168 lines
7.9 KiB
YAML
168 lines
7.9 KiB
YAML
apiVersion: apiextensions.k8s.io/v1
|
|
kind: CustomResourceDefinition
|
|
metadata:
|
|
annotations:
|
|
controller-gen.kubebuilder.io/version: v0.15.0
|
|
labels:
|
|
app.kubernetes.io/name: airlock-microgateway-operator
|
|
app.kubernetes.io/version: 4.3.0
|
|
name: openapis.microgateway.airlock.com
|
|
spec:
|
|
group: microgateway.airlock.com
|
|
names:
|
|
categories:
|
|
- airlock-microgateway
|
|
kind: OpenAPI
|
|
listKind: OpenAPIList
|
|
plural: openapis
|
|
singular: openapi
|
|
scope: Namespaced
|
|
versions:
|
|
- name: v1alpha1
|
|
schema:
|
|
openAPIV3Schema:
|
|
description: OpenAPI contains the configuration for the OpenAPI specification.
|
|
properties:
|
|
apiVersion:
|
|
description: |-
|
|
APIVersion defines the versioned schema of this representation of an object.
|
|
Servers should convert recognized schemas to the latest internal value, and
|
|
may reject unrecognized values.
|
|
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
|
|
type: string
|
|
kind:
|
|
description: |-
|
|
Kind is a string value representing the REST resource this object represents.
|
|
Servers may infer this from the endpoint the client submits requests to.
|
|
Cannot be updated.
|
|
In CamelCase.
|
|
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
|
|
type: string
|
|
metadata:
|
|
type: object
|
|
spec:
|
|
description: Specification of the desired OpenAPI specification.
|
|
properties:
|
|
response:
|
|
description: Response defines the validation behaviour for responses.
|
|
properties:
|
|
secured:
|
|
description: Secured enables response checking.
|
|
properties:
|
|
validation:
|
|
default: Lax
|
|
description: Validation defines the validation mode for responses.
|
|
enum:
|
|
- Lax
|
|
- Strict
|
|
type: string
|
|
type: object
|
|
unsecured:
|
|
description: Unsecured disables response checking.
|
|
type: object
|
|
type: object
|
|
settings:
|
|
description: Settings defines the settings to configure OpenAPI specification enforcement.
|
|
properties:
|
|
logging:
|
|
description: Logging specifies the access log behavior.
|
|
properties:
|
|
maxFailedSubvalidations:
|
|
default: 10
|
|
description: MaxFailedSubvalidations defines the maximum number of failed subvalidations being logged.
|
|
format: int64
|
|
type: integer
|
|
type: object
|
|
schema:
|
|
description: Schema configures the OpenAPI specification.
|
|
properties:
|
|
source:
|
|
description: Source specifies the OpenAPI specification to be enforced.
|
|
properties:
|
|
configMapRef:
|
|
description: ConfigMapRef references the configmap by its name containing the well-known key 'openapi.json'.
|
|
properties:
|
|
name:
|
|
description: Name of the resource
|
|
minLength: 1
|
|
type: string
|
|
required:
|
|
- name
|
|
type: object
|
|
type: object
|
|
required:
|
|
- source
|
|
type: object
|
|
threatHandlingMode:
|
|
default: Block
|
|
description: ThreatHandlingMode specifies how threats should be handled.
|
|
enum:
|
|
- Block
|
|
- LogOnly
|
|
type: string
|
|
validation:
|
|
description: Validation specifies the patterns for the validation behavior.
|
|
properties:
|
|
authentication:
|
|
description: Authentication defines the settings for the authentication scheme.
|
|
properties:
|
|
oAuth2:
|
|
description: OAuth2 specifies the OAuth2 parameters.
|
|
properties:
|
|
allowedParameters:
|
|
description: AllowedParameters specifies the allowed parameters for the authentication scheme.
|
|
properties:
|
|
builtIn:
|
|
description: BuiltIn allows configuring a set of predefined allowed parameters.
|
|
properties:
|
|
standardParameters:
|
|
default: true
|
|
description: StandardParameters defines whether the allowed parameters should be expanded by the set of common parameters.
|
|
type: boolean
|
|
type: object
|
|
custom:
|
|
description: Custom allows configuring additional allowed parameters.
|
|
items:
|
|
minLength: 1
|
|
type: string
|
|
minItems: 1
|
|
type: array
|
|
type: object
|
|
type: object
|
|
oidc:
|
|
description: Oidc specifies the OIDC parameters.
|
|
properties:
|
|
allowedParameters:
|
|
description: AllowedParameters specifies the allowed parameters for the authentication scheme.
|
|
properties:
|
|
builtIn:
|
|
description: BuiltIn allows configuring a set of predefined allowed parameters.
|
|
properties:
|
|
standardParameters:
|
|
default: true
|
|
description: StandardParameters defines whether the allowed parameters should be expanded by the set of common parameters.
|
|
type: boolean
|
|
type: object
|
|
custom:
|
|
description: Custom allows configuring additional allowed parameters.
|
|
items:
|
|
minLength: 1
|
|
type: string
|
|
minItems: 1
|
|
type: array
|
|
type: object
|
|
type: object
|
|
type: object
|
|
type: object
|
|
required:
|
|
- schema
|
|
type: object
|
|
required:
|
|
- settings
|
|
type: object
|
|
required:
|
|
- spec
|
|
type: object
|
|
served: true
|
|
storage: true
|