|
graphQLRef:
|
|
description: |-
|
|
GraphQLRef selects the relevant GraphQL configuration resource.
|
|
If undefined, default settings are applied, designed to work with most upstream web application services.
|
|
properties:
|
|
name:
|
|
description: Name of the resource
|
|
minLength: 1
|
|
type: string
|
|
required:
|
|
- name
|
|
type: object
|
|
openAPIRef:
|
|
description: |-
|
|
OpenAPIRef selects the relevant OpenAPI configuration resource.
|
|
If undefined, default settings are applied, designed to work with most upstream web application services.
|
|
properties:
|
|
name:
|
|
description: Name of the resource
|
|
minLength: 1
|
|
type: string
|
|
required:
|
|
- name
|
|
type: object
|
|
type: object
|
|
filter:
|
|
description: |-
|
|
Filter defines the set of filters, e.g. Airlock Deny Rules, to be applied to incoming requests
|
|
to protect against various attack patterns.
|
|
If undefined, default settings are applied, designed to work with most upstream web application services.
|
|
properties:
|
|
denyRulesRef:
|
|
description: |-
|
|
DenyRulesRef selects the relevant DenyRules configuration resource.
|
|
If undefined, default settings are applied, designed to work with most upstream web application services.
|
|
properties:
|
|
name:
|
|
description: Name of the resource
|
|
minLength: 1
|
|
type: string
|
|
required:
|
|
- name
|
|
type: object
|
|
type: object
|
|
headerRewritesRef:
|
|
description: |-
|
|
HeaderRewritesRef selects the relevant HeaderRewrites.
|
|
If undefined, default settings are applied, designed to work with most upstream web application services.
|
|
properties:
|
|
name:
|
|
description: Name of the resource
|
|
minLength: 1
|
|
type: string
|
|
required:
|
|
- name
|
|
type: object
|
|
limitsRef:
|
|
description: |-
|
|
LimitsRef selects the relevant Limits configuration resource.
|
|
If undefined, default settings are applied, designed to work with most upstream web application services.
|
|
properties:
|
|
name:
|
|
description: Name of the resource
|
|
minLength: 1
|
|
type: string
|
|
required:
|
|
- name
|
|
type: object
|
|
parserRef:
|
|
description: |-
|
|
ParserRef selects the relevant Parser configuration resource.
|
|
If undefined, default settings are applied, designed to work with most upstream web application services.
|
|
properties:
|
|
name:
|
|
description: Name of the resource
|
|
minLength: 1
|
|
type: string
|
|
required:
|
|
- name
|
|
type: object
|
|
type: object
|
|
type: object
|
|
served: true
|
|
storage: true
|
|
subresources: {}
|