InfisicalAuth
secrets.infisical.com / v1beta1
apiVersion: secrets.infisical.com/v1beta1
kind: InfisicalAuth
metadata:
name: example
apiVersion
string
APIVersion defines the versioned schema of this representation of an object.
Servers should convert recognized schemas to the latest internal value, and
may reject unrecognized values.
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
kind
string
Kind is a string value representing the REST resource this object represents.
Servers may infer this from the endpoint the client submits requests to.
Cannot be updated.
In CamelCase.
More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
metadata
object
spec object
awsIam object
identityIdRef object required
key
string required
The name of the secret property with the value
name
string required
The name of the Kubernetes Secret
namespace
string required
The namespace where the Kubernetes Secret is located
azure object
identityIdRef object required
key
string required
The name of the secret property with the value
name
string required
The name of the Kubernetes Secret
namespace
string required
The namespace where the Kubernetes Secret is located
resource
string
gcpIam object
identityIdRef object required
key
string required
The name of the secret property with the value
name
string required
The name of the Kubernetes Secret
namespace
string required
The namespace where the Kubernetes Secret is located
serviceAccountKeyFilePath
string required
gcpIdToken object
identityIdRef object required
key
string required
The name of the secret property with the value
name
string required
The name of the Kubernetes Secret
namespace
string required
The namespace where the Kubernetes Secret is located
infisicalConnectionRef object required
name
string required
namespace
string required
kubernetes object
identityIdRef object required
key
string required
The name of the secret property with the value
name
string required
The name of the Kubernetes Secret
namespace
string required
The namespace where the Kubernetes Secret is located
serviceAccountRef object required
name
string required
namespace
string required
serviceAccountTokenAudiences
[]string
The audiences to use for the service account token. This is only relevant if `autoCreateServiceAccountToken` is true.
ldap object
identityIdRef object required
key
string required
The name of the secret property with the value
name
string required
The name of the Kubernetes Secret
namespace
string required
The namespace where the Kubernetes Secret is located
passwordRef object required
key
string required
The name of the secret property with the value
name
string required
The name of the Kubernetes Secret
namespace
string required
The namespace where the Kubernetes Secret is located
usernameRef object required
key
string required
The name of the secret property with the value
name
string required
The name of the Kubernetes Secret
namespace
string required
The namespace where the Kubernetes Secret is located
method
string required
enum:
universal, kubernetes, aws-iam, azure, gcp-id-token, gcp-iam, ldapuniversal object
clientIdRef object required
key
string required
The name of the secret property with the value
name
string required
The name of the Kubernetes Secret
namespace
string required
The namespace where the Kubernetes Secret is located
clientSecretRef object required
key
string required
The name of the secret property with the value
name
string required
The name of the Kubernetes Secret
namespace
string required
The namespace where the Kubernetes Secret is located
status object
InfisicalAuthStatus defines the observed state of InfisicalAuth
conditions []object required
lastTransitionTime
string required
lastTransitionTime is the last time the condition transitioned from one status to another.
This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable.
format:
date-time
message
string required
message is a human readable message indicating details about the transition.
This may be an empty string.
maxLength:
32768
observedGeneration
integer
observedGeneration represents the .metadata.generation that the condition was set based upon.
For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date
with respect to the current state of the instance.
format:
int64minimum:
0
reason
string required
reason contains a programmatic identifier indicating the reason for the condition's last transition.
Producers of specific condition types may define expected values and meanings for this field,
and whether the values are considered a guaranteed API.
The value should be a CamelCase string.
This field may not be empty.
pattern:
^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$minLength:
1maxLength:
1024
status
string required
status of the condition, one of True, False, Unknown.
enum:
True, False, Unknown
type
string required
type of condition in CamelCase or in foo.example.com/CamelCase.
pattern:
^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$maxLength:
316No matches. Try .spec.awsIam for an exact path