github.com/alibaba/sealer@v0.8.6-0.20220430115802-37a2bdaa8173/applications/strimzi-kafka/kafka-crd.yaml (about) 1 2 --- 3 apiVersion: rbac.authorization.k8s.io/v1 4 kind: RoleBinding 5 metadata: 6 name: strimzi-cluster-operator-entity-operator-delegation 7 labels: 8 app: strimzi 9 namespace: kafka 10 subjects: 11 - kind: ServiceAccount 12 name: strimzi-cluster-operator 13 namespace: kafka 14 roleRef: 15 kind: ClusterRole 16 name: strimzi-entity-operator 17 apiGroup: rbac.authorization.k8s.io 18 19 --- 20 apiVersion: apiextensions.k8s.io/v1 21 kind: CustomResourceDefinition 22 metadata: 23 name: strimzipodsets.core.strimzi.io 24 labels: 25 app: strimzi 26 strimzi.io/crd-install: 'true' 27 spec: 28 group: core.strimzi.io 29 names: 30 kind: StrimziPodSet 31 listKind: StrimziPodSetList 32 singular: strimzipodset 33 plural: strimzipodsets 34 shortNames: 35 - sps 36 categories: 37 - strimzi 38 scope: Namespaced 39 conversion: 40 strategy: None 41 versions: 42 - name: v1beta2 43 served: true 44 storage: true 45 subresources: 46 status: {} 47 additionalPrinterColumns: 48 - name: Pods 49 description: Number of pods managed by the StrimziPodSet 50 jsonPath: .status.pods 51 type: integer 52 - name: Ready Pods 53 description: Number of ready pods managed by the StrimziPodSet 54 jsonPath: .status.readyPods 55 type: integer 56 - name: Current Pods 57 description: Number of up-to-date pods managed by the StrimziPodSet 58 jsonPath: .status.currentPods 59 type: integer 60 - name: Age 61 description: Age of the StrimziPodSet 62 jsonPath: .metadata.creationTimestamp 63 type: date 64 schema: 65 openAPIV3Schema: 66 type: object 67 properties: 68 spec: 69 type: object 70 properties: 71 selector: 72 type: object 73 properties: 74 matchExpressions: 75 type: array 76 items: 77 type: object 78 properties: 79 key: 80 type: string 81 operator: 82 type: string 83 values: 84 type: array 85 items: 86 type: string 87 matchLabels: 88 x-kubernetes-preserve-unknown-fields: true 89 type: object 90 description: >- 91 Selector is a label query which matches all the pods managed 92 by this `StrimziPodSet`. Only `matchLabels` is supported. If 93 `matchExpressions` is set, it will be ignored. 94 pods: 95 type: array 96 items: 97 x-kubernetes-preserve-unknown-fields: true 98 type: object 99 description: The Pods managed by this StrimziPodSet. 100 required: 101 - selector 102 - pods 103 description: The specification of the StrimziPodSet. 104 status: 105 type: object 106 properties: 107 conditions: 108 type: array 109 items: 110 type: object 111 properties: 112 type: 113 type: string 114 description: >- 115 The unique identifier of a condition, used to 116 distinguish between other conditions in the resource. 117 status: 118 type: string 119 description: >- 120 The status of the condition, either True, False or 121 Unknown. 122 lastTransitionTime: 123 type: string 124 description: >- 125 Last time the condition of a type changed from one 126 status to another. The required format is 127 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone. 128 reason: 129 type: string 130 description: >- 131 The reason for the condition's last transition (a 132 single word in CamelCase). 133 message: 134 type: string 135 description: >- 136 Human-readable message indicating details about the 137 condition's last transition. 138 description: List of status conditions. 139 observedGeneration: 140 type: integer 141 description: >- 142 The generation of the CRD that was last reconciled by the 143 operator. 144 pods: 145 type: integer 146 description: Number of pods managed by the StrimziPodSet controller. 147 readyPods: 148 type: integer 149 description: >- 150 Number of pods managed by the StrimziPodSet controller that 151 are ready. 152 currentPods: 153 type: integer 154 description: >- 155 Number of pods managed by the StrimziPodSet controller that 156 have the current revision. 157 description: The status of the StrimziPodSet. 158 159 --- 160 apiVersion: rbac.authorization.k8s.io/v1 161 kind: ClusterRole 162 metadata: 163 name: strimzi-kafka-client 164 labels: 165 app: strimzi 166 rules: 167 - apiGroups: 168 - '' 169 resources: 170 - nodes 171 verbs: 172 - get 173 174 --- 175 apiVersion: apiextensions.k8s.io/v1 176 kind: CustomResourceDefinition 177 metadata: 178 name: kafkausers.kafka.strimzi.io 179 labels: 180 app: strimzi 181 strimzi.io/crd-install: 'true' 182 spec: 183 group: kafka.strimzi.io 184 names: 185 kind: KafkaUser 186 listKind: KafkaUserList 187 singular: kafkauser 188 plural: kafkausers 189 shortNames: 190 - ku 191 categories: 192 - strimzi 193 scope: Namespaced 194 conversion: 195 strategy: None 196 versions: 197 - name: v1beta2 198 served: true 199 storage: true 200 subresources: 201 status: {} 202 additionalPrinterColumns: 203 - name: Cluster 204 description: The name of the Kafka cluster this user belongs to 205 jsonPath: .metadata.labels.strimzi\.io/cluster 206 type: string 207 - name: Authentication 208 description: How the user is authenticated 209 jsonPath: .spec.authentication.type 210 type: string 211 - name: Authorization 212 description: How the user is authorised 213 jsonPath: .spec.authorization.type 214 type: string 215 - name: Ready 216 description: The state of the custom resource 217 jsonPath: '.status.conditions[?(@.type=="Ready")].status' 218 type: string 219 schema: 220 openAPIV3Schema: 221 type: object 222 properties: 223 spec: 224 type: object 225 properties: 226 authentication: 227 type: object 228 properties: 229 password: 230 type: object 231 properties: 232 valueFrom: 233 type: object 234 properties: 235 secretKeyRef: 236 type: object 237 properties: 238 key: 239 type: string 240 name: 241 type: string 242 optional: 243 type: boolean 244 description: >- 245 Selects a key of a Secret in the resource's 246 namespace. 247 description: Secret from which the password should be read. 248 required: 249 - valueFrom 250 description: >- 251 Specify the password for the user. If not set, a new 252 password is generated by the User Operator. 253 type: 254 type: string 255 enum: 256 - tls 257 - tls-external 258 - scram-sha-512 259 description: Authentication type. 260 required: 261 - type 262 description: >- 263 Authentication mechanism enabled for this Kafka user. The 264 supported authentication mechanisms are `scram-sha-512`, 265 `tls`, and `tls-external`. 266 267 268 * `scram-sha-512` generates a secret with SASL SCRAM-SHA-512 269 credentials. 270 271 * `tls` generates a secret with user certificate for mutual 272 TLS authentication. 273 274 * `tls-external` does not generate a user certificate. But 275 prepares the user for using mutual TLS authentication using 276 a user certificate generated outside the User Operator. 277 ACLs and quotas set for this user are configured in the `CN=<username>` format. 278 279 Authentication is optional. If authentication is not 280 configured, no credentials are generated. ACLs and quotas 281 set for the user are configured in the `<username>` format 282 suitable for SASL authentication. 283 authorization: 284 type: object 285 properties: 286 acls: 287 type: array 288 items: 289 type: object 290 properties: 291 host: 292 type: string 293 description: >- 294 The host from which the action described in the 295 ACL rule is allowed or denied. 296 operation: 297 type: string 298 enum: 299 - Read 300 - Write 301 - Create 302 - Delete 303 - Alter 304 - Describe 305 - ClusterAction 306 - AlterConfigs 307 - DescribeConfigs 308 - IdempotentWrite 309 - All 310 description: >- 311 Operation which will be allowed or denied. 312 Supported operations are: Read, Write, Create, 313 Delete, Alter, Describe, ClusterAction, 314 AlterConfigs, DescribeConfigs, IdempotentWrite and 315 All. 316 resource: 317 type: object 318 properties: 319 name: 320 type: string 321 description: >- 322 Name of resource for which given ACL rule 323 applies. Can be combined with `patternType` 324 field to use prefix pattern. 325 patternType: 326 type: string 327 enum: 328 - literal 329 - prefix 330 description: >- 331 Describes the pattern used in the resource 332 field. The supported types are `literal` and 333 `prefix`. With `literal` pattern type, the 334 resource field will be used as a definition of 335 a full name. With `prefix` pattern type, the 336 resource name will be used only as a prefix. 337 Default value is `literal`. 338 type: 339 type: string 340 enum: 341 - topic 342 - group 343 - cluster 344 - transactionalId 345 description: >- 346 Resource type. The available resource types 347 are `topic`, `group`, `cluster`, and 348 `transactionalId`. 349 required: 350 - type 351 description: >- 352 Indicates the resource for which given ACL rule 353 applies. 354 type: 355 type: string 356 enum: 357 - allow 358 - deny 359 description: >- 360 The type of the rule. Currently the only supported 361 type is `allow`. ACL rules with type `allow` are 362 used to allow user to execute the specified 363 operations. Default value is `allow`. 364 required: 365 - operation 366 - resource 367 description: List of ACL rules which should be applied to this user. 368 type: 369 type: string 370 enum: 371 - simple 372 description: >- 373 Authorization type. Currently the only supported type is 374 `simple`. `simple` authorization type uses Kafka's 375 `kafka.security.authorizer.AclAuthorizer` class for 376 authorization. 377 required: 378 - acls 379 - type 380 description: Authorization rules for this Kafka user. 381 quotas: 382 type: object 383 properties: 384 consumerByteRate: 385 type: integer 386 minimum: 0 387 description: >- 388 A quota on the maximum bytes per-second that each client 389 group can fetch from a broker before the clients in the 390 group are throttled. Defined on a per-broker basis. 391 controllerMutationRate: 392 type: number 393 minimum: 0 394 description: >- 395 A quota on the rate at which mutations are accepted for 396 the create topics request, the create partitions request 397 and the delete topics request. The rate is accumulated 398 by the number of partitions created or deleted. 399 producerByteRate: 400 type: integer 401 minimum: 0 402 description: >- 403 A quota on the maximum bytes per-second that each client 404 group can publish to a broker before the clients in the 405 group are throttled. Defined on a per-broker basis. 406 requestPercentage: 407 type: integer 408 minimum: 0 409 description: >- 410 A quota on the maximum CPU utilization of each client 411 group as a percentage of network and I/O threads. 412 description: >- 413 Quotas on requests to control the broker resources used by 414 clients. Network bandwidth and request rate quotas can be 415 enforced.Kafka documentation for Kafka User quotas can be 416 found at 417 http://kafka.apache.org/documentation/#design_quotas. 418 template: 419 type: object 420 properties: 421 secret: 422 type: object 423 properties: 424 metadata: 425 type: object 426 properties: 427 labels: 428 x-kubernetes-preserve-unknown-fields: true 429 type: object 430 description: >- 431 Labels added to the resource template. Can be 432 applied to different resources such as 433 `StatefulSets`, `Deployments`, `Pods`, and 434 `Services`. 435 annotations: 436 x-kubernetes-preserve-unknown-fields: true 437 type: object 438 description: >- 439 Annotations added to the resource template. Can 440 be applied to different resources such as 441 `StatefulSets`, `Deployments`, `Pods`, and 442 `Services`. 443 description: Metadata applied to the resource. 444 description: >- 445 Template for KafkaUser resources. The template allows 446 users to specify how the `Secret` with password or TLS 447 certificates is generated. 448 description: Template to specify how Kafka User `Secrets` are generated. 449 description: The specification of the user. 450 status: 451 type: object 452 properties: 453 conditions: 454 type: array 455 items: 456 type: object 457 properties: 458 type: 459 type: string 460 description: >- 461 The unique identifier of a condition, used to 462 distinguish between other conditions in the resource. 463 status: 464 type: string 465 description: >- 466 The status of the condition, either True, False or 467 Unknown. 468 lastTransitionTime: 469 type: string 470 description: >- 471 Last time the condition of a type changed from one 472 status to another. The required format is 473 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone. 474 reason: 475 type: string 476 description: >- 477 The reason for the condition's last transition (a 478 single word in CamelCase). 479 message: 480 type: string 481 description: >- 482 Human-readable message indicating details about the 483 condition's last transition. 484 description: List of status conditions. 485 observedGeneration: 486 type: integer 487 description: >- 488 The generation of the CRD that was last reconciled by the 489 operator. 490 username: 491 type: string 492 description: Username. 493 secret: 494 type: string 495 description: The name of `Secret` where the credentials are stored. 496 description: The status of the Kafka User. 497 - name: v1beta1 498 served: true 499 storage: false 500 subresources: 501 status: {} 502 additionalPrinterColumns: 503 - name: Cluster 504 description: The name of the Kafka cluster this user belongs to 505 jsonPath: .metadata.labels.strimzi\.io/cluster 506 type: string 507 - name: Authentication 508 description: How the user is authenticated 509 jsonPath: .spec.authentication.type 510 type: string 511 - name: Authorization 512 description: How the user is authorised 513 jsonPath: .spec.authorization.type 514 type: string 515 - name: Ready 516 description: The state of the custom resource 517 jsonPath: '.status.conditions[?(@.type=="Ready")].status' 518 type: string 519 schema: 520 openAPIV3Schema: 521 type: object 522 properties: 523 spec: 524 type: object 525 properties: 526 authentication: 527 type: object 528 properties: 529 password: 530 type: object 531 properties: 532 valueFrom: 533 type: object 534 properties: 535 secretKeyRef: 536 type: object 537 properties: 538 key: 539 type: string 540 name: 541 type: string 542 optional: 543 type: boolean 544 description: >- 545 Selects a key of a Secret in the resource's 546 namespace. 547 description: Secret from which the password should be read. 548 required: 549 - valueFrom 550 description: >- 551 Specify the password for the user. If not set, a new 552 password is generated by the User Operator. 553 type: 554 type: string 555 enum: 556 - tls 557 - tls-external 558 - scram-sha-512 559 description: Authentication type. 560 required: 561 - type 562 description: >- 563 Authentication mechanism enabled for this Kafka user. The 564 supported authentication mechanisms are `scram-sha-512`, 565 `tls`, and `tls-external`. 566 567 568 * `scram-sha-512` generates a secret with SASL SCRAM-SHA-512 569 credentials. 570 571 * `tls` generates a secret with user certificate for mutual 572 TLS authentication. 573 574 * `tls-external` does not generate a user certificate. But 575 prepares the user for using mutual TLS authentication using 576 a user certificate generated outside the User Operator. 577 ACLs and quotas set for this user are configured in the `CN=<username>` format. 578 579 Authentication is optional. If authentication is not 580 configured, no credentials are generated. ACLs and quotas 581 set for the user are configured in the `<username>` format 582 suitable for SASL authentication. 583 authorization: 584 type: object 585 properties: 586 acls: 587 type: array 588 items: 589 type: object 590 properties: 591 host: 592 type: string 593 description: >- 594 The host from which the action described in the 595 ACL rule is allowed or denied. 596 operation: 597 type: string 598 enum: 599 - Read 600 - Write 601 - Create 602 - Delete 603 - Alter 604 - Describe 605 - ClusterAction 606 - AlterConfigs 607 - DescribeConfigs 608 - IdempotentWrite 609 - All 610 description: >- 611 Operation which will be allowed or denied. 612 Supported operations are: Read, Write, Create, 613 Delete, Alter, Describe, ClusterAction, 614 AlterConfigs, DescribeConfigs, IdempotentWrite and 615 All. 616 resource: 617 type: object 618 properties: 619 name: 620 type: string 621 description: >- 622 Name of resource for which given ACL rule 623 applies. Can be combined with `patternType` 624 field to use prefix pattern. 625 patternType: 626 type: string 627 enum: 628 - literal 629 - prefix 630 description: >- 631 Describes the pattern used in the resource 632 field. The supported types are `literal` and 633 `prefix`. With `literal` pattern type, the 634 resource field will be used as a definition of 635 a full name. With `prefix` pattern type, the 636 resource name will be used only as a prefix. 637 Default value is `literal`. 638 type: 639 type: string 640 enum: 641 - topic 642 - group 643 - cluster 644 - transactionalId 645 description: >- 646 Resource type. The available resource types 647 are `topic`, `group`, `cluster`, and 648 `transactionalId`. 649 required: 650 - type 651 description: >- 652 Indicates the resource for which given ACL rule 653 applies. 654 type: 655 type: string 656 enum: 657 - allow 658 - deny 659 description: >- 660 The type of the rule. Currently the only supported 661 type is `allow`. ACL rules with type `allow` are 662 used to allow user to execute the specified 663 operations. Default value is `allow`. 664 required: 665 - operation 666 - resource 667 description: List of ACL rules which should be applied to this user. 668 type: 669 type: string 670 enum: 671 - simple 672 description: >- 673 Authorization type. Currently the only supported type is 674 `simple`. `simple` authorization type uses Kafka's 675 `kafka.security.authorizer.AclAuthorizer` class for 676 authorization. 677 required: 678 - acls 679 - type 680 description: Authorization rules for this Kafka user. 681 quotas: 682 type: object 683 properties: 684 consumerByteRate: 685 type: integer 686 minimum: 0 687 description: >- 688 A quota on the maximum bytes per-second that each client 689 group can fetch from a broker before the clients in the 690 group are throttled. Defined on a per-broker basis. 691 controllerMutationRate: 692 type: number 693 minimum: 0 694 description: >- 695 A quota on the rate at which mutations are accepted for 696 the create topics request, the create partitions request 697 and the delete topics request. The rate is accumulated 698 by the number of partitions created or deleted. 699 producerByteRate: 700 type: integer 701 minimum: 0 702 description: >- 703 A quota on the maximum bytes per-second that each client 704 group can publish to a broker before the clients in the 705 group are throttled. Defined on a per-broker basis. 706 requestPercentage: 707 type: integer 708 minimum: 0 709 description: >- 710 A quota on the maximum CPU utilization of each client 711 group as a percentage of network and I/O threads. 712 description: >- 713 Quotas on requests to control the broker resources used by 714 clients. Network bandwidth and request rate quotas can be 715 enforced.Kafka documentation for Kafka User quotas can be 716 found at 717 http://kafka.apache.org/documentation/#design_quotas. 718 template: 719 type: object 720 properties: 721 secret: 722 type: object 723 properties: 724 metadata: 725 type: object 726 properties: 727 labels: 728 x-kubernetes-preserve-unknown-fields: true 729 type: object 730 description: >- 731 Labels added to the resource template. Can be 732 applied to different resources such as 733 `StatefulSets`, `Deployments`, `Pods`, and 734 `Services`. 735 annotations: 736 x-kubernetes-preserve-unknown-fields: true 737 type: object 738 description: >- 739 Annotations added to the resource template. Can 740 be applied to different resources such as 741 `StatefulSets`, `Deployments`, `Pods`, and 742 `Services`. 743 description: Metadata applied to the resource. 744 description: >- 745 Template for KafkaUser resources. The template allows 746 users to specify how the `Secret` with password or TLS 747 certificates is generated. 748 description: Template to specify how Kafka User `Secrets` are generated. 749 description: The specification of the user. 750 status: 751 type: object 752 properties: 753 conditions: 754 type: array 755 items: 756 type: object 757 properties: 758 type: 759 type: string 760 description: >- 761 The unique identifier of a condition, used to 762 distinguish between other conditions in the resource. 763 status: 764 type: string 765 description: >- 766 The status of the condition, either True, False or 767 Unknown. 768 lastTransitionTime: 769 type: string 770 description: >- 771 Last time the condition of a type changed from one 772 status to another. The required format is 773 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone. 774 reason: 775 type: string 776 description: >- 777 The reason for the condition's last transition (a 778 single word in CamelCase). 779 message: 780 type: string 781 description: >- 782 Human-readable message indicating details about the 783 condition's last transition. 784 description: List of status conditions. 785 observedGeneration: 786 type: integer 787 description: >- 788 The generation of the CRD that was last reconciled by the 789 operator. 790 username: 791 type: string 792 description: Username. 793 secret: 794 type: string 795 description: The name of `Secret` where the credentials are stored. 796 description: The status of the Kafka User. 797 - name: v1alpha1 798 served: true 799 storage: false 800 subresources: 801 status: {} 802 additionalPrinterColumns: 803 - name: Cluster 804 description: The name of the Kafka cluster this user belongs to 805 jsonPath: .metadata.labels.strimzi\.io/cluster 806 type: string 807 - name: Authentication 808 description: How the user is authenticated 809 jsonPath: .spec.authentication.type 810 type: string 811 - name: Authorization 812 description: How the user is authorised 813 jsonPath: .spec.authorization.type 814 type: string 815 - name: Ready 816 description: The state of the custom resource 817 jsonPath: '.status.conditions[?(@.type=="Ready")].status' 818 type: string 819 schema: 820 openAPIV3Schema: 821 type: object 822 properties: 823 spec: 824 type: object 825 properties: 826 authentication: 827 type: object 828 properties: 829 password: 830 type: object 831 properties: 832 valueFrom: 833 type: object 834 properties: 835 secretKeyRef: 836 type: object 837 properties: 838 key: 839 type: string 840 name: 841 type: string 842 optional: 843 type: boolean 844 description: >- 845 Selects a key of a Secret in the resource's 846 namespace. 847 description: Secret from which the password should be read. 848 required: 849 - valueFrom 850 description: >- 851 Specify the password for the user. If not set, a new 852 password is generated by the User Operator. 853 type: 854 type: string 855 enum: 856 - tls 857 - tls-external 858 - scram-sha-512 859 description: Authentication type. 860 required: 861 - type 862 description: >- 863 Authentication mechanism enabled for this Kafka user. The 864 supported authentication mechanisms are `scram-sha-512`, 865 `tls`, and `tls-external`. 866 867 868 * `scram-sha-512` generates a secret with SASL SCRAM-SHA-512 869 credentials. 870 871 * `tls` generates a secret with user certificate for mutual 872 TLS authentication. 873 874 * `tls-external` does not generate a user certificate. But 875 prepares the user for using mutual TLS authentication using 876 a user certificate generated outside the User Operator. 877 ACLs and quotas set for this user are configured in the `CN=<username>` format. 878 879 Authentication is optional. If authentication is not 880 configured, no credentials are generated. ACLs and quotas 881 set for the user are configured in the `<username>` format 882 suitable for SASL authentication. 883 authorization: 884 type: object 885 properties: 886 acls: 887 type: array 888 items: 889 type: object 890 properties: 891 host: 892 type: string 893 description: >- 894 The host from which the action described in the 895 ACL rule is allowed or denied. 896 operation: 897 type: string 898 enum: 899 - Read 900 - Write 901 - Create 902 - Delete 903 - Alter 904 - Describe 905 - ClusterAction 906 - AlterConfigs 907 - DescribeConfigs 908 - IdempotentWrite 909 - All 910 description: >- 911 Operation which will be allowed or denied. 912 Supported operations are: Read, Write, Create, 913 Delete, Alter, Describe, ClusterAction, 914 AlterConfigs, DescribeConfigs, IdempotentWrite and 915 All. 916 resource: 917 type: object 918 properties: 919 name: 920 type: string 921 description: >- 922 Name of resource for which given ACL rule 923 applies. Can be combined with `patternType` 924 field to use prefix pattern. 925 patternType: 926 type: string 927 enum: 928 - literal 929 - prefix 930 description: >- 931 Describes the pattern used in the resource 932 field. The supported types are `literal` and 933 `prefix`. With `literal` pattern type, the 934 resource field will be used as a definition of 935 a full name. With `prefix` pattern type, the 936 resource name will be used only as a prefix. 937 Default value is `literal`. 938 type: 939 type: string 940 enum: 941 - topic 942 - group 943 - cluster 944 - transactionalId 945 description: >- 946 Resource type. The available resource types 947 are `topic`, `group`, `cluster`, and 948 `transactionalId`. 949 required: 950 - type 951 description: >- 952 Indicates the resource for which given ACL rule 953 applies. 954 type: 955 type: string 956 enum: 957 - allow 958 - deny 959 description: >- 960 The type of the rule. Currently the only supported 961 type is `allow`. ACL rules with type `allow` are 962 used to allow user to execute the specified 963 operations. Default value is `allow`. 964 required: 965 - operation 966 - resource 967 description: List of ACL rules which should be applied to this user. 968 type: 969 type: string 970 enum: 971 - simple 972 description: >- 973 Authorization type. Currently the only supported type is 974 `simple`. `simple` authorization type uses Kafka's 975 `kafka.security.authorizer.AclAuthorizer` class for 976 authorization. 977 required: 978 - acls 979 - type 980 description: Authorization rules for this Kafka user. 981 quotas: 982 type: object 983 properties: 984 consumerByteRate: 985 type: integer 986 minimum: 0 987 description: >- 988 A quota on the maximum bytes per-second that each client 989 group can fetch from a broker before the clients in the 990 group are throttled. Defined on a per-broker basis. 991 controllerMutationRate: 992 type: number 993 minimum: 0 994 description: >- 995 A quota on the rate at which mutations are accepted for 996 the create topics request, the create partitions request 997 and the delete topics request. The rate is accumulated 998 by the number of partitions created or deleted. 999 producerByteRate: 1000 type: integer 1001 minimum: 0 1002 description: >- 1003 A quota on the maximum bytes per-second that each client 1004 group can publish to a broker before the clients in the 1005 group are throttled. Defined on a per-broker basis. 1006 requestPercentage: 1007 type: integer 1008 minimum: 0 1009 description: >- 1010 A quota on the maximum CPU utilization of each client 1011 group as a percentage of network and I/O threads. 1012 description: >- 1013 Quotas on requests to control the broker resources used by 1014 clients. Network bandwidth and request rate quotas can be 1015 enforced.Kafka documentation for Kafka User quotas can be 1016 found at 1017 http://kafka.apache.org/documentation/#design_quotas. 1018 template: 1019 type: object 1020 properties: 1021 secret: 1022 type: object 1023 properties: 1024 metadata: 1025 type: object 1026 properties: 1027 labels: 1028 x-kubernetes-preserve-unknown-fields: true 1029 type: object 1030 description: >- 1031 Labels added to the resource template. Can be 1032 applied to different resources such as 1033 `StatefulSets`, `Deployments`, `Pods`, and 1034 `Services`. 1035 annotations: 1036 x-kubernetes-preserve-unknown-fields: true 1037 type: object 1038 description: >- 1039 Annotations added to the resource template. Can 1040 be applied to different resources such as 1041 `StatefulSets`, `Deployments`, `Pods`, and 1042 `Services`. 1043 description: Metadata applied to the resource. 1044 description: >- 1045 Template for KafkaUser resources. The template allows 1046 users to specify how the `Secret` with password or TLS 1047 certificates is generated. 1048 description: Template to specify how Kafka User `Secrets` are generated. 1049 description: The specification of the user. 1050 status: 1051 type: object 1052 properties: 1053 conditions: 1054 type: array 1055 items: 1056 type: object 1057 properties: 1058 type: 1059 type: string 1060 description: >- 1061 The unique identifier of a condition, used to 1062 distinguish between other conditions in the resource. 1063 status: 1064 type: string 1065 description: >- 1066 The status of the condition, either True, False or 1067 Unknown. 1068 lastTransitionTime: 1069 type: string 1070 description: >- 1071 Last time the condition of a type changed from one 1072 status to another. The required format is 1073 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone. 1074 reason: 1075 type: string 1076 description: >- 1077 The reason for the condition's last transition (a 1078 single word in CamelCase). 1079 message: 1080 type: string 1081 description: >- 1082 Human-readable message indicating details about the 1083 condition's last transition. 1084 description: List of status conditions. 1085 observedGeneration: 1086 type: integer 1087 description: >- 1088 The generation of the CRD that was last reconciled by the 1089 operator. 1090 username: 1091 type: string 1092 description: Username. 1093 secret: 1094 type: string 1095 description: The name of `Secret` where the credentials are stored. 1096 description: The status of the Kafka User. 1097 1098 --- 1099 apiVersion: rbac.authorization.k8s.io/v1 1100 kind: ClusterRoleBinding 1101 metadata: 1102 name: strimzi-cluster-operator-kafka-broker-delegation 1103 labels: 1104 app: strimzi 1105 subjects: 1106 - kind: ServiceAccount 1107 name: strimzi-cluster-operator 1108 namespace: kafka 1109 roleRef: 1110 kind: ClusterRole 1111 name: strimzi-kafka-broker 1112 apiGroup: rbac.authorization.k8s.io 1113 1114 --- 1115 kind: ConfigMap 1116 apiVersion: v1 1117 metadata: 1118 name: strimzi-cluster-operator 1119 labels: 1120 app: strimzi 1121 namespace: kafka 1122 data: 1123 log4j2.properties: > 1124 name = COConfig 1125 1126 monitorInterval = 30 1127 1128 1129 appender.console.type = Console 1130 1131 appender.console.name = STDOUT 1132 1133 appender.console.layout.type = PatternLayout 1134 1135 appender.console.layout.pattern = %d{yyyy-MM-dd HH:mm:ss} %-5p %c{1}:%L - 1136 %m%n 1137 1138 1139 rootLogger.level = ${env:STRIMZI_LOG_LEVEL:-INFO} 1140 1141 rootLogger.appenderRefs = stdout 1142 1143 rootLogger.appenderRef.console.ref = STDOUT 1144 1145 rootLogger.additivity = false 1146 1147 1148 # Kafka AdminClient logging is a bit noisy at INFO level 1149 1150 logger.kafka.name = org.apache.kafka 1151 1152 logger.kafka.level = WARN 1153 1154 logger.kafka.additivity = false 1155 1156 1157 # Zookeeper is very verbose even on INFO level -> We set it to WARN by 1158 default 1159 1160 logger.zookeepertrustmanager.name = org.apache.zookeeper 1161 1162 logger.zookeepertrustmanager.level = WARN 1163 1164 logger.zookeepertrustmanager.additivity = false 1165 1166 1167 # Keeps separate level for Netty logging -> to not be changed by the root 1168 logger 1169 1170 logger.netty.name = io.netty 1171 1172 logger.netty.level = INFO 1173 1174 logger.netty.additivity = false 1175 1176 --- 1177 apiVersion: apiextensions.k8s.io/v1 1178 kind: CustomResourceDefinition 1179 metadata: 1180 name: kafkas.kafka.strimzi.io 1181 labels: 1182 app: strimzi 1183 strimzi.io/crd-install: 'true' 1184 spec: 1185 group: kafka.strimzi.io 1186 names: 1187 kind: Kafka 1188 listKind: KafkaList 1189 singular: kafka 1190 plural: kafkas 1191 shortNames: 1192 - k 1193 categories: 1194 - strimzi 1195 scope: Namespaced 1196 conversion: 1197 strategy: None 1198 versions: 1199 - name: v1beta2 1200 served: true 1201 storage: true 1202 subresources: 1203 status: {} 1204 additionalPrinterColumns: 1205 - name: Desired Kafka replicas 1206 description: The desired number of Kafka replicas in the cluster 1207 jsonPath: .spec.kafka.replicas 1208 type: integer 1209 - name: Desired ZK replicas 1210 description: The desired number of ZooKeeper replicas in the cluster 1211 jsonPath: .spec.zookeeper.replicas 1212 type: integer 1213 - name: Ready 1214 description: The state of the custom resource 1215 jsonPath: '.status.conditions[?(@.type=="Ready")].status' 1216 type: string 1217 - name: Warnings 1218 description: Warnings related to the custom resource 1219 jsonPath: '.status.conditions[?(@.type=="Warning")].status' 1220 type: string 1221 schema: 1222 openAPIV3Schema: 1223 type: object 1224 properties: 1225 spec: 1226 type: object 1227 properties: 1228 kafka: 1229 type: object 1230 properties: 1231 version: 1232 type: string 1233 description: >- 1234 The kafka broker version. Defaults to 1235 {DefaultKafkaVersion}. Consult the user documentation to 1236 understand the process required to upgrade or downgrade 1237 the version. 1238 replicas: 1239 type: integer 1240 minimum: 1 1241 description: The number of pods in the cluster. 1242 image: 1243 type: string 1244 description: >- 1245 The docker image for the pods. The default value depends 1246 on the configured `Kafka.spec.kafka.version`. 1247 listeners: 1248 type: array 1249 minItems: 1 1250 items: 1251 type: object 1252 properties: 1253 name: 1254 type: string 1255 pattern: '^[a-z0-9]{1,11}$' 1256 description: >- 1257 Name of the listener. The name will be used to 1258 identify the listener and the related Kubernetes 1259 objects. The name has to be unique within given a 1260 Kafka cluster. The name can consist of lowercase 1261 characters and numbers and be up to 11 characters 1262 long. 1263 port: 1264 type: integer 1265 minimum: 9092 1266 description: >- 1267 Port number used by the listener inside Kafka. The 1268 port number has to be unique within a given Kafka 1269 cluster. Allowed port numbers are 9092 and higher 1270 with the exception of ports 9404 and 9999, which 1271 are already used for Prometheus and JMX. Depending 1272 on the listener type, the port number might not be 1273 the same as the port number that connects Kafka 1274 clients. 1275 type: 1276 type: string 1277 enum: 1278 - internal 1279 - route 1280 - loadbalancer 1281 - nodeport 1282 - ingress 1283 description: > 1284 Type of the listener. Currently the supported 1285 types are `internal`, `route`, `loadbalancer`, 1286 `nodeport` and `ingress`. 1287 1288 1289 * `internal` type exposes Kafka internally only 1290 within the Kubernetes cluster. 1291 1292 * `route` type uses OpenShift Routes to expose 1293 Kafka. 1294 1295 * `loadbalancer` type uses LoadBalancer type 1296 services to expose Kafka. 1297 1298 * `nodeport` type uses NodePort type services to 1299 expose Kafka. 1300 1301 * `ingress` type uses Kubernetes Nginx Ingress to 1302 expose Kafka. 1303 tls: 1304 type: boolean 1305 description: >- 1306 Enables TLS encryption on the listener. This is a 1307 required property. 1308 authentication: 1309 type: object 1310 properties: 1311 accessTokenIsJwt: 1312 type: boolean 1313 description: >- 1314 Configure whether the access token is treated 1315 as JWT. This must be set to `false` if the 1316 authorization server returns opaque tokens. 1317 Defaults to `true`. 1318 checkAccessTokenType: 1319 type: boolean 1320 description: >- 1321 Configure whether the access token type check 1322 is performed or not. This should be set to 1323 `false` if the authorization server does not 1324 include 'typ' claim in JWT token. Defaults to 1325 `true`. 1326 checkAudience: 1327 type: boolean 1328 description: >- 1329 Enable or disable audience checking. Audience 1330 checks identify the recipients of tokens. If 1331 audience checking is enabled, the OAuth Client 1332 ID also has to be configured using the 1333 `clientId` property. The Kafka broker will 1334 reject tokens that do not have its `clientId` 1335 in their `aud` (audience) claim.Default value 1336 is `false`. 1337 checkIssuer: 1338 type: boolean 1339 description: >- 1340 Enable or disable issuer checking. By default 1341 issuer is checked using the value configured 1342 by `validIssuerUri`. Default value is `true`. 1343 clientAudience: 1344 type: string 1345 description: >- 1346 The audience to use when making requests to 1347 the authorization server's token endpoint. 1348 Used for inter-broker authentication and for 1349 configuring OAuth 2.0 over PLAIN using the 1350 `clientId` and `secret` method. 1351 clientId: 1352 type: string 1353 description: >- 1354 OAuth Client ID which the Kafka broker can use 1355 to authenticate against the authorization 1356 server and use the introspect endpoint URI. 1357 clientScope: 1358 type: string 1359 description: >- 1360 The scope to use when making requests to the 1361 authorization server's token endpoint. Used 1362 for inter-broker authentication and for 1363 configuring OAuth 2.0 over PLAIN using the 1364 `clientId` and `secret` method. 1365 clientSecret: 1366 type: object 1367 properties: 1368 key: 1369 type: string 1370 description: >- 1371 The key under which the secret value is 1372 stored in the Kubernetes Secret. 1373 secretName: 1374 type: string 1375 description: >- 1376 The name of the Kubernetes Secret 1377 containing the secret value. 1378 required: 1379 - key 1380 - secretName 1381 description: >- 1382 Link to Kubernetes Secret containing the OAuth 1383 client secret which the Kafka broker can use 1384 to authenticate against the authorization 1385 server and use the introspect endpoint URI. 1386 connectTimeoutSeconds: 1387 type: integer 1388 description: >- 1389 The connect timeout in seconds when connecting 1390 to authorization server. If not set, the 1391 effective connect timeout is 60 seconds. 1392 customClaimCheck: 1393 type: string 1394 description: >- 1395 JsonPath filter query to be applied to the JWT 1396 token or to the response of the introspection 1397 endpoint for additional token validation. Not 1398 set by default. 1399 disableTlsHostnameVerification: 1400 type: boolean 1401 description: >- 1402 Enable or disable TLS hostname verification. 1403 Default value is `false`. 1404 enableECDSA: 1405 type: boolean 1406 description: >- 1407 Enable or disable ECDSA support by installing 1408 BouncyCastle crypto provider. ECDSA support is 1409 always enabled. The BouncyCastle libraries are 1410 no longer packaged with Strimzi. Value is 1411 ignored. 1412 enableOauthBearer: 1413 type: boolean 1414 description: >- 1415 Enable or disable OAuth authentication over 1416 SASL_OAUTHBEARER. Default value is `true`. 1417 enablePlain: 1418 type: boolean 1419 description: >- 1420 Enable or disable OAuth authentication over 1421 SASL_PLAIN. There is no re-authentication 1422 support when this mechanism is used. Default 1423 value is `false`. 1424 fallbackUserNameClaim: 1425 type: string 1426 description: >- 1427 The fallback username claim to be used for the 1428 user id if the claim specified by 1429 `userNameClaim` is not present. This is useful 1430 when `client_credentials` authentication only 1431 results in the client id being provided in 1432 another claim. It only takes effect if 1433 `userNameClaim` is set. 1434 fallbackUserNamePrefix: 1435 type: string 1436 description: >- 1437 The prefix to use with the value of 1438 `fallbackUserNameClaim` to construct the user 1439 id. This only takes effect if 1440 `fallbackUserNameClaim` is true, and the value 1441 is present for the claim. Mapping usernames 1442 and client ids into the same user id space is 1443 useful in preventing name collisions. 1444 groupsClaim: 1445 type: string 1446 description: >- 1447 JsonPath query used to extract groups for the 1448 user during authentication. Extracted groups 1449 can be used by a custom authorizer. By default 1450 no groups are extracted. 1451 groupsClaimDelimiter: 1452 type: string 1453 description: >- 1454 A delimiter used to parse groups when they are 1455 extracted as a single String value rather than 1456 a JSON array. Default value is ',' (comma). 1457 introspectionEndpointUri: 1458 type: string 1459 description: >- 1460 URI of the token introspection endpoint which 1461 can be used to validate opaque non-JWT tokens. 1462 jwksEndpointUri: 1463 type: string 1464 description: >- 1465 URI of the JWKS certificate endpoint, which 1466 can be used for local JWT validation. 1467 jwksExpirySeconds: 1468 type: integer 1469 minimum: 1 1470 description: >- 1471 Configures how often are the JWKS certificates 1472 considered valid. The expiry interval has to 1473 be at least 60 seconds longer then the refresh 1474 interval specified in `jwksRefreshSeconds`. 1475 Defaults to 360 seconds. 1476 jwksMinRefreshPauseSeconds: 1477 type: integer 1478 minimum: 0 1479 description: >- 1480 The minimum pause between two consecutive 1481 refreshes. When an unknown signing key is 1482 encountered the refresh is scheduled 1483 immediately, but will always wait for this 1484 minimum pause. Defaults to 1 second. 1485 jwksRefreshSeconds: 1486 type: integer 1487 minimum: 1 1488 description: >- 1489 Configures how often are the JWKS certificates 1490 refreshed. The refresh interval has to be at 1491 least 60 seconds shorter then the expiry 1492 interval specified in `jwksExpirySeconds`. 1493 Defaults to 300 seconds. 1494 listenerConfig: 1495 x-kubernetes-preserve-unknown-fields: true 1496 type: object 1497 description: >- 1498 Configuration to be used for a specific 1499 listener. All values are prefixed with 1500 listener.name._<listener_name>_. 1501 maxSecondsWithoutReauthentication: 1502 type: integer 1503 description: >- 1504 Maximum number of seconds the authenticated 1505 session remains valid without 1506 re-authentication. This enables Apache Kafka 1507 re-authentication feature, and causes sessions 1508 to expire when the access token expires. If 1509 the access token expires before max time or if 1510 max time is reached, the client has to 1511 re-authenticate, otherwise the server will 1512 drop the connection. Not set by default - the 1513 authenticated session does not expire when the 1514 access token expires. This option only applies 1515 to SASL_OAUTHBEARER authentication mechanism 1516 (when `enableOauthBearer` is `true`). 1517 readTimeoutSeconds: 1518 type: integer 1519 description: >- 1520 The read timeout in seconds when connecting to 1521 authorization server. If not set, the 1522 effective read timeout is 60 seconds. 1523 sasl: 1524 type: boolean 1525 description: Enable or disable SASL on this listener. 1526 secrets: 1527 type: array 1528 items: 1529 type: object 1530 properties: 1531 key: 1532 type: string 1533 description: >- 1534 The key under which the secret value is 1535 stored in the Kubernetes Secret. 1536 secretName: 1537 type: string 1538 description: >- 1539 The name of the Kubernetes Secret 1540 containing the secret value. 1541 required: 1542 - key 1543 - secretName 1544 description: >- 1545 Secrets to be mounted to 1546 /opt/kafka/custom-authn-secrets/custom-listener-_<listener_name>-<port>_/_<secret_name>_. 1547 tlsTrustedCertificates: 1548 type: array 1549 items: 1550 type: object 1551 properties: 1552 certificate: 1553 type: string 1554 description: >- 1555 The name of the file certificate in the 1556 Secret. 1557 secretName: 1558 type: string 1559 description: >- 1560 The name of the Secret containing the 1561 certificate. 1562 required: 1563 - certificate 1564 - secretName 1565 description: >- 1566 Trusted certificates for TLS connection to the 1567 OAuth server. 1568 tokenEndpointUri: 1569 type: string 1570 description: >- 1571 URI of the Token Endpoint to use with 1572 SASL_PLAIN mechanism when the client 1573 authenticates with `clientId` and a `secret`. 1574 If set, the client can authenticate over 1575 SASL_PLAIN by either setting `username` to 1576 `clientId`, and setting `password` to client 1577 `secret`, or by setting `username` to account 1578 username, and `password` to access token 1579 prefixed with `$accessToken:`. If this option 1580 is not set, the `password` is always 1581 interpreted as an access token (without a 1582 prefix), and `username` as the account 1583 username (a so called 'no-client-credentials' 1584 mode). 1585 type: 1586 type: string 1587 enum: 1588 - tls 1589 - scram-sha-512 1590 - oauth 1591 - custom 1592 description: >- 1593 Authentication type. `oauth` type uses SASL 1594 OAUTHBEARER Authentication. `scram-sha-512` 1595 type uses SASL SCRAM-SHA-512 Authentication. 1596 `tls` type uses TLS Client Authentication. 1597 `tls` type is supported only on TLS 1598 listeners.`custom` type allows for any 1599 authentication type to be used. 1600 userInfoEndpointUri: 1601 type: string 1602 description: >- 1603 URI of the User Info Endpoint to use as a 1604 fallback to obtaining the user id when the 1605 Introspection Endpoint does not return 1606 information that can be used for the user id. 1607 userNameClaim: 1608 type: string 1609 description: >- 1610 Name of the claim from the JWT authentication 1611 token, Introspection Endpoint response or User 1612 Info Endpoint response which will be used to 1613 extract the user id. Defaults to `sub`. 1614 validIssuerUri: 1615 type: string 1616 description: >- 1617 URI of the token issuer used for 1618 authentication. 1619 validTokenType: 1620 type: string 1621 description: >- 1622 Valid value for the `token_type` attribute 1623 returned by the Introspection Endpoint. No 1624 default value, and not checked by default. 1625 required: 1626 - type 1627 description: Authentication configuration for this listener. 1628 configuration: 1629 type: object 1630 properties: 1631 brokerCertChainAndKey: 1632 type: object 1633 properties: 1634 certificate: 1635 type: string 1636 description: >- 1637 The name of the file certificate in the 1638 Secret. 1639 key: 1640 type: string 1641 description: The name of the private key in the Secret. 1642 secretName: 1643 type: string 1644 description: >- 1645 The name of the Secret containing the 1646 certificate. 1647 required: 1648 - certificate 1649 - key 1650 - secretName 1651 description: >- 1652 Reference to the `Secret` which holds the 1653 certificate and private key pair which will be 1654 used for this listener. The certificate can 1655 optionally contain the whole chain. This field 1656 can be used only with listeners with enabled 1657 TLS encryption. 1658 externalTrafficPolicy: 1659 type: string 1660 enum: 1661 - Local 1662 - Cluster 1663 description: >- 1664 Specifies whether the service routes external 1665 traffic to node-local or cluster-wide 1666 endpoints. `Cluster` may cause a second hop to 1667 another node and obscures the client source 1668 IP. `Local` avoids a second hop for 1669 LoadBalancer and Nodeport type services and 1670 preserves the client source IP (when supported 1671 by the infrastructure). If unspecified, 1672 Kubernetes will use `Cluster` as the 1673 default.This field can be used only with 1674 `loadbalancer` or `nodeport` type listener. 1675 loadBalancerSourceRanges: 1676 type: array 1677 items: 1678 type: string 1679 description: >- 1680 A list of CIDR ranges (for example 1681 `10.0.0.0/8` or `130.211.204.1/32`) from which 1682 clients can connect to load balancer type 1683 listeners. If supported by the platform, 1684 traffic through the loadbalancer is restricted 1685 to the specified CIDR ranges. This field is 1686 applicable only for loadbalancer type services 1687 and is ignored if the cloud provider does not 1688 support the feature. For more information, see 1689 https://v1-17.docs.kubernetes.io/docs/tasks/access-application-cluster/configure-cloud-provider-firewall/. 1690 This field can be used only with 1691 `loadbalancer` type listener. 1692 bootstrap: 1693 type: object 1694 properties: 1695 alternativeNames: 1696 type: array 1697 items: 1698 type: string 1699 description: >- 1700 Additional alternative names for the 1701 bootstrap service. The alternative names 1702 will be added to the list of subject 1703 alternative names of the TLS certificates. 1704 host: 1705 type: string 1706 description: >- 1707 The bootstrap host. This field will be 1708 used in the Ingress resource or in the 1709 Route resource to specify the desired 1710 hostname. This field can be used only with 1711 `route` (optional) or `ingress` (required) 1712 type listeners. 1713 nodePort: 1714 type: integer 1715 description: >- 1716 Node port for the bootstrap service. This 1717 field can be used only with `nodeport` 1718 type listener. 1719 loadBalancerIP: 1720 type: string 1721 description: >- 1722 The loadbalancer is requested with the IP 1723 address specified in this field. This 1724 feature depends on whether the underlying 1725 cloud provider supports specifying the 1726 `loadBalancerIP` when a load balancer is 1727 created. This field is ignored if the 1728 cloud provider does not support the 1729 feature.This field can be used only with 1730 `loadbalancer` type listener. 1731 annotations: 1732 x-kubernetes-preserve-unknown-fields: true 1733 type: object 1734 description: >- 1735 Annotations that will be added to the 1736 `Ingress`, `Route`, or `Service` resource. 1737 You can use this field to configure DNS 1738 providers such as External DNS. This field 1739 can be used only with `loadbalancer`, 1740 `nodeport`, `route`, or `ingress` type 1741 listeners. 1742 labels: 1743 x-kubernetes-preserve-unknown-fields: true 1744 type: object 1745 description: >- 1746 Labels that will be added to the 1747 `Ingress`, `Route`, or `Service` resource. 1748 This field can be used only with 1749 `loadbalancer`, `nodeport`, `route`, or 1750 `ingress` type listeners. 1751 description: Bootstrap configuration. 1752 brokers: 1753 type: array 1754 items: 1755 type: object 1756 properties: 1757 broker: 1758 type: integer 1759 description: >- 1760 ID of the kafka broker (broker 1761 identifier). Broker IDs start from 0 and 1762 correspond to the number of broker 1763 replicas. 1764 advertisedHost: 1765 type: string 1766 description: >- 1767 The host name which will be used in the 1768 brokers' `advertised.brokers`. 1769 advertisedPort: 1770 type: integer 1771 description: >- 1772 The port number which will be used in 1773 the brokers' `advertised.brokers`. 1774 host: 1775 type: string 1776 description: >- 1777 The broker host. This field will be used 1778 in the Ingress resource or in the Route 1779 resource to specify the desired 1780 hostname. This field can be used only 1781 with `route` (optional) or `ingress` 1782 (required) type listeners. 1783 nodePort: 1784 type: integer 1785 description: >- 1786 Node port for the per-broker service. 1787 This field can be used only with 1788 `nodeport` type listener. 1789 loadBalancerIP: 1790 type: string 1791 description: >- 1792 The loadbalancer is requested with the 1793 IP address specified in this field. This 1794 feature depends on whether the 1795 underlying cloud provider supports 1796 specifying the `loadBalancerIP` when a 1797 load balancer is created. This field is 1798 ignored if the cloud provider does not 1799 support the feature.This field can be 1800 used only with `loadbalancer` type 1801 listener. 1802 annotations: 1803 x-kubernetes-preserve-unknown-fields: true 1804 type: object 1805 description: >- 1806 Annotations that will be added to the 1807 `Ingress` or `Service` resource. You can 1808 use this field to configure DNS 1809 providers such as External DNS. This 1810 field can be used only with 1811 `loadbalancer`, `nodeport`, or `ingress` 1812 type listeners. 1813 labels: 1814 x-kubernetes-preserve-unknown-fields: true 1815 type: object 1816 description: >- 1817 Labels that will be added to the 1818 `Ingress`, `Route`, or `Service` 1819 resource. This field can be used only 1820 with `loadbalancer`, `nodeport`, 1821 `route`, or `ingress` type listeners. 1822 required: 1823 - broker 1824 description: Per-broker configurations. 1825 ipFamilyPolicy: 1826 type: string 1827 enum: 1828 - SingleStack 1829 - PreferDualStack 1830 - RequireDualStack 1831 description: >- 1832 Specifies the IP Family Policy used by the 1833 service. Available options are `SingleStack`, 1834 `PreferDualStack` and `RequireDualStack`. 1835 `SingleStack` is for a single IP family. 1836 `PreferDualStack` is for two IP families on 1837 dual-stack configured clusters or a single IP 1838 family on single-stack clusters. 1839 `RequireDualStack` fails unless there are two 1840 IP families on dual-stack configured clusters. 1841 If unspecified, Kubernetes will choose the 1842 default value based on the service type. 1843 Available on Kubernetes 1.20 and newer. 1844 ipFamilies: 1845 type: array 1846 items: 1847 type: string 1848 enum: 1849 - IPv4 1850 - IPv6 1851 description: >- 1852 Specifies the IP Families used by the service. 1853 Available options are `IPv4` and `IPv6. If 1854 unspecified, Kubernetes will choose the 1855 default value based on the `ipFamilyPolicy` 1856 setting. Available on Kubernetes 1.20 and 1857 newer. 1858 createBootstrapService: 1859 type: boolean 1860 description: >- 1861 Whether to create the bootstrap service or 1862 not. The bootstrap service is created by 1863 default (if not specified differently). This 1864 field can be used with the `loadBalancer` type 1865 listener. 1866 class: 1867 type: string 1868 description: >- 1869 Configures the `Ingress` class that defines 1870 which `Ingress` controller will be used. This 1871 field can be used only with `ingress` type 1872 listener. If not specified, the default 1873 Ingress controller will be used. 1874 finalizers: 1875 type: array 1876 items: 1877 type: string 1878 description: >- 1879 A list of finalizers which will be configured 1880 for the `LoadBalancer` type Services created 1881 for this listener. If supported by the 1882 platform, the finalizer 1883 `service.kubernetes.io/load-balancer-cleanup` 1884 to make sure that the external load balancer 1885 is deleted together with the service.For more 1886 information, see 1887 https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#garbage-collecting-load-balancers. 1888 This field can be used only with 1889 `loadbalancer` type listeners. 1890 maxConnectionCreationRate: 1891 type: integer 1892 description: >- 1893 The maximum connection creation rate we allow 1894 in this listener at any time. New connections 1895 will be throttled if the limit is reached. 1896 maxConnections: 1897 type: integer 1898 description: >- 1899 The maximum number of connections we allow for 1900 this listener in the broker at any time. New 1901 connections are blocked if the limit is 1902 reached. 1903 preferredNodePortAddressType: 1904 type: string 1905 enum: 1906 - ExternalIP 1907 - ExternalDNS 1908 - InternalIP 1909 - InternalDNS 1910 - Hostname 1911 description: >- 1912 Defines which address type should be used as 1913 the node address. Available types are: 1914 `ExternalDNS`, `ExternalIP`, `InternalDNS`, 1915 `InternalIP` and `Hostname`. By default, the 1916 addresses will be used in the following order 1917 (the first one found will be used): 1918 1919 1920 * `ExternalDNS` 1921 1922 * `ExternalIP` 1923 1924 * `InternalDNS` 1925 1926 * `InternalIP` 1927 1928 * `Hostname` 1929 1930 1931 This field is used to select the preferred 1932 address type, which is checked first. If no 1933 address is found for this address type, the 1934 other types are checked in the default order. 1935 This field can only be used with `nodeport` 1936 type listener. 1937 useServiceDnsDomain: 1938 type: boolean 1939 description: >- 1940 Configures whether the Kubernetes service DNS 1941 domain should be used or not. If set to 1942 `true`, the generated addresses will contain 1943 the service DNS domain suffix (by default 1944 `.cluster.local`, can be configured using 1945 environment variable 1946 `KUBERNETES_SERVICE_DNS_DOMAIN`). Defaults to 1947 `false`.This field can be used only with 1948 `internal` type listener. 1949 description: Additional listener configuration. 1950 networkPolicyPeers: 1951 type: array 1952 items: 1953 type: object 1954 properties: 1955 ipBlock: 1956 type: object 1957 properties: 1958 cidr: 1959 type: string 1960 except: 1961 type: array 1962 items: 1963 type: string 1964 namespaceSelector: 1965 type: object 1966 properties: 1967 matchExpressions: 1968 type: array 1969 items: 1970 type: object 1971 properties: 1972 key: 1973 type: string 1974 operator: 1975 type: string 1976 values: 1977 type: array 1978 items: 1979 type: string 1980 matchLabels: 1981 x-kubernetes-preserve-unknown-fields: true 1982 type: object 1983 podSelector: 1984 type: object 1985 properties: 1986 matchExpressions: 1987 type: array 1988 items: 1989 type: object 1990 properties: 1991 key: 1992 type: string 1993 operator: 1994 type: string 1995 values: 1996 type: array 1997 items: 1998 type: string 1999 matchLabels: 2000 x-kubernetes-preserve-unknown-fields: true 2001 type: object 2002 description: >- 2003 List of peers which should be able to connect to 2004 this listener. Peers in this list are combined 2005 using a logical OR operation. If this field is 2006 empty or missing, all connections will be allowed 2007 for this listener. If this field is present and 2008 contains at least one item, the listener only 2009 allows the traffic which matches at least one item 2010 in this list. 2011 required: 2012 - name 2013 - port 2014 - type 2015 - tls 2016 description: Configures listeners of Kafka brokers. 2017 config: 2018 x-kubernetes-preserve-unknown-fields: true 2019 type: object 2020 description: >- 2021 Kafka broker config properties with the following 2022 prefixes cannot be set: listeners, advertised., broker., 2023 listener., host.name, port, inter.broker.listener.name, 2024 sasl., ssl., security., password., log.dir, 2025 zookeeper.connect, zookeeper.set.acl, zookeeper.ssl, 2026 zookeeper.clientCnxnSocket, authorizer., super.user, 2027 cruise.control.metrics.topic, 2028 cruise.control.metrics.reporter.bootstrap.servers (with 2029 the exception of: zookeeper.connection.timeout.ms, 2030 ssl.cipher.suites, ssl.protocol, 2031 ssl.enabled.protocols,cruise.control.metrics.topic.num.partitions, 2032 cruise.control.metrics.topic.replication.factor, 2033 cruise.control.metrics.topic.retention.ms,cruise.control.metrics.topic.auto.create.retries, 2034 cruise.control.metrics.topic.auto.create.timeout.ms,cruise.control.metrics.topic.min.insync.replicas). 2035 storage: 2036 type: object 2037 properties: 2038 class: 2039 type: string 2040 description: >- 2041 The storage class to use for dynamic volume 2042 allocation. 2043 deleteClaim: 2044 type: boolean 2045 description: >- 2046 Specifies if the persistent volume claim has to be 2047 deleted when the cluster is un-deployed. 2048 id: 2049 type: integer 2050 minimum: 0 2051 description: >- 2052 Storage identification number. It is mandatory only 2053 for storage volumes defined in a storage of type 2054 'jbod'. 2055 overrides: 2056 type: array 2057 items: 2058 type: object 2059 properties: 2060 class: 2061 type: string 2062 description: >- 2063 The storage class to use for dynamic volume 2064 allocation for this broker. 2065 broker: 2066 type: integer 2067 description: Id of the kafka broker (broker identifier). 2068 description: >- 2069 Overrides for individual brokers. The `overrides` 2070 field allows to specify a different configuration 2071 for different brokers. 2072 selector: 2073 x-kubernetes-preserve-unknown-fields: true 2074 type: object 2075 description: >- 2076 Specifies a specific persistent volume to use. It 2077 contains key:value pairs representing labels for 2078 selecting such a volume. 2079 size: 2080 type: string 2081 description: >- 2082 When type=persistent-claim, defines the size of the 2083 persistent volume claim (i.e 1Gi). Mandatory when 2084 type=persistent-claim. 2085 sizeLimit: 2086 type: string 2087 pattern: '^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$' 2088 description: >- 2089 When type=ephemeral, defines the total amount of 2090 local storage required for this EmptyDir volume (for 2091 example 1Gi). 2092 type: 2093 type: string 2094 enum: 2095 - ephemeral 2096 - persistent-claim 2097 - jbod 2098 description: >- 2099 Storage type, must be either 'ephemeral', 2100 'persistent-claim', or 'jbod'. 2101 volumes: 2102 type: array 2103 items: 2104 type: object 2105 properties: 2106 class: 2107 type: string 2108 description: >- 2109 The storage class to use for dynamic volume 2110 allocation. 2111 deleteClaim: 2112 type: boolean 2113 description: >- 2114 Specifies if the persistent volume claim has 2115 to be deleted when the cluster is un-deployed. 2116 id: 2117 type: integer 2118 minimum: 0 2119 description: >- 2120 Storage identification number. It is mandatory 2121 only for storage volumes defined in a storage 2122 of type 'jbod'. 2123 overrides: 2124 type: array 2125 items: 2126 type: object 2127 properties: 2128 class: 2129 type: string 2130 description: >- 2131 The storage class to use for dynamic 2132 volume allocation for this broker. 2133 broker: 2134 type: integer 2135 description: >- 2136 Id of the kafka broker (broker 2137 identifier). 2138 description: >- 2139 Overrides for individual brokers. The 2140 `overrides` field allows to specify a 2141 different configuration for different brokers. 2142 selector: 2143 x-kubernetes-preserve-unknown-fields: true 2144 type: object 2145 description: >- 2146 Specifies a specific persistent volume to use. 2147 It contains key:value pairs representing 2148 labels for selecting such a volume. 2149 size: 2150 type: string 2151 description: >- 2152 When type=persistent-claim, defines the size 2153 of the persistent volume claim (i.e 1Gi). 2154 Mandatory when type=persistent-claim. 2155 sizeLimit: 2156 type: string 2157 pattern: '^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$' 2158 description: >- 2159 When type=ephemeral, defines the total amount 2160 of local storage required for this EmptyDir 2161 volume (for example 1Gi). 2162 type: 2163 type: string 2164 enum: 2165 - ephemeral 2166 - persistent-claim 2167 description: >- 2168 Storage type, must be either 'ephemeral' or 2169 'persistent-claim'. 2170 required: 2171 - type 2172 description: >- 2173 List of volumes as Storage objects representing the 2174 JBOD disks array. 2175 required: 2176 - type 2177 description: Storage configuration (disk). Cannot be updated. 2178 authorization: 2179 type: object 2180 properties: 2181 allowOnError: 2182 type: boolean 2183 description: >- 2184 Defines whether a Kafka client should be allowed or 2185 denied by default when the authorizer fails to query 2186 the Open Policy Agent, for example, when it is 2187 temporarily unavailable). Defaults to `false` - all 2188 actions will be denied. 2189 authorizerClass: 2190 type: string 2191 description: >- 2192 Authorization implementation class, which must be 2193 available in classpath. 2194 clientId: 2195 type: string 2196 description: >- 2197 OAuth Client ID which the Kafka client can use to 2198 authenticate against the OAuth server and use the 2199 token endpoint URI. 2200 connectTimeoutSeconds: 2201 type: integer 2202 minimum: 1 2203 description: >- 2204 The connect timeout in seconds when connecting to 2205 authorization server. If not set, the effective 2206 connect timeout is 60 seconds. 2207 delegateToKafkaAcls: 2208 type: boolean 2209 description: >- 2210 Whether authorization decision should be delegated 2211 to the 'Simple' authorizer if DENIED by Keycloak 2212 Authorization Services policies. Default value is 2213 `false`. 2214 disableTlsHostnameVerification: 2215 type: boolean 2216 description: >- 2217 Enable or disable TLS hostname verification. Default 2218 value is `false`. 2219 enableMetrics: 2220 type: boolean 2221 description: >- 2222 Defines whether the Open Policy Agent authorizer 2223 plugin should provide metrics. Defaults to `false`. 2224 expireAfterMs: 2225 type: integer 2226 description: >- 2227 The expiration of the records kept in the local 2228 cache to avoid querying the Open Policy Agent for 2229 every request. Defines how often the cached 2230 authorization decisions are reloaded from the Open 2231 Policy Agent server. In milliseconds. Defaults to 2232 `3600000`. 2233 grantsRefreshPeriodSeconds: 2234 type: integer 2235 minimum: 0 2236 description: >- 2237 The time between two consecutive grants refresh runs 2238 in seconds. The default value is 60. 2239 grantsRefreshPoolSize: 2240 type: integer 2241 minimum: 1 2242 description: >- 2243 The number of threads to use to refresh grants for 2244 active sessions. The more threads, the more 2245 parallelism, so the sooner the job completes. 2246 However, using more threads places a heavier load on 2247 the authorization server. The default value is 5. 2248 initialCacheCapacity: 2249 type: integer 2250 description: >- 2251 Initial capacity of the local cache used by the 2252 authorizer to avoid querying the Open Policy Agent 2253 for every request Defaults to `5000`. 2254 maximumCacheSize: 2255 type: integer 2256 description: >- 2257 Maximum capacity of the local cache used by the 2258 authorizer to avoid querying the Open Policy Agent 2259 for every request. Defaults to `50000`. 2260 readTimeoutSeconds: 2261 type: integer 2262 minimum: 1 2263 description: >- 2264 The read timeout in seconds when connecting to 2265 authorization server. If not set, the effective read 2266 timeout is 60 seconds. 2267 superUsers: 2268 type: array 2269 items: 2270 type: string 2271 description: >- 2272 List of super users, which are user principals with 2273 unlimited access rights. 2274 supportsAdminApi: 2275 type: boolean 2276 description: >- 2277 Indicates whether the custom authorizer supports the 2278 APIs for managing ACLs using the Kafka Admin API. 2279 Defaults to `false`. 2280 tlsTrustedCertificates: 2281 type: array 2282 items: 2283 type: object 2284 properties: 2285 certificate: 2286 type: string 2287 description: >- 2288 The name of the file certificate in the 2289 Secret. 2290 secretName: 2291 type: string 2292 description: >- 2293 The name of the Secret containing the 2294 certificate. 2295 required: 2296 - certificate 2297 - secretName 2298 description: >- 2299 Trusted certificates for TLS connection to the OAuth 2300 server. 2301 tokenEndpointUri: 2302 type: string 2303 description: Authorization server token endpoint URI. 2304 type: 2305 type: string 2306 enum: 2307 - simple 2308 - opa 2309 - keycloak 2310 - custom 2311 description: >- 2312 Authorization type. Currently, the supported types 2313 are `simple`, `keycloak`, `opa` and `custom`. 2314 `simple` authorization type uses Kafka's 2315 `kafka.security.authorizer.AclAuthorizer` class for 2316 authorization. `keycloak` authorization type uses 2317 Keycloak Authorization Services for authorization. 2318 `opa` authorization type uses Open Policy Agent 2319 based authorization.`custom` authorization type uses 2320 user-provided implementation for authorization. 2321 url: 2322 type: string 2323 example: 'http://opa:8181/v1/data/kafka/authz/allow' 2324 description: >- 2325 The URL used to connect to the Open Policy Agent 2326 server. The URL has to include the policy which will 2327 be queried by the authorizer. This option is 2328 required. 2329 required: 2330 - type 2331 description: Authorization configuration for Kafka brokers. 2332 rack: 2333 type: object 2334 properties: 2335 topologyKey: 2336 type: string 2337 example: topology.kubernetes.io/zone 2338 description: >- 2339 A key that matches labels assigned to the Kubernetes 2340 cluster nodes. The value of the label is used to set 2341 the broker's `broker.rack` config and `client.rack` 2342 in Kafka Connect. 2343 required: 2344 - topologyKey 2345 description: Configuration of the `broker.rack` broker config. 2346 brokerRackInitImage: 2347 type: string 2348 description: >- 2349 The image of the init container used for initializing 2350 the `broker.rack`. 2351 livenessProbe: 2352 type: object 2353 properties: 2354 failureThreshold: 2355 type: integer 2356 minimum: 1 2357 description: >- 2358 Minimum consecutive failures for the probe to be 2359 considered failed after having succeeded. Defaults 2360 to 3. Minimum value is 1. 2361 initialDelaySeconds: 2362 type: integer 2363 minimum: 0 2364 description: >- 2365 The initial delay before first the health is first 2366 checked. Default to 15 seconds. Minimum value is 0. 2367 periodSeconds: 2368 type: integer 2369 minimum: 1 2370 description: >- 2371 How often (in seconds) to perform the probe. Default 2372 to 10 seconds. Minimum value is 1. 2373 successThreshold: 2374 type: integer 2375 minimum: 1 2376 description: >- 2377 Minimum consecutive successes for the probe to be 2378 considered successful after having failed. Defaults 2379 to 1. Must be 1 for liveness. Minimum value is 1. 2380 timeoutSeconds: 2381 type: integer 2382 minimum: 1 2383 description: >- 2384 The timeout for each attempted health check. Default 2385 to 5 seconds. Minimum value is 1. 2386 description: Pod liveness checking. 2387 readinessProbe: 2388 type: object 2389 properties: 2390 failureThreshold: 2391 type: integer 2392 minimum: 1 2393 description: >- 2394 Minimum consecutive failures for the probe to be 2395 considered failed after having succeeded. Defaults 2396 to 3. Minimum value is 1. 2397 initialDelaySeconds: 2398 type: integer 2399 minimum: 0 2400 description: >- 2401 The initial delay before first the health is first 2402 checked. Default to 15 seconds. Minimum value is 0. 2403 periodSeconds: 2404 type: integer 2405 minimum: 1 2406 description: >- 2407 How often (in seconds) to perform the probe. Default 2408 to 10 seconds. Minimum value is 1. 2409 successThreshold: 2410 type: integer 2411 minimum: 1 2412 description: >- 2413 Minimum consecutive successes for the probe to be 2414 considered successful after having failed. Defaults 2415 to 1. Must be 1 for liveness. Minimum value is 1. 2416 timeoutSeconds: 2417 type: integer 2418 minimum: 1 2419 description: >- 2420 The timeout for each attempted health check. Default 2421 to 5 seconds. Minimum value is 1. 2422 description: Pod readiness checking. 2423 jvmOptions: 2424 type: object 2425 properties: 2426 '-XX': 2427 x-kubernetes-preserve-unknown-fields: true 2428 type: object 2429 description: A map of -XX options to the JVM. 2430 '-Xms': 2431 type: string 2432 pattern: '^[0-9]+[mMgG]?$' 2433 description: '-Xms option to to the JVM.' 2434 '-Xmx': 2435 type: string 2436 pattern: '^[0-9]+[mMgG]?$' 2437 description: '-Xmx option to to the JVM.' 2438 gcLoggingEnabled: 2439 type: boolean 2440 description: >- 2441 Specifies whether the Garbage Collection logging is 2442 enabled. The default is false. 2443 javaSystemProperties: 2444 type: array 2445 items: 2446 type: object 2447 properties: 2448 name: 2449 type: string 2450 description: The system property name. 2451 value: 2452 type: string 2453 description: The system property value. 2454 description: >- 2455 A map of additional system properties which will be 2456 passed using the `-D` option to the JVM. 2457 description: JVM Options for pods. 2458 jmxOptions: 2459 type: object 2460 properties: 2461 authentication: 2462 type: object 2463 properties: 2464 type: 2465 type: string 2466 enum: 2467 - password 2468 description: >- 2469 Authentication type. Currently the only 2470 supported types are `password`.`password` type 2471 creates a username and protected port with no 2472 TLS. 2473 required: 2474 - type 2475 description: >- 2476 Authentication configuration for connecting to the 2477 JMX port. 2478 description: JMX Options for Kafka brokers. 2479 resources: 2480 type: object 2481 properties: 2482 limits: 2483 x-kubernetes-preserve-unknown-fields: true 2484 type: object 2485 requests: 2486 x-kubernetes-preserve-unknown-fields: true 2487 type: object 2488 description: CPU and memory resources to reserve. 2489 metricsConfig: 2490 type: object 2491 properties: 2492 type: 2493 type: string 2494 enum: 2495 - jmxPrometheusExporter 2496 description: >- 2497 Metrics type. Only 'jmxPrometheusExporter' supported 2498 currently. 2499 valueFrom: 2500 type: object 2501 properties: 2502 configMapKeyRef: 2503 type: object 2504 properties: 2505 key: 2506 type: string 2507 name: 2508 type: string 2509 optional: 2510 type: boolean 2511 description: >- 2512 Reference to the key in the ConfigMap containing 2513 the configuration. 2514 description: >- 2515 ConfigMap entry where the Prometheus JMX Exporter 2516 configuration is stored. For details of the 2517 structure of this configuration, see the 2518 {JMXExporter}. 2519 required: 2520 - type 2521 - valueFrom 2522 description: Metrics configuration. 2523 logging: 2524 type: object 2525 properties: 2526 loggers: 2527 x-kubernetes-preserve-unknown-fields: true 2528 type: object 2529 description: A Map from logger name to logger level. 2530 type: 2531 type: string 2532 enum: 2533 - inline 2534 - external 2535 description: 'Logging type, must be either ''inline'' or ''external''.' 2536 valueFrom: 2537 type: object 2538 properties: 2539 configMapKeyRef: 2540 type: object 2541 properties: 2542 key: 2543 type: string 2544 name: 2545 type: string 2546 optional: 2547 type: boolean 2548 description: >- 2549 Reference to the key in the ConfigMap containing 2550 the configuration. 2551 description: >- 2552 `ConfigMap` entry where the logging configuration is 2553 stored. 2554 required: 2555 - type 2556 description: Logging configuration for Kafka. 2557 template: 2558 type: object 2559 properties: 2560 statefulset: 2561 type: object 2562 properties: 2563 metadata: 2564 type: object 2565 properties: 2566 labels: 2567 x-kubernetes-preserve-unknown-fields: true 2568 type: object 2569 description: >- 2570 Labels added to the resource template. Can 2571 be applied to different resources such as 2572 `StatefulSets`, `Deployments`, `Pods`, and 2573 `Services`. 2574 annotations: 2575 x-kubernetes-preserve-unknown-fields: true 2576 type: object 2577 description: >- 2578 Annotations added to the resource template. 2579 Can be applied to different resources such 2580 as `StatefulSets`, `Deployments`, `Pods`, 2581 and `Services`. 2582 description: Metadata applied to the resource. 2583 podManagementPolicy: 2584 type: string 2585 enum: 2586 - OrderedReady 2587 - Parallel 2588 description: >- 2589 PodManagementPolicy which will be used for this 2590 StatefulSet. Valid values are `Parallel` and 2591 `OrderedReady`. Defaults to `Parallel`. 2592 description: Template for Kafka `StatefulSet`. 2593 pod: 2594 type: object 2595 properties: 2596 metadata: 2597 type: object 2598 properties: 2599 labels: 2600 x-kubernetes-preserve-unknown-fields: true 2601 type: object 2602 description: >- 2603 Labels added to the resource template. Can 2604 be applied to different resources such as 2605 `StatefulSets`, `Deployments`, `Pods`, and 2606 `Services`. 2607 annotations: 2608 x-kubernetes-preserve-unknown-fields: true 2609 type: object 2610 description: >- 2611 Annotations added to the resource template. 2612 Can be applied to different resources such 2613 as `StatefulSets`, `Deployments`, `Pods`, 2614 and `Services`. 2615 description: Metadata applied to the resource. 2616 imagePullSecrets: 2617 type: array 2618 items: 2619 type: object 2620 properties: 2621 name: 2622 type: string 2623 description: >- 2624 List of references to secrets in the same 2625 namespace to use for pulling any of the images 2626 used by this Pod. When the 2627 `STRIMZI_IMAGE_PULL_SECRETS` environment 2628 variable in Cluster Operator and the 2629 `imagePullSecrets` option are specified, only 2630 the `imagePullSecrets` variable is used and the 2631 `STRIMZI_IMAGE_PULL_SECRETS` variable is 2632 ignored. 2633 securityContext: 2634 type: object 2635 properties: 2636 fsGroup: 2637 type: integer 2638 fsGroupChangePolicy: 2639 type: string 2640 runAsGroup: 2641 type: integer 2642 runAsNonRoot: 2643 type: boolean 2644 runAsUser: 2645 type: integer 2646 seLinuxOptions: 2647 type: object 2648 properties: 2649 level: 2650 type: string 2651 role: 2652 type: string 2653 type: 2654 type: string 2655 user: 2656 type: string 2657 seccompProfile: 2658 type: object 2659 properties: 2660 localhostProfile: 2661 type: string 2662 type: 2663 type: string 2664 supplementalGroups: 2665 type: array 2666 items: 2667 type: integer 2668 sysctls: 2669 type: array 2670 items: 2671 type: object 2672 properties: 2673 name: 2674 type: string 2675 value: 2676 type: string 2677 windowsOptions: 2678 type: object 2679 properties: 2680 gmsaCredentialSpec: 2681 type: string 2682 gmsaCredentialSpecName: 2683 type: string 2684 hostProcess: 2685 type: boolean 2686 runAsUserName: 2687 type: string 2688 description: >- 2689 Configures pod-level security attributes and 2690 common container settings. 2691 terminationGracePeriodSeconds: 2692 type: integer 2693 minimum: 0 2694 description: >- 2695 The grace period is the duration in seconds 2696 after the processes running in the pod are sent 2697 a termination signal, and the time when the 2698 processes are forcibly halted with a kill 2699 signal. Set this value to longer than the 2700 expected cleanup time for your process. Value 2701 must be a non-negative integer. A zero value 2702 indicates delete immediately. You might need to 2703 increase the grace period for very large Kafka 2704 clusters, so that the Kafka brokers have enough 2705 time to transfer their work to another broker 2706 before they are terminated. Defaults to 30 2707 seconds. 2708 affinity: 2709 type: object 2710 properties: 2711 nodeAffinity: 2712 type: object 2713 properties: 2714 preferredDuringSchedulingIgnoredDuringExecution: 2715 type: array 2716 items: 2717 type: object 2718 properties: 2719 preference: 2720 type: object 2721 properties: 2722 matchExpressions: 2723 type: array 2724 items: 2725 type: object 2726 properties: 2727 key: 2728 type: string 2729 operator: 2730 type: string 2731 values: 2732 type: array 2733 items: 2734 type: string 2735 matchFields: 2736 type: array 2737 items: 2738 type: object 2739 properties: 2740 key: 2741 type: string 2742 operator: 2743 type: string 2744 values: 2745 type: array 2746 items: 2747 type: string 2748 weight: 2749 type: integer 2750 requiredDuringSchedulingIgnoredDuringExecution: 2751 type: object 2752 properties: 2753 nodeSelectorTerms: 2754 type: array 2755 items: 2756 type: object 2757 properties: 2758 matchExpressions: 2759 type: array 2760 items: 2761 type: object 2762 properties: 2763 key: 2764 type: string 2765 operator: 2766 type: string 2767 values: 2768 type: array 2769 items: 2770 type: string 2771 matchFields: 2772 type: array 2773 items: 2774 type: object 2775 properties: 2776 key: 2777 type: string 2778 operator: 2779 type: string 2780 values: 2781 type: array 2782 items: 2783 type: string 2784 podAffinity: 2785 type: object 2786 properties: 2787 preferredDuringSchedulingIgnoredDuringExecution: 2788 type: array 2789 items: 2790 type: object 2791 properties: 2792 podAffinityTerm: 2793 type: object 2794 properties: 2795 labelSelector: 2796 type: object 2797 properties: 2798 matchExpressions: 2799 type: array 2800 items: 2801 type: object 2802 properties: 2803 key: 2804 type: string 2805 operator: 2806 type: string 2807 values: 2808 type: array 2809 items: 2810 type: string 2811 matchLabels: 2812 x-kubernetes-preserve-unknown-fields: true 2813 type: object 2814 namespaceSelector: 2815 type: object 2816 properties: 2817 matchExpressions: 2818 type: array 2819 items: 2820 type: object 2821 properties: 2822 key: 2823 type: string 2824 operator: 2825 type: string 2826 values: 2827 type: array 2828 items: 2829 type: string 2830 matchLabels: 2831 x-kubernetes-preserve-unknown-fields: true 2832 type: object 2833 namespaces: 2834 type: array 2835 items: 2836 type: string 2837 topologyKey: 2838 type: string 2839 weight: 2840 type: integer 2841 requiredDuringSchedulingIgnoredDuringExecution: 2842 type: array 2843 items: 2844 type: object 2845 properties: 2846 labelSelector: 2847 type: object 2848 properties: 2849 matchExpressions: 2850 type: array 2851 items: 2852 type: object 2853 properties: 2854 key: 2855 type: string 2856 operator: 2857 type: string 2858 values: 2859 type: array 2860 items: 2861 type: string 2862 matchLabels: 2863 x-kubernetes-preserve-unknown-fields: true 2864 type: object 2865 namespaceSelector: 2866 type: object 2867 properties: 2868 matchExpressions: 2869 type: array 2870 items: 2871 type: object 2872 properties: 2873 key: 2874 type: string 2875 operator: 2876 type: string 2877 values: 2878 type: array 2879 items: 2880 type: string 2881 matchLabels: 2882 x-kubernetes-preserve-unknown-fields: true 2883 type: object 2884 namespaces: 2885 type: array 2886 items: 2887 type: string 2888 topologyKey: 2889 type: string 2890 podAntiAffinity: 2891 type: object 2892 properties: 2893 preferredDuringSchedulingIgnoredDuringExecution: 2894 type: array 2895 items: 2896 type: object 2897 properties: 2898 podAffinityTerm: 2899 type: object 2900 properties: 2901 labelSelector: 2902 type: object 2903 properties: 2904 matchExpressions: 2905 type: array 2906 items: 2907 type: object 2908 properties: 2909 key: 2910 type: string 2911 operator: 2912 type: string 2913 values: 2914 type: array 2915 items: 2916 type: string 2917 matchLabels: 2918 x-kubernetes-preserve-unknown-fields: true 2919 type: object 2920 namespaceSelector: 2921 type: object 2922 properties: 2923 matchExpressions: 2924 type: array 2925 items: 2926 type: object 2927 properties: 2928 key: 2929 type: string 2930 operator: 2931 type: string 2932 values: 2933 type: array 2934 items: 2935 type: string 2936 matchLabels: 2937 x-kubernetes-preserve-unknown-fields: true 2938 type: object 2939 namespaces: 2940 type: array 2941 items: 2942 type: string 2943 topologyKey: 2944 type: string 2945 weight: 2946 type: integer 2947 requiredDuringSchedulingIgnoredDuringExecution: 2948 type: array 2949 items: 2950 type: object 2951 properties: 2952 labelSelector: 2953 type: object 2954 properties: 2955 matchExpressions: 2956 type: array 2957 items: 2958 type: object 2959 properties: 2960 key: 2961 type: string 2962 operator: 2963 type: string 2964 values: 2965 type: array 2966 items: 2967 type: string 2968 matchLabels: 2969 x-kubernetes-preserve-unknown-fields: true 2970 type: object 2971 namespaceSelector: 2972 type: object 2973 properties: 2974 matchExpressions: 2975 type: array 2976 items: 2977 type: object 2978 properties: 2979 key: 2980 type: string 2981 operator: 2982 type: string 2983 values: 2984 type: array 2985 items: 2986 type: string 2987 matchLabels: 2988 x-kubernetes-preserve-unknown-fields: true 2989 type: object 2990 namespaces: 2991 type: array 2992 items: 2993 type: string 2994 topologyKey: 2995 type: string 2996 description: The pod's affinity rules. 2997 tolerations: 2998 type: array 2999 items: 3000 type: object 3001 properties: 3002 effect: 3003 type: string 3004 key: 3005 type: string 3006 operator: 3007 type: string 3008 tolerationSeconds: 3009 type: integer 3010 value: 3011 type: string 3012 description: The pod's tolerations. 3013 priorityClassName: 3014 type: string 3015 description: >- 3016 The name of the priority class used to assign 3017 priority to the pods. For more information about 3018 priority classes, see {K8sPriorityClass}. 3019 schedulerName: 3020 type: string 3021 description: >- 3022 The name of the scheduler used to dispatch this 3023 `Pod`. If not specified, the default scheduler 3024 will be used. 3025 hostAliases: 3026 type: array 3027 items: 3028 type: object 3029 properties: 3030 hostnames: 3031 type: array 3032 items: 3033 type: string 3034 ip: 3035 type: string 3036 description: >- 3037 The pod's HostAliases. HostAliases is an 3038 optional list of hosts and IPs that will be 3039 injected into the Pod's hosts file if specified. 3040 tmpDirSizeLimit: 3041 type: string 3042 pattern: '^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$' 3043 description: >- 3044 Defines the total amount (for example `1Gi`) of 3045 local storage required for temporary EmptyDir 3046 volume (`/tmp`). Default value is `1Mi`. 3047 enableServiceLinks: 3048 type: boolean 3049 description: >- 3050 Indicates whether information about services 3051 should be injected into Pod's environment 3052 variables. 3053 topologySpreadConstraints: 3054 type: array 3055 items: 3056 type: object 3057 properties: 3058 labelSelector: 3059 type: object 3060 properties: 3061 matchExpressions: 3062 type: array 3063 items: 3064 type: object 3065 properties: 3066 key: 3067 type: string 3068 operator: 3069 type: string 3070 values: 3071 type: array 3072 items: 3073 type: string 3074 matchLabels: 3075 x-kubernetes-preserve-unknown-fields: true 3076 type: object 3077 maxSkew: 3078 type: integer 3079 topologyKey: 3080 type: string 3081 whenUnsatisfiable: 3082 type: string 3083 description: The pod's topology spread constraints. 3084 description: Template for Kafka `Pods`. 3085 bootstrapService: 3086 type: object 3087 properties: 3088 metadata: 3089 type: object 3090 properties: 3091 labels: 3092 x-kubernetes-preserve-unknown-fields: true 3093 type: object 3094 description: >- 3095 Labels added to the resource template. Can 3096 be applied to different resources such as 3097 `StatefulSets`, `Deployments`, `Pods`, and 3098 `Services`. 3099 annotations: 3100 x-kubernetes-preserve-unknown-fields: true 3101 type: object 3102 description: >- 3103 Annotations added to the resource template. 3104 Can be applied to different resources such 3105 as `StatefulSets`, `Deployments`, `Pods`, 3106 and `Services`. 3107 description: Metadata applied to the resource. 3108 ipFamilyPolicy: 3109 type: string 3110 enum: 3111 - SingleStack 3112 - PreferDualStack 3113 - RequireDualStack 3114 description: >- 3115 Specifies the IP Family Policy used by the 3116 service. Available options are `SingleStack`, 3117 `PreferDualStack` and `RequireDualStack`. 3118 `SingleStack` is for a single IP family. 3119 `PreferDualStack` is for two IP families on 3120 dual-stack configured clusters or a single IP 3121 family on single-stack clusters. 3122 `RequireDualStack` fails unless there are two IP 3123 families on dual-stack configured clusters. If 3124 unspecified, Kubernetes will choose the default 3125 value based on the service type. Available on 3126 Kubernetes 1.20 and newer. 3127 ipFamilies: 3128 type: array 3129 items: 3130 type: string 3131 enum: 3132 - IPv4 3133 - IPv6 3134 description: >- 3135 Specifies the IP Families used by the service. 3136 Available options are `IPv4` and `IPv6. If 3137 unspecified, Kubernetes will choose the default 3138 value based on the `ipFamilyPolicy` setting. 3139 Available on Kubernetes 1.20 and newer. 3140 description: Template for Kafka bootstrap `Service`. 3141 brokersService: 3142 type: object 3143 properties: 3144 metadata: 3145 type: object 3146 properties: 3147 labels: 3148 x-kubernetes-preserve-unknown-fields: true 3149 type: object 3150 description: >- 3151 Labels added to the resource template. Can 3152 be applied to different resources such as 3153 `StatefulSets`, `Deployments`, `Pods`, and 3154 `Services`. 3155 annotations: 3156 x-kubernetes-preserve-unknown-fields: true 3157 type: object 3158 description: >- 3159 Annotations added to the resource template. 3160 Can be applied to different resources such 3161 as `StatefulSets`, `Deployments`, `Pods`, 3162 and `Services`. 3163 description: Metadata applied to the resource. 3164 ipFamilyPolicy: 3165 type: string 3166 enum: 3167 - SingleStack 3168 - PreferDualStack 3169 - RequireDualStack 3170 description: >- 3171 Specifies the IP Family Policy used by the 3172 service. Available options are `SingleStack`, 3173 `PreferDualStack` and `RequireDualStack`. 3174 `SingleStack` is for a single IP family. 3175 `PreferDualStack` is for two IP families on 3176 dual-stack configured clusters or a single IP 3177 family on single-stack clusters. 3178 `RequireDualStack` fails unless there are two IP 3179 families on dual-stack configured clusters. If 3180 unspecified, Kubernetes will choose the default 3181 value based on the service type. Available on 3182 Kubernetes 1.20 and newer. 3183 ipFamilies: 3184 type: array 3185 items: 3186 type: string 3187 enum: 3188 - IPv4 3189 - IPv6 3190 description: >- 3191 Specifies the IP Families used by the service. 3192 Available options are `IPv4` and `IPv6. If 3193 unspecified, Kubernetes will choose the default 3194 value based on the `ipFamilyPolicy` setting. 3195 Available on Kubernetes 1.20 and newer. 3196 description: Template for Kafka broker `Service`. 3197 externalBootstrapService: 3198 type: object 3199 properties: 3200 metadata: 3201 type: object 3202 properties: 3203 labels: 3204 x-kubernetes-preserve-unknown-fields: true 3205 type: object 3206 description: >- 3207 Labels added to the resource template. Can 3208 be applied to different resources such as 3209 `StatefulSets`, `Deployments`, `Pods`, and 3210 `Services`. 3211 annotations: 3212 x-kubernetes-preserve-unknown-fields: true 3213 type: object 3214 description: >- 3215 Annotations added to the resource template. 3216 Can be applied to different resources such 3217 as `StatefulSets`, `Deployments`, `Pods`, 3218 and `Services`. 3219 description: Metadata applied to the resource. 3220 description: Template for Kafka external bootstrap `Service`. 3221 perPodService: 3222 type: object 3223 properties: 3224 metadata: 3225 type: object 3226 properties: 3227 labels: 3228 x-kubernetes-preserve-unknown-fields: true 3229 type: object 3230 description: >- 3231 Labels added to the resource template. Can 3232 be applied to different resources such as 3233 `StatefulSets`, `Deployments`, `Pods`, and 3234 `Services`. 3235 annotations: 3236 x-kubernetes-preserve-unknown-fields: true 3237 type: object 3238 description: >- 3239 Annotations added to the resource template. 3240 Can be applied to different resources such 3241 as `StatefulSets`, `Deployments`, `Pods`, 3242 and `Services`. 3243 description: Metadata applied to the resource. 3244 description: >- 3245 Template for Kafka per-pod `Services` used for 3246 access from outside of Kubernetes. 3247 externalBootstrapRoute: 3248 type: object 3249 properties: 3250 metadata: 3251 type: object 3252 properties: 3253 labels: 3254 x-kubernetes-preserve-unknown-fields: true 3255 type: object 3256 description: >- 3257 Labels added to the resource template. Can 3258 be applied to different resources such as 3259 `StatefulSets`, `Deployments`, `Pods`, and 3260 `Services`. 3261 annotations: 3262 x-kubernetes-preserve-unknown-fields: true 3263 type: object 3264 description: >- 3265 Annotations added to the resource template. 3266 Can be applied to different resources such 3267 as `StatefulSets`, `Deployments`, `Pods`, 3268 and `Services`. 3269 description: Metadata applied to the resource. 3270 description: Template for Kafka external bootstrap `Route`. 3271 perPodRoute: 3272 type: object 3273 properties: 3274 metadata: 3275 type: object 3276 properties: 3277 labels: 3278 x-kubernetes-preserve-unknown-fields: true 3279 type: object 3280 description: >- 3281 Labels added to the resource template. Can 3282 be applied to different resources such as 3283 `StatefulSets`, `Deployments`, `Pods`, and 3284 `Services`. 3285 annotations: 3286 x-kubernetes-preserve-unknown-fields: true 3287 type: object 3288 description: >- 3289 Annotations added to the resource template. 3290 Can be applied to different resources such 3291 as `StatefulSets`, `Deployments`, `Pods`, 3292 and `Services`. 3293 description: Metadata applied to the resource. 3294 description: >- 3295 Template for Kafka per-pod `Routes` used for access 3296 from outside of OpenShift. 3297 externalBootstrapIngress: 3298 type: object 3299 properties: 3300 metadata: 3301 type: object 3302 properties: 3303 labels: 3304 x-kubernetes-preserve-unknown-fields: true 3305 type: object 3306 description: >- 3307 Labels added to the resource template. Can 3308 be applied to different resources such as 3309 `StatefulSets`, `Deployments`, `Pods`, and 3310 `Services`. 3311 annotations: 3312 x-kubernetes-preserve-unknown-fields: true 3313 type: object 3314 description: >- 3315 Annotations added to the resource template. 3316 Can be applied to different resources such 3317 as `StatefulSets`, `Deployments`, `Pods`, 3318 and `Services`. 3319 description: Metadata applied to the resource. 3320 description: Template for Kafka external bootstrap `Ingress`. 3321 perPodIngress: 3322 type: object 3323 properties: 3324 metadata: 3325 type: object 3326 properties: 3327 labels: 3328 x-kubernetes-preserve-unknown-fields: true 3329 type: object 3330 description: >- 3331 Labels added to the resource template. Can 3332 be applied to different resources such as 3333 `StatefulSets`, `Deployments`, `Pods`, and 3334 `Services`. 3335 annotations: 3336 x-kubernetes-preserve-unknown-fields: true 3337 type: object 3338 description: >- 3339 Annotations added to the resource template. 3340 Can be applied to different resources such 3341 as `StatefulSets`, `Deployments`, `Pods`, 3342 and `Services`. 3343 description: Metadata applied to the resource. 3344 description: >- 3345 Template for Kafka per-pod `Ingress` used for access 3346 from outside of Kubernetes. 3347 persistentVolumeClaim: 3348 type: object 3349 properties: 3350 metadata: 3351 type: object 3352 properties: 3353 labels: 3354 x-kubernetes-preserve-unknown-fields: true 3355 type: object 3356 description: >- 3357 Labels added to the resource template. Can 3358 be applied to different resources such as 3359 `StatefulSets`, `Deployments`, `Pods`, and 3360 `Services`. 3361 annotations: 3362 x-kubernetes-preserve-unknown-fields: true 3363 type: object 3364 description: >- 3365 Annotations added to the resource template. 3366 Can be applied to different resources such 3367 as `StatefulSets`, `Deployments`, `Pods`, 3368 and `Services`. 3369 description: Metadata applied to the resource. 3370 description: Template for all Kafka `PersistentVolumeClaims`. 3371 podDisruptionBudget: 3372 type: object 3373 properties: 3374 metadata: 3375 type: object 3376 properties: 3377 labels: 3378 x-kubernetes-preserve-unknown-fields: true 3379 type: object 3380 description: >- 3381 Labels added to the resource template. Can 3382 be applied to different resources such as 3383 `StatefulSets`, `Deployments`, `Pods`, and 3384 `Services`. 3385 annotations: 3386 x-kubernetes-preserve-unknown-fields: true 3387 type: object 3388 description: >- 3389 Annotations added to the resource template. 3390 Can be applied to different resources such 3391 as `StatefulSets`, `Deployments`, `Pods`, 3392 and `Services`. 3393 description: >- 3394 Metadata to apply to the 3395 `PodDisruptionBudgetTemplate` resource. 3396 maxUnavailable: 3397 type: integer 3398 minimum: 0 3399 description: >- 3400 Maximum number of unavailable pods to allow 3401 automatic Pod eviction. A Pod eviction is 3402 allowed when the `maxUnavailable` number of pods 3403 or fewer are unavailable after the eviction. 3404 Setting this value to 0 prevents all voluntary 3405 evictions, so the pods must be evicted manually. 3406 Defaults to 1. 3407 description: Template for Kafka `PodDisruptionBudget`. 3408 kafkaContainer: 3409 type: object 3410 properties: 3411 env: 3412 type: array 3413 items: 3414 type: object 3415 properties: 3416 name: 3417 type: string 3418 description: The environment variable key. 3419 value: 3420 type: string 3421 description: The environment variable value. 3422 description: >- 3423 Environment variables which should be applied to 3424 the container. 3425 securityContext: 3426 type: object 3427 properties: 3428 allowPrivilegeEscalation: 3429 type: boolean 3430 capabilities: 3431 type: object 3432 properties: 3433 add: 3434 type: array 3435 items: 3436 type: string 3437 drop: 3438 type: array 3439 items: 3440 type: string 3441 privileged: 3442 type: boolean 3443 procMount: 3444 type: string 3445 readOnlyRootFilesystem: 3446 type: boolean 3447 runAsGroup: 3448 type: integer 3449 runAsNonRoot: 3450 type: boolean 3451 runAsUser: 3452 type: integer 3453 seLinuxOptions: 3454 type: object 3455 properties: 3456 level: 3457 type: string 3458 role: 3459 type: string 3460 type: 3461 type: string 3462 user: 3463 type: string 3464 seccompProfile: 3465 type: object 3466 properties: 3467 localhostProfile: 3468 type: string 3469 type: 3470 type: string 3471 windowsOptions: 3472 type: object 3473 properties: 3474 gmsaCredentialSpec: 3475 type: string 3476 gmsaCredentialSpecName: 3477 type: string 3478 hostProcess: 3479 type: boolean 3480 runAsUserName: 3481 type: string 3482 description: Security context for the container. 3483 description: Template for the Kafka broker container. 3484 initContainer: 3485 type: object 3486 properties: 3487 env: 3488 type: array 3489 items: 3490 type: object 3491 properties: 3492 name: 3493 type: string 3494 description: The environment variable key. 3495 value: 3496 type: string 3497 description: The environment variable value. 3498 description: >- 3499 Environment variables which should be applied to 3500 the container. 3501 securityContext: 3502 type: object 3503 properties: 3504 allowPrivilegeEscalation: 3505 type: boolean 3506 capabilities: 3507 type: object 3508 properties: 3509 add: 3510 type: array 3511 items: 3512 type: string 3513 drop: 3514 type: array 3515 items: 3516 type: string 3517 privileged: 3518 type: boolean 3519 procMount: 3520 type: string 3521 readOnlyRootFilesystem: 3522 type: boolean 3523 runAsGroup: 3524 type: integer 3525 runAsNonRoot: 3526 type: boolean 3527 runAsUser: 3528 type: integer 3529 seLinuxOptions: 3530 type: object 3531 properties: 3532 level: 3533 type: string 3534 role: 3535 type: string 3536 type: 3537 type: string 3538 user: 3539 type: string 3540 seccompProfile: 3541 type: object 3542 properties: 3543 localhostProfile: 3544 type: string 3545 type: 3546 type: string 3547 windowsOptions: 3548 type: object 3549 properties: 3550 gmsaCredentialSpec: 3551 type: string 3552 gmsaCredentialSpecName: 3553 type: string 3554 hostProcess: 3555 type: boolean 3556 runAsUserName: 3557 type: string 3558 description: Security context for the container. 3559 description: Template for the Kafka init container. 3560 clusterCaCert: 3561 type: object 3562 properties: 3563 metadata: 3564 type: object 3565 properties: 3566 labels: 3567 x-kubernetes-preserve-unknown-fields: true 3568 type: object 3569 description: >- 3570 Labels added to the resource template. Can 3571 be applied to different resources such as 3572 `StatefulSets`, `Deployments`, `Pods`, and 3573 `Services`. 3574 annotations: 3575 x-kubernetes-preserve-unknown-fields: true 3576 type: object 3577 description: >- 3578 Annotations added to the resource template. 3579 Can be applied to different resources such 3580 as `StatefulSets`, `Deployments`, `Pods`, 3581 and `Services`. 3582 description: Metadata applied to the resource. 3583 description: >- 3584 Template for Secret with Kafka Cluster certificate 3585 public key. 3586 serviceAccount: 3587 type: object 3588 properties: 3589 metadata: 3590 type: object 3591 properties: 3592 labels: 3593 x-kubernetes-preserve-unknown-fields: true 3594 type: object 3595 description: >- 3596 Labels added to the resource template. Can 3597 be applied to different resources such as 3598 `StatefulSets`, `Deployments`, `Pods`, and 3599 `Services`. 3600 annotations: 3601 x-kubernetes-preserve-unknown-fields: true 3602 type: object 3603 description: >- 3604 Annotations added to the resource template. 3605 Can be applied to different resources such 3606 as `StatefulSets`, `Deployments`, `Pods`, 3607 and `Services`. 3608 description: Metadata applied to the resource. 3609 description: Template for the Kafka service account. 3610 jmxSecret: 3611 type: object 3612 properties: 3613 metadata: 3614 type: object 3615 properties: 3616 labels: 3617 x-kubernetes-preserve-unknown-fields: true 3618 type: object 3619 description: >- 3620 Labels added to the resource template. Can 3621 be applied to different resources such as 3622 `StatefulSets`, `Deployments`, `Pods`, and 3623 `Services`. 3624 annotations: 3625 x-kubernetes-preserve-unknown-fields: true 3626 type: object 3627 description: >- 3628 Annotations added to the resource template. 3629 Can be applied to different resources such 3630 as `StatefulSets`, `Deployments`, `Pods`, 3631 and `Services`. 3632 description: Metadata applied to the resource. 3633 description: >- 3634 Template for Secret of the Kafka Cluster JMX 3635 authentication. 3636 clusterRoleBinding: 3637 type: object 3638 properties: 3639 metadata: 3640 type: object 3641 properties: 3642 labels: 3643 x-kubernetes-preserve-unknown-fields: true 3644 type: object 3645 description: >- 3646 Labels added to the resource template. Can 3647 be applied to different resources such as 3648 `StatefulSets`, `Deployments`, `Pods`, and 3649 `Services`. 3650 annotations: 3651 x-kubernetes-preserve-unknown-fields: true 3652 type: object 3653 description: >- 3654 Annotations added to the resource template. 3655 Can be applied to different resources such 3656 as `StatefulSets`, `Deployments`, `Pods`, 3657 and `Services`. 3658 description: Metadata applied to the resource. 3659 description: Template for the Kafka ClusterRoleBinding. 3660 podSet: 3661 type: object 3662 properties: 3663 metadata: 3664 type: object 3665 properties: 3666 labels: 3667 x-kubernetes-preserve-unknown-fields: true 3668 type: object 3669 description: >- 3670 Labels added to the resource template. Can 3671 be applied to different resources such as 3672 `StatefulSets`, `Deployments`, `Pods`, and 3673 `Services`. 3674 annotations: 3675 x-kubernetes-preserve-unknown-fields: true 3676 type: object 3677 description: >- 3678 Annotations added to the resource template. 3679 Can be applied to different resources such 3680 as `StatefulSets`, `Deployments`, `Pods`, 3681 and `Services`. 3682 description: Metadata applied to the resource. 3683 description: Template for Kafka `StrimziPodSet` resource. 3684 description: >- 3685 Template for Kafka cluster resources. The template 3686 allows users to specify how are the `StatefulSet`, 3687 `Pods` and `Services` generated. 3688 required: 3689 - replicas 3690 - listeners 3691 - storage 3692 description: Configuration of the Kafka cluster. 3693 zookeeper: 3694 type: object 3695 properties: 3696 replicas: 3697 type: integer 3698 minimum: 1 3699 description: The number of pods in the cluster. 3700 image: 3701 type: string 3702 description: The docker image for the pods. 3703 storage: 3704 type: object 3705 properties: 3706 class: 3707 type: string 3708 description: >- 3709 The storage class to use for dynamic volume 3710 allocation. 3711 deleteClaim: 3712 type: boolean 3713 description: >- 3714 Specifies if the persistent volume claim has to be 3715 deleted when the cluster is un-deployed. 3716 id: 3717 type: integer 3718 minimum: 0 3719 description: >- 3720 Storage identification number. It is mandatory only 3721 for storage volumes defined in a storage of type 3722 'jbod'. 3723 overrides: 3724 type: array 3725 items: 3726 type: object 3727 properties: 3728 class: 3729 type: string 3730 description: >- 3731 The storage class to use for dynamic volume 3732 allocation for this broker. 3733 broker: 3734 type: integer 3735 description: Id of the kafka broker (broker identifier). 3736 description: >- 3737 Overrides for individual brokers. The `overrides` 3738 field allows to specify a different configuration 3739 for different brokers. 3740 selector: 3741 x-kubernetes-preserve-unknown-fields: true 3742 type: object 3743 description: >- 3744 Specifies a specific persistent volume to use. It 3745 contains key:value pairs representing labels for 3746 selecting such a volume. 3747 size: 3748 type: string 3749 description: >- 3750 When type=persistent-claim, defines the size of the 3751 persistent volume claim (i.e 1Gi). Mandatory when 3752 type=persistent-claim. 3753 sizeLimit: 3754 type: string 3755 pattern: '^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$' 3756 description: >- 3757 When type=ephemeral, defines the total amount of 3758 local storage required for this EmptyDir volume (for 3759 example 1Gi). 3760 type: 3761 type: string 3762 enum: 3763 - ephemeral 3764 - persistent-claim 3765 description: >- 3766 Storage type, must be either 'ephemeral' or 3767 'persistent-claim'. 3768 required: 3769 - type 3770 description: Storage configuration (disk). Cannot be updated. 3771 config: 3772 x-kubernetes-preserve-unknown-fields: true 3773 type: object 3774 description: >- 3775 The ZooKeeper broker config. Properties with the 3776 following prefixes cannot be set: server., dataDir, 3777 dataLogDir, clientPort, authProvider, quorum.auth, 3778 requireClientAuthScheme, snapshot.trust.empty, 3779 standaloneEnabled, reconfigEnabled, 3780 4lw.commands.whitelist, secureClientPort, ssl., 3781 serverCnxnFactory, sslQuorum (with the exception of: 3782 ssl.protocol, ssl.quorum.protocol, ssl.enabledProtocols, 3783 ssl.quorum.enabledProtocols, ssl.ciphersuites, 3784 ssl.quorum.ciphersuites, ssl.hostnameVerification, 3785 ssl.quorum.hostnameVerification). 3786 livenessProbe: 3787 type: object 3788 properties: 3789 failureThreshold: 3790 type: integer 3791 minimum: 1 3792 description: >- 3793 Minimum consecutive failures for the probe to be 3794 considered failed after having succeeded. Defaults 3795 to 3. Minimum value is 1. 3796 initialDelaySeconds: 3797 type: integer 3798 minimum: 0 3799 description: >- 3800 The initial delay before first the health is first 3801 checked. Default to 15 seconds. Minimum value is 0. 3802 periodSeconds: 3803 type: integer 3804 minimum: 1 3805 description: >- 3806 How often (in seconds) to perform the probe. Default 3807 to 10 seconds. Minimum value is 1. 3808 successThreshold: 3809 type: integer 3810 minimum: 1 3811 description: >- 3812 Minimum consecutive successes for the probe to be 3813 considered successful after having failed. Defaults 3814 to 1. Must be 1 for liveness. Minimum value is 1. 3815 timeoutSeconds: 3816 type: integer 3817 minimum: 1 3818 description: >- 3819 The timeout for each attempted health check. Default 3820 to 5 seconds. Minimum value is 1. 3821 description: Pod liveness checking. 3822 readinessProbe: 3823 type: object 3824 properties: 3825 failureThreshold: 3826 type: integer 3827 minimum: 1 3828 description: >- 3829 Minimum consecutive failures for the probe to be 3830 considered failed after having succeeded. Defaults 3831 to 3. Minimum value is 1. 3832 initialDelaySeconds: 3833 type: integer 3834 minimum: 0 3835 description: >- 3836 The initial delay before first the health is first 3837 checked. Default to 15 seconds. Minimum value is 0. 3838 periodSeconds: 3839 type: integer 3840 minimum: 1 3841 description: >- 3842 How often (in seconds) to perform the probe. Default 3843 to 10 seconds. Minimum value is 1. 3844 successThreshold: 3845 type: integer 3846 minimum: 1 3847 description: >- 3848 Minimum consecutive successes for the probe to be 3849 considered successful after having failed. Defaults 3850 to 1. Must be 1 for liveness. Minimum value is 1. 3851 timeoutSeconds: 3852 type: integer 3853 minimum: 1 3854 description: >- 3855 The timeout for each attempted health check. Default 3856 to 5 seconds. Minimum value is 1. 3857 description: Pod readiness checking. 3858 jvmOptions: 3859 type: object 3860 properties: 3861 '-XX': 3862 x-kubernetes-preserve-unknown-fields: true 3863 type: object 3864 description: A map of -XX options to the JVM. 3865 '-Xms': 3866 type: string 3867 pattern: '^[0-9]+[mMgG]?$' 3868 description: '-Xms option to to the JVM.' 3869 '-Xmx': 3870 type: string 3871 pattern: '^[0-9]+[mMgG]?$' 3872 description: '-Xmx option to to the JVM.' 3873 gcLoggingEnabled: 3874 type: boolean 3875 description: >- 3876 Specifies whether the Garbage Collection logging is 3877 enabled. The default is false. 3878 javaSystemProperties: 3879 type: array 3880 items: 3881 type: object 3882 properties: 3883 name: 3884 type: string 3885 description: The system property name. 3886 value: 3887 type: string 3888 description: The system property value. 3889 description: >- 3890 A map of additional system properties which will be 3891 passed using the `-D` option to the JVM. 3892 description: JVM Options for pods. 3893 jmxOptions: 3894 type: object 3895 properties: 3896 authentication: 3897 type: object 3898 properties: 3899 type: 3900 type: string 3901 enum: 3902 - password 3903 description: >- 3904 Authentication type. Currently the only 3905 supported types are `password`.`password` type 3906 creates a username and protected port with no 3907 TLS. 3908 required: 3909 - type 3910 description: >- 3911 Authentication configuration for connecting to the 3912 JMX port. 3913 description: JMX Options for Zookeeper nodes. 3914 resources: 3915 type: object 3916 properties: 3917 limits: 3918 x-kubernetes-preserve-unknown-fields: true 3919 type: object 3920 requests: 3921 x-kubernetes-preserve-unknown-fields: true 3922 type: object 3923 description: CPU and memory resources to reserve. 3924 metricsConfig: 3925 type: object 3926 properties: 3927 type: 3928 type: string 3929 enum: 3930 - jmxPrometheusExporter 3931 description: >- 3932 Metrics type. Only 'jmxPrometheusExporter' supported 3933 currently. 3934 valueFrom: 3935 type: object 3936 properties: 3937 configMapKeyRef: 3938 type: object 3939 properties: 3940 key: 3941 type: string 3942 name: 3943 type: string 3944 optional: 3945 type: boolean 3946 description: >- 3947 Reference to the key in the ConfigMap containing 3948 the configuration. 3949 description: >- 3950 ConfigMap entry where the Prometheus JMX Exporter 3951 configuration is stored. For details of the 3952 structure of this configuration, see the 3953 {JMXExporter}. 3954 required: 3955 - type 3956 - valueFrom 3957 description: Metrics configuration. 3958 logging: 3959 type: object 3960 properties: 3961 loggers: 3962 x-kubernetes-preserve-unknown-fields: true 3963 type: object 3964 description: A Map from logger name to logger level. 3965 type: 3966 type: string 3967 enum: 3968 - inline 3969 - external 3970 description: 'Logging type, must be either ''inline'' or ''external''.' 3971 valueFrom: 3972 type: object 3973 properties: 3974 configMapKeyRef: 3975 type: object 3976 properties: 3977 key: 3978 type: string 3979 name: 3980 type: string 3981 optional: 3982 type: boolean 3983 description: >- 3984 Reference to the key in the ConfigMap containing 3985 the configuration. 3986 description: >- 3987 `ConfigMap` entry where the logging configuration is 3988 stored. 3989 required: 3990 - type 3991 description: Logging configuration for ZooKeeper. 3992 template: 3993 type: object 3994 properties: 3995 statefulset: 3996 type: object 3997 properties: 3998 metadata: 3999 type: object 4000 properties: 4001 labels: 4002 x-kubernetes-preserve-unknown-fields: true 4003 type: object 4004 description: >- 4005 Labels added to the resource template. Can 4006 be applied to different resources such as 4007 `StatefulSets`, `Deployments`, `Pods`, and 4008 `Services`. 4009 annotations: 4010 x-kubernetes-preserve-unknown-fields: true 4011 type: object 4012 description: >- 4013 Annotations added to the resource template. 4014 Can be applied to different resources such 4015 as `StatefulSets`, `Deployments`, `Pods`, 4016 and `Services`. 4017 description: Metadata applied to the resource. 4018 podManagementPolicy: 4019 type: string 4020 enum: 4021 - OrderedReady 4022 - Parallel 4023 description: >- 4024 PodManagementPolicy which will be used for this 4025 StatefulSet. Valid values are `Parallel` and 4026 `OrderedReady`. Defaults to `Parallel`. 4027 description: Template for ZooKeeper `StatefulSet`. 4028 pod: 4029 type: object 4030 properties: 4031 metadata: 4032 type: object 4033 properties: 4034 labels: 4035 x-kubernetes-preserve-unknown-fields: true 4036 type: object 4037 description: >- 4038 Labels added to the resource template. Can 4039 be applied to different resources such as 4040 `StatefulSets`, `Deployments`, `Pods`, and 4041 `Services`. 4042 annotations: 4043 x-kubernetes-preserve-unknown-fields: true 4044 type: object 4045 description: >- 4046 Annotations added to the resource template. 4047 Can be applied to different resources such 4048 as `StatefulSets`, `Deployments`, `Pods`, 4049 and `Services`. 4050 description: Metadata applied to the resource. 4051 imagePullSecrets: 4052 type: array 4053 items: 4054 type: object 4055 properties: 4056 name: 4057 type: string 4058 description: >- 4059 List of references to secrets in the same 4060 namespace to use for pulling any of the images 4061 used by this Pod. When the 4062 `STRIMZI_IMAGE_PULL_SECRETS` environment 4063 variable in Cluster Operator and the 4064 `imagePullSecrets` option are specified, only 4065 the `imagePullSecrets` variable is used and the 4066 `STRIMZI_IMAGE_PULL_SECRETS` variable is 4067 ignored. 4068 securityContext: 4069 type: object 4070 properties: 4071 fsGroup: 4072 type: integer 4073 fsGroupChangePolicy: 4074 type: string 4075 runAsGroup: 4076 type: integer 4077 runAsNonRoot: 4078 type: boolean 4079 runAsUser: 4080 type: integer 4081 seLinuxOptions: 4082 type: object 4083 properties: 4084 level: 4085 type: string 4086 role: 4087 type: string 4088 type: 4089 type: string 4090 user: 4091 type: string 4092 seccompProfile: 4093 type: object 4094 properties: 4095 localhostProfile: 4096 type: string 4097 type: 4098 type: string 4099 supplementalGroups: 4100 type: array 4101 items: 4102 type: integer 4103 sysctls: 4104 type: array 4105 items: 4106 type: object 4107 properties: 4108 name: 4109 type: string 4110 value: 4111 type: string 4112 windowsOptions: 4113 type: object 4114 properties: 4115 gmsaCredentialSpec: 4116 type: string 4117 gmsaCredentialSpecName: 4118 type: string 4119 hostProcess: 4120 type: boolean 4121 runAsUserName: 4122 type: string 4123 description: >- 4124 Configures pod-level security attributes and 4125 common container settings. 4126 terminationGracePeriodSeconds: 4127 type: integer 4128 minimum: 0 4129 description: >- 4130 The grace period is the duration in seconds 4131 after the processes running in the pod are sent 4132 a termination signal, and the time when the 4133 processes are forcibly halted with a kill 4134 signal. Set this value to longer than the 4135 expected cleanup time for your process. Value 4136 must be a non-negative integer. A zero value 4137 indicates delete immediately. You might need to 4138 increase the grace period for very large Kafka 4139 clusters, so that the Kafka brokers have enough 4140 time to transfer their work to another broker 4141 before they are terminated. Defaults to 30 4142 seconds. 4143 affinity: 4144 type: object 4145 properties: 4146 nodeAffinity: 4147 type: object 4148 properties: 4149 preferredDuringSchedulingIgnoredDuringExecution: 4150 type: array 4151 items: 4152 type: object 4153 properties: 4154 preference: 4155 type: object 4156 properties: 4157 matchExpressions: 4158 type: array 4159 items: 4160 type: object 4161 properties: 4162 key: 4163 type: string 4164 operator: 4165 type: string 4166 values: 4167 type: array 4168 items: 4169 type: string 4170 matchFields: 4171 type: array 4172 items: 4173 type: object 4174 properties: 4175 key: 4176 type: string 4177 operator: 4178 type: string 4179 values: 4180 type: array 4181 items: 4182 type: string 4183 weight: 4184 type: integer 4185 requiredDuringSchedulingIgnoredDuringExecution: 4186 type: object 4187 properties: 4188 nodeSelectorTerms: 4189 type: array 4190 items: 4191 type: object 4192 properties: 4193 matchExpressions: 4194 type: array 4195 items: 4196 type: object 4197 properties: 4198 key: 4199 type: string 4200 operator: 4201 type: string 4202 values: 4203 type: array 4204 items: 4205 type: string 4206 matchFields: 4207 type: array 4208 items: 4209 type: object 4210 properties: 4211 key: 4212 type: string 4213 operator: 4214 type: string 4215 values: 4216 type: array 4217 items: 4218 type: string 4219 podAffinity: 4220 type: object 4221 properties: 4222 preferredDuringSchedulingIgnoredDuringExecution: 4223 type: array 4224 items: 4225 type: object 4226 properties: 4227 podAffinityTerm: 4228 type: object 4229 properties: 4230 labelSelector: 4231 type: object 4232 properties: 4233 matchExpressions: 4234 type: array 4235 items: 4236 type: object 4237 properties: 4238 key: 4239 type: string 4240 operator: 4241 type: string 4242 values: 4243 type: array 4244 items: 4245 type: string 4246 matchLabels: 4247 x-kubernetes-preserve-unknown-fields: true 4248 type: object 4249 namespaceSelector: 4250 type: object 4251 properties: 4252 matchExpressions: 4253 type: array 4254 items: 4255 type: object 4256 properties: 4257 key: 4258 type: string 4259 operator: 4260 type: string 4261 values: 4262 type: array 4263 items: 4264 type: string 4265 matchLabels: 4266 x-kubernetes-preserve-unknown-fields: true 4267 type: object 4268 namespaces: 4269 type: array 4270 items: 4271 type: string 4272 topologyKey: 4273 type: string 4274 weight: 4275 type: integer 4276 requiredDuringSchedulingIgnoredDuringExecution: 4277 type: array 4278 items: 4279 type: object 4280 properties: 4281 labelSelector: 4282 type: object 4283 properties: 4284 matchExpressions: 4285 type: array 4286 items: 4287 type: object 4288 properties: 4289 key: 4290 type: string 4291 operator: 4292 type: string 4293 values: 4294 type: array 4295 items: 4296 type: string 4297 matchLabels: 4298 x-kubernetes-preserve-unknown-fields: true 4299 type: object 4300 namespaceSelector: 4301 type: object 4302 properties: 4303 matchExpressions: 4304 type: array 4305 items: 4306 type: object 4307 properties: 4308 key: 4309 type: string 4310 operator: 4311 type: string 4312 values: 4313 type: array 4314 items: 4315 type: string 4316 matchLabels: 4317 x-kubernetes-preserve-unknown-fields: true 4318 type: object 4319 namespaces: 4320 type: array 4321 items: 4322 type: string 4323 topologyKey: 4324 type: string 4325 podAntiAffinity: 4326 type: object 4327 properties: 4328 preferredDuringSchedulingIgnoredDuringExecution: 4329 type: array 4330 items: 4331 type: object 4332 properties: 4333 podAffinityTerm: 4334 type: object 4335 properties: 4336 labelSelector: 4337 type: object 4338 properties: 4339 matchExpressions: 4340 type: array 4341 items: 4342 type: object 4343 properties: 4344 key: 4345 type: string 4346 operator: 4347 type: string 4348 values: 4349 type: array 4350 items: 4351 type: string 4352 matchLabels: 4353 x-kubernetes-preserve-unknown-fields: true 4354 type: object 4355 namespaceSelector: 4356 type: object 4357 properties: 4358 matchExpressions: 4359 type: array 4360 items: 4361 type: object 4362 properties: 4363 key: 4364 type: string 4365 operator: 4366 type: string 4367 values: 4368 type: array 4369 items: 4370 type: string 4371 matchLabels: 4372 x-kubernetes-preserve-unknown-fields: true 4373 type: object 4374 namespaces: 4375 type: array 4376 items: 4377 type: string 4378 topologyKey: 4379 type: string 4380 weight: 4381 type: integer 4382 requiredDuringSchedulingIgnoredDuringExecution: 4383 type: array 4384 items: 4385 type: object 4386 properties: 4387 labelSelector: 4388 type: object 4389 properties: 4390 matchExpressions: 4391 type: array 4392 items: 4393 type: object 4394 properties: 4395 key: 4396 type: string 4397 operator: 4398 type: string 4399 values: 4400 type: array 4401 items: 4402 type: string 4403 matchLabels: 4404 x-kubernetes-preserve-unknown-fields: true 4405 type: object 4406 namespaceSelector: 4407 type: object 4408 properties: 4409 matchExpressions: 4410 type: array 4411 items: 4412 type: object 4413 properties: 4414 key: 4415 type: string 4416 operator: 4417 type: string 4418 values: 4419 type: array 4420 items: 4421 type: string 4422 matchLabels: 4423 x-kubernetes-preserve-unknown-fields: true 4424 type: object 4425 namespaces: 4426 type: array 4427 items: 4428 type: string 4429 topologyKey: 4430 type: string 4431 description: The pod's affinity rules. 4432 tolerations: 4433 type: array 4434 items: 4435 type: object 4436 properties: 4437 effect: 4438 type: string 4439 key: 4440 type: string 4441 operator: 4442 type: string 4443 tolerationSeconds: 4444 type: integer 4445 value: 4446 type: string 4447 description: The pod's tolerations. 4448 priorityClassName: 4449 type: string 4450 description: >- 4451 The name of the priority class used to assign 4452 priority to the pods. For more information about 4453 priority classes, see {K8sPriorityClass}. 4454 schedulerName: 4455 type: string 4456 description: >- 4457 The name of the scheduler used to dispatch this 4458 `Pod`. If not specified, the default scheduler 4459 will be used. 4460 hostAliases: 4461 type: array 4462 items: 4463 type: object 4464 properties: 4465 hostnames: 4466 type: array 4467 items: 4468 type: string 4469 ip: 4470 type: string 4471 description: >- 4472 The pod's HostAliases. HostAliases is an 4473 optional list of hosts and IPs that will be 4474 injected into the Pod's hosts file if specified. 4475 tmpDirSizeLimit: 4476 type: string 4477 pattern: '^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$' 4478 description: >- 4479 Defines the total amount (for example `1Gi`) of 4480 local storage required for temporary EmptyDir 4481 volume (`/tmp`). Default value is `1Mi`. 4482 enableServiceLinks: 4483 type: boolean 4484 description: >- 4485 Indicates whether information about services 4486 should be injected into Pod's environment 4487 variables. 4488 topologySpreadConstraints: 4489 type: array 4490 items: 4491 type: object 4492 properties: 4493 labelSelector: 4494 type: object 4495 properties: 4496 matchExpressions: 4497 type: array 4498 items: 4499 type: object 4500 properties: 4501 key: 4502 type: string 4503 operator: 4504 type: string 4505 values: 4506 type: array 4507 items: 4508 type: string 4509 matchLabels: 4510 x-kubernetes-preserve-unknown-fields: true 4511 type: object 4512 maxSkew: 4513 type: integer 4514 topologyKey: 4515 type: string 4516 whenUnsatisfiable: 4517 type: string 4518 description: The pod's topology spread constraints. 4519 description: Template for ZooKeeper `Pods`. 4520 clientService: 4521 type: object 4522 properties: 4523 metadata: 4524 type: object 4525 properties: 4526 labels: 4527 x-kubernetes-preserve-unknown-fields: true 4528 type: object 4529 description: >- 4530 Labels added to the resource template. Can 4531 be applied to different resources such as 4532 `StatefulSets`, `Deployments`, `Pods`, and 4533 `Services`. 4534 annotations: 4535 x-kubernetes-preserve-unknown-fields: true 4536 type: object 4537 description: >- 4538 Annotations added to the resource template. 4539 Can be applied to different resources such 4540 as `StatefulSets`, `Deployments`, `Pods`, 4541 and `Services`. 4542 description: Metadata applied to the resource. 4543 ipFamilyPolicy: 4544 type: string 4545 enum: 4546 - SingleStack 4547 - PreferDualStack 4548 - RequireDualStack 4549 description: >- 4550 Specifies the IP Family Policy used by the 4551 service. Available options are `SingleStack`, 4552 `PreferDualStack` and `RequireDualStack`. 4553 `SingleStack` is for a single IP family. 4554 `PreferDualStack` is for two IP families on 4555 dual-stack configured clusters or a single IP 4556 family on single-stack clusters. 4557 `RequireDualStack` fails unless there are two IP 4558 families on dual-stack configured clusters. If 4559 unspecified, Kubernetes will choose the default 4560 value based on the service type. Available on 4561 Kubernetes 1.20 and newer. 4562 ipFamilies: 4563 type: array 4564 items: 4565 type: string 4566 enum: 4567 - IPv4 4568 - IPv6 4569 description: >- 4570 Specifies the IP Families used by the service. 4571 Available options are `IPv4` and `IPv6. If 4572 unspecified, Kubernetes will choose the default 4573 value based on the `ipFamilyPolicy` setting. 4574 Available on Kubernetes 1.20 and newer. 4575 description: Template for ZooKeeper client `Service`. 4576 nodesService: 4577 type: object 4578 properties: 4579 metadata: 4580 type: object 4581 properties: 4582 labels: 4583 x-kubernetes-preserve-unknown-fields: true 4584 type: object 4585 description: >- 4586 Labels added to the resource template. Can 4587 be applied to different resources such as 4588 `StatefulSets`, `Deployments`, `Pods`, and 4589 `Services`. 4590 annotations: 4591 x-kubernetes-preserve-unknown-fields: true 4592 type: object 4593 description: >- 4594 Annotations added to the resource template. 4595 Can be applied to different resources such 4596 as `StatefulSets`, `Deployments`, `Pods`, 4597 and `Services`. 4598 description: Metadata applied to the resource. 4599 ipFamilyPolicy: 4600 type: string 4601 enum: 4602 - SingleStack 4603 - PreferDualStack 4604 - RequireDualStack 4605 description: >- 4606 Specifies the IP Family Policy used by the 4607 service. Available options are `SingleStack`, 4608 `PreferDualStack` and `RequireDualStack`. 4609 `SingleStack` is for a single IP family. 4610 `PreferDualStack` is for two IP families on 4611 dual-stack configured clusters or a single IP 4612 family on single-stack clusters. 4613 `RequireDualStack` fails unless there are two IP 4614 families on dual-stack configured clusters. If 4615 unspecified, Kubernetes will choose the default 4616 value based on the service type. Available on 4617 Kubernetes 1.20 and newer. 4618 ipFamilies: 4619 type: array 4620 items: 4621 type: string 4622 enum: 4623 - IPv4 4624 - IPv6 4625 description: >- 4626 Specifies the IP Families used by the service. 4627 Available options are `IPv4` and `IPv6. If 4628 unspecified, Kubernetes will choose the default 4629 value based on the `ipFamilyPolicy` setting. 4630 Available on Kubernetes 1.20 and newer. 4631 description: Template for ZooKeeper nodes `Service`. 4632 persistentVolumeClaim: 4633 type: object 4634 properties: 4635 metadata: 4636 type: object 4637 properties: 4638 labels: 4639 x-kubernetes-preserve-unknown-fields: true 4640 type: object 4641 description: >- 4642 Labels added to the resource template. Can 4643 be applied to different resources such as 4644 `StatefulSets`, `Deployments`, `Pods`, and 4645 `Services`. 4646 annotations: 4647 x-kubernetes-preserve-unknown-fields: true 4648 type: object 4649 description: >- 4650 Annotations added to the resource template. 4651 Can be applied to different resources such 4652 as `StatefulSets`, `Deployments`, `Pods`, 4653 and `Services`. 4654 description: Metadata applied to the resource. 4655 description: Template for all ZooKeeper `PersistentVolumeClaims`. 4656 podDisruptionBudget: 4657 type: object 4658 properties: 4659 metadata: 4660 type: object 4661 properties: 4662 labels: 4663 x-kubernetes-preserve-unknown-fields: true 4664 type: object 4665 description: >- 4666 Labels added to the resource template. Can 4667 be applied to different resources such as 4668 `StatefulSets`, `Deployments`, `Pods`, and 4669 `Services`. 4670 annotations: 4671 x-kubernetes-preserve-unknown-fields: true 4672 type: object 4673 description: >- 4674 Annotations added to the resource template. 4675 Can be applied to different resources such 4676 as `StatefulSets`, `Deployments`, `Pods`, 4677 and `Services`. 4678 description: >- 4679 Metadata to apply to the 4680 `PodDisruptionBudgetTemplate` resource. 4681 maxUnavailable: 4682 type: integer 4683 minimum: 0 4684 description: >- 4685 Maximum number of unavailable pods to allow 4686 automatic Pod eviction. A Pod eviction is 4687 allowed when the `maxUnavailable` number of pods 4688 or fewer are unavailable after the eviction. 4689 Setting this value to 0 prevents all voluntary 4690 evictions, so the pods must be evicted manually. 4691 Defaults to 1. 4692 description: Template for ZooKeeper `PodDisruptionBudget`. 4693 zookeeperContainer: 4694 type: object 4695 properties: 4696 env: 4697 type: array 4698 items: 4699 type: object 4700 properties: 4701 name: 4702 type: string 4703 description: The environment variable key. 4704 value: 4705 type: string 4706 description: The environment variable value. 4707 description: >- 4708 Environment variables which should be applied to 4709 the container. 4710 securityContext: 4711 type: object 4712 properties: 4713 allowPrivilegeEscalation: 4714 type: boolean 4715 capabilities: 4716 type: object 4717 properties: 4718 add: 4719 type: array 4720 items: 4721 type: string 4722 drop: 4723 type: array 4724 items: 4725 type: string 4726 privileged: 4727 type: boolean 4728 procMount: 4729 type: string 4730 readOnlyRootFilesystem: 4731 type: boolean 4732 runAsGroup: 4733 type: integer 4734 runAsNonRoot: 4735 type: boolean 4736 runAsUser: 4737 type: integer 4738 seLinuxOptions: 4739 type: object 4740 properties: 4741 level: 4742 type: string 4743 role: 4744 type: string 4745 type: 4746 type: string 4747 user: 4748 type: string 4749 seccompProfile: 4750 type: object 4751 properties: 4752 localhostProfile: 4753 type: string 4754 type: 4755 type: string 4756 windowsOptions: 4757 type: object 4758 properties: 4759 gmsaCredentialSpec: 4760 type: string 4761 gmsaCredentialSpecName: 4762 type: string 4763 hostProcess: 4764 type: boolean 4765 runAsUserName: 4766 type: string 4767 description: Security context for the container. 4768 description: Template for the ZooKeeper container. 4769 serviceAccount: 4770 type: object 4771 properties: 4772 metadata: 4773 type: object 4774 properties: 4775 labels: 4776 x-kubernetes-preserve-unknown-fields: true 4777 type: object 4778 description: >- 4779 Labels added to the resource template. Can 4780 be applied to different resources such as 4781 `StatefulSets`, `Deployments`, `Pods`, and 4782 `Services`. 4783 annotations: 4784 x-kubernetes-preserve-unknown-fields: true 4785 type: object 4786 description: >- 4787 Annotations added to the resource template. 4788 Can be applied to different resources such 4789 as `StatefulSets`, `Deployments`, `Pods`, 4790 and `Services`. 4791 description: Metadata applied to the resource. 4792 description: Template for the ZooKeeper service account. 4793 jmxSecret: 4794 type: object 4795 properties: 4796 metadata: 4797 type: object 4798 properties: 4799 labels: 4800 x-kubernetes-preserve-unknown-fields: true 4801 type: object 4802 description: >- 4803 Labels added to the resource template. Can 4804 be applied to different resources such as 4805 `StatefulSets`, `Deployments`, `Pods`, and 4806 `Services`. 4807 annotations: 4808 x-kubernetes-preserve-unknown-fields: true 4809 type: object 4810 description: >- 4811 Annotations added to the resource template. 4812 Can be applied to different resources such 4813 as `StatefulSets`, `Deployments`, `Pods`, 4814 and `Services`. 4815 description: Metadata applied to the resource. 4816 description: >- 4817 Template for Secret of the Zookeeper Cluster JMX 4818 authentication. 4819 podSet: 4820 type: object 4821 properties: 4822 metadata: 4823 type: object 4824 properties: 4825 labels: 4826 x-kubernetes-preserve-unknown-fields: true 4827 type: object 4828 description: >- 4829 Labels added to the resource template. Can 4830 be applied to different resources such as 4831 `StatefulSets`, `Deployments`, `Pods`, and 4832 `Services`. 4833 annotations: 4834 x-kubernetes-preserve-unknown-fields: true 4835 type: object 4836 description: >- 4837 Annotations added to the resource template. 4838 Can be applied to different resources such 4839 as `StatefulSets`, `Deployments`, `Pods`, 4840 and `Services`. 4841 description: Metadata applied to the resource. 4842 description: Template for ZooKeeper `StrimziPodSet` resource. 4843 description: >- 4844 Template for ZooKeeper cluster resources. The template 4845 allows users to specify how are the `StatefulSet`, 4846 `Pods` and `Services` generated. 4847 required: 4848 - replicas 4849 - storage 4850 description: Configuration of the ZooKeeper cluster. 4851 entityOperator: 4852 type: object 4853 properties: 4854 topicOperator: 4855 type: object 4856 properties: 4857 watchedNamespace: 4858 type: string 4859 description: The namespace the Topic Operator should watch. 4860 image: 4861 type: string 4862 description: The image to use for the Topic Operator. 4863 reconciliationIntervalSeconds: 4864 type: integer 4865 minimum: 0 4866 description: Interval between periodic reconciliations. 4867 zookeeperSessionTimeoutSeconds: 4868 type: integer 4869 minimum: 0 4870 description: Timeout for the ZooKeeper session. 4871 startupProbe: 4872 type: object 4873 properties: 4874 failureThreshold: 4875 type: integer 4876 minimum: 1 4877 description: >- 4878 Minimum consecutive failures for the probe to be 4879 considered failed after having succeeded. 4880 Defaults to 3. Minimum value is 1. 4881 initialDelaySeconds: 4882 type: integer 4883 minimum: 0 4884 description: >- 4885 The initial delay before first the health is 4886 first checked. Default to 15 seconds. Minimum 4887 value is 0. 4888 periodSeconds: 4889 type: integer 4890 minimum: 1 4891 description: >- 4892 How often (in seconds) to perform the probe. 4893 Default to 10 seconds. Minimum value is 1. 4894 successThreshold: 4895 type: integer 4896 minimum: 1 4897 description: >- 4898 Minimum consecutive successes for the probe to 4899 be considered successful after having failed. 4900 Defaults to 1. Must be 1 for liveness. Minimum 4901 value is 1. 4902 timeoutSeconds: 4903 type: integer 4904 minimum: 1 4905 description: >- 4906 The timeout for each attempted health check. 4907 Default to 5 seconds. Minimum value is 1. 4908 description: Pod startup checking. 4909 livenessProbe: 4910 type: object 4911 properties: 4912 failureThreshold: 4913 type: integer 4914 minimum: 1 4915 description: >- 4916 Minimum consecutive failures for the probe to be 4917 considered failed after having succeeded. 4918 Defaults to 3. Minimum value is 1. 4919 initialDelaySeconds: 4920 type: integer 4921 minimum: 0 4922 description: >- 4923 The initial delay before first the health is 4924 first checked. Default to 15 seconds. Minimum 4925 value is 0. 4926 periodSeconds: 4927 type: integer 4928 minimum: 1 4929 description: >- 4930 How often (in seconds) to perform the probe. 4931 Default to 10 seconds. Minimum value is 1. 4932 successThreshold: 4933 type: integer 4934 minimum: 1 4935 description: >- 4936 Minimum consecutive successes for the probe to 4937 be considered successful after having failed. 4938 Defaults to 1. Must be 1 for liveness. Minimum 4939 value is 1. 4940 timeoutSeconds: 4941 type: integer 4942 minimum: 1 4943 description: >- 4944 The timeout for each attempted health check. 4945 Default to 5 seconds. Minimum value is 1. 4946 description: Pod liveness checking. 4947 readinessProbe: 4948 type: object 4949 properties: 4950 failureThreshold: 4951 type: integer 4952 minimum: 1 4953 description: >- 4954 Minimum consecutive failures for the probe to be 4955 considered failed after having succeeded. 4956 Defaults to 3. Minimum value is 1. 4957 initialDelaySeconds: 4958 type: integer 4959 minimum: 0 4960 description: >- 4961 The initial delay before first the health is 4962 first checked. Default to 15 seconds. Minimum 4963 value is 0. 4964 periodSeconds: 4965 type: integer 4966 minimum: 1 4967 description: >- 4968 How often (in seconds) to perform the probe. 4969 Default to 10 seconds. Minimum value is 1. 4970 successThreshold: 4971 type: integer 4972 minimum: 1 4973 description: >- 4974 Minimum consecutive successes for the probe to 4975 be considered successful after having failed. 4976 Defaults to 1. Must be 1 for liveness. Minimum 4977 value is 1. 4978 timeoutSeconds: 4979 type: integer 4980 minimum: 1 4981 description: >- 4982 The timeout for each attempted health check. 4983 Default to 5 seconds. Minimum value is 1. 4984 description: Pod readiness checking. 4985 resources: 4986 type: object 4987 properties: 4988 limits: 4989 x-kubernetes-preserve-unknown-fields: true 4990 type: object 4991 requests: 4992 x-kubernetes-preserve-unknown-fields: true 4993 type: object 4994 description: CPU and memory resources to reserve. 4995 topicMetadataMaxAttempts: 4996 type: integer 4997 minimum: 0 4998 description: The number of attempts at getting topic metadata. 4999 logging: 5000 type: object 5001 properties: 5002 loggers: 5003 x-kubernetes-preserve-unknown-fields: true 5004 type: object 5005 description: A Map from logger name to logger level. 5006 type: 5007 type: string 5008 enum: 5009 - inline 5010 - external 5011 description: >- 5012 Logging type, must be either 'inline' or 5013 'external'. 5014 valueFrom: 5015 type: object 5016 properties: 5017 configMapKeyRef: 5018 type: object 5019 properties: 5020 key: 5021 type: string 5022 name: 5023 type: string 5024 optional: 5025 type: boolean 5026 description: >- 5027 Reference to the key in the ConfigMap 5028 containing the configuration. 5029 description: >- 5030 `ConfigMap` entry where the logging 5031 configuration is stored. 5032 required: 5033 - type 5034 description: Logging configuration. 5035 jvmOptions: 5036 type: object 5037 properties: 5038 '-XX': 5039 x-kubernetes-preserve-unknown-fields: true 5040 type: object 5041 description: A map of -XX options to the JVM. 5042 '-Xms': 5043 type: string 5044 pattern: '^[0-9]+[mMgG]?$' 5045 description: '-Xms option to to the JVM.' 5046 '-Xmx': 5047 type: string 5048 pattern: '^[0-9]+[mMgG]?$' 5049 description: '-Xmx option to to the JVM.' 5050 gcLoggingEnabled: 5051 type: boolean 5052 description: >- 5053 Specifies whether the Garbage Collection logging 5054 is enabled. The default is false. 5055 javaSystemProperties: 5056 type: array 5057 items: 5058 type: object 5059 properties: 5060 name: 5061 type: string 5062 description: The system property name. 5063 value: 5064 type: string 5065 description: The system property value. 5066 description: >- 5067 A map of additional system properties which will 5068 be passed using the `-D` option to the JVM. 5069 description: JVM Options for pods. 5070 description: Configuration of the Topic Operator. 5071 userOperator: 5072 type: object 5073 properties: 5074 watchedNamespace: 5075 type: string 5076 description: The namespace the User Operator should watch. 5077 image: 5078 type: string 5079 description: The image to use for the User Operator. 5080 reconciliationIntervalSeconds: 5081 type: integer 5082 minimum: 0 5083 description: Interval between periodic reconciliations. 5084 zookeeperSessionTimeoutSeconds: 5085 type: integer 5086 minimum: 0 5087 description: Timeout for the ZooKeeper session. 5088 secretPrefix: 5089 type: string 5090 description: >- 5091 The prefix that will be added to the KafkaUser name 5092 to be used as the Secret name. 5093 livenessProbe: 5094 type: object 5095 properties: 5096 failureThreshold: 5097 type: integer 5098 minimum: 1 5099 description: >- 5100 Minimum consecutive failures for the probe to be 5101 considered failed after having succeeded. 5102 Defaults to 3. Minimum value is 1. 5103 initialDelaySeconds: 5104 type: integer 5105 minimum: 0 5106 description: >- 5107 The initial delay before first the health is 5108 first checked. Default to 15 seconds. Minimum 5109 value is 0. 5110 periodSeconds: 5111 type: integer 5112 minimum: 1 5113 description: >- 5114 How often (in seconds) to perform the probe. 5115 Default to 10 seconds. Minimum value is 1. 5116 successThreshold: 5117 type: integer 5118 minimum: 1 5119 description: >- 5120 Minimum consecutive successes for the probe to 5121 be considered successful after having failed. 5122 Defaults to 1. Must be 1 for liveness. Minimum 5123 value is 1. 5124 timeoutSeconds: 5125 type: integer 5126 minimum: 1 5127 description: >- 5128 The timeout for each attempted health check. 5129 Default to 5 seconds. Minimum value is 1. 5130 description: Pod liveness checking. 5131 readinessProbe: 5132 type: object 5133 properties: 5134 failureThreshold: 5135 type: integer 5136 minimum: 1 5137 description: >- 5138 Minimum consecutive failures for the probe to be 5139 considered failed after having succeeded. 5140 Defaults to 3. Minimum value is 1. 5141 initialDelaySeconds: 5142 type: integer 5143 minimum: 0 5144 description: >- 5145 The initial delay before first the health is 5146 first checked. Default to 15 seconds. Minimum 5147 value is 0. 5148 periodSeconds: 5149 type: integer 5150 minimum: 1 5151 description: >- 5152 How often (in seconds) to perform the probe. 5153 Default to 10 seconds. Minimum value is 1. 5154 successThreshold: 5155 type: integer 5156 minimum: 1 5157 description: >- 5158 Minimum consecutive successes for the probe to 5159 be considered successful after having failed. 5160 Defaults to 1. Must be 1 for liveness. Minimum 5161 value is 1. 5162 timeoutSeconds: 5163 type: integer 5164 minimum: 1 5165 description: >- 5166 The timeout for each attempted health check. 5167 Default to 5 seconds. Minimum value is 1. 5168 description: Pod readiness checking. 5169 resources: 5170 type: object 5171 properties: 5172 limits: 5173 x-kubernetes-preserve-unknown-fields: true 5174 type: object 5175 requests: 5176 x-kubernetes-preserve-unknown-fields: true 5177 type: object 5178 description: CPU and memory resources to reserve. 5179 logging: 5180 type: object 5181 properties: 5182 loggers: 5183 x-kubernetes-preserve-unknown-fields: true 5184 type: object 5185 description: A Map from logger name to logger level. 5186 type: 5187 type: string 5188 enum: 5189 - inline 5190 - external 5191 description: >- 5192 Logging type, must be either 'inline' or 5193 'external'. 5194 valueFrom: 5195 type: object 5196 properties: 5197 configMapKeyRef: 5198 type: object 5199 properties: 5200 key: 5201 type: string 5202 name: 5203 type: string 5204 optional: 5205 type: boolean 5206 description: >- 5207 Reference to the key in the ConfigMap 5208 containing the configuration. 5209 description: >- 5210 `ConfigMap` entry where the logging 5211 configuration is stored. 5212 required: 5213 - type 5214 description: Logging configuration. 5215 jvmOptions: 5216 type: object 5217 properties: 5218 '-XX': 5219 x-kubernetes-preserve-unknown-fields: true 5220 type: object 5221 description: A map of -XX options to the JVM. 5222 '-Xms': 5223 type: string 5224 pattern: '^[0-9]+[mMgG]?$' 5225 description: '-Xms option to to the JVM.' 5226 '-Xmx': 5227 type: string 5228 pattern: '^[0-9]+[mMgG]?$' 5229 description: '-Xmx option to to the JVM.' 5230 gcLoggingEnabled: 5231 type: boolean 5232 description: >- 5233 Specifies whether the Garbage Collection logging 5234 is enabled. The default is false. 5235 javaSystemProperties: 5236 type: array 5237 items: 5238 type: object 5239 properties: 5240 name: 5241 type: string 5242 description: The system property name. 5243 value: 5244 type: string 5245 description: The system property value. 5246 description: >- 5247 A map of additional system properties which will 5248 be passed using the `-D` option to the JVM. 5249 description: JVM Options for pods. 5250 description: Configuration of the User Operator. 5251 tlsSidecar: 5252 type: object 5253 properties: 5254 image: 5255 type: string 5256 description: The docker image for the container. 5257 livenessProbe: 5258 type: object 5259 properties: 5260 failureThreshold: 5261 type: integer 5262 minimum: 1 5263 description: >- 5264 Minimum consecutive failures for the probe to be 5265 considered failed after having succeeded. 5266 Defaults to 3. Minimum value is 1. 5267 initialDelaySeconds: 5268 type: integer 5269 minimum: 0 5270 description: >- 5271 The initial delay before first the health is 5272 first checked. Default to 15 seconds. Minimum 5273 value is 0. 5274 periodSeconds: 5275 type: integer 5276 minimum: 1 5277 description: >- 5278 How often (in seconds) to perform the probe. 5279 Default to 10 seconds. Minimum value is 1. 5280 successThreshold: 5281 type: integer 5282 minimum: 1 5283 description: >- 5284 Minimum consecutive successes for the probe to 5285 be considered successful after having failed. 5286 Defaults to 1. Must be 1 for liveness. Minimum 5287 value is 1. 5288 timeoutSeconds: 5289 type: integer 5290 minimum: 1 5291 description: >- 5292 The timeout for each attempted health check. 5293 Default to 5 seconds. Minimum value is 1. 5294 description: Pod liveness checking. 5295 logLevel: 5296 type: string 5297 enum: 5298 - emerg 5299 - alert 5300 - crit 5301 - err 5302 - warning 5303 - notice 5304 - info 5305 - debug 5306 description: >- 5307 The log level for the TLS sidecar. Default value is 5308 `notice`. 5309 readinessProbe: 5310 type: object 5311 properties: 5312 failureThreshold: 5313 type: integer 5314 minimum: 1 5315 description: >- 5316 Minimum consecutive failures for the probe to be 5317 considered failed after having succeeded. 5318 Defaults to 3. Minimum value is 1. 5319 initialDelaySeconds: 5320 type: integer 5321 minimum: 0 5322 description: >- 5323 The initial delay before first the health is 5324 first checked. Default to 15 seconds. Minimum 5325 value is 0. 5326 periodSeconds: 5327 type: integer 5328 minimum: 1 5329 description: >- 5330 How often (in seconds) to perform the probe. 5331 Default to 10 seconds. Minimum value is 1. 5332 successThreshold: 5333 type: integer 5334 minimum: 1 5335 description: >- 5336 Minimum consecutive successes for the probe to 5337 be considered successful after having failed. 5338 Defaults to 1. Must be 1 for liveness. Minimum 5339 value is 1. 5340 timeoutSeconds: 5341 type: integer 5342 minimum: 1 5343 description: >- 5344 The timeout for each attempted health check. 5345 Default to 5 seconds. Minimum value is 1. 5346 description: Pod readiness checking. 5347 resources: 5348 type: object 5349 properties: 5350 limits: 5351 x-kubernetes-preserve-unknown-fields: true 5352 type: object 5353 requests: 5354 x-kubernetes-preserve-unknown-fields: true 5355 type: object 5356 description: CPU and memory resources to reserve. 5357 description: TLS sidecar configuration. 5358 template: 5359 type: object 5360 properties: 5361 deployment: 5362 type: object 5363 properties: 5364 metadata: 5365 type: object 5366 properties: 5367 labels: 5368 x-kubernetes-preserve-unknown-fields: true 5369 type: object 5370 description: >- 5371 Labels added to the resource template. Can 5372 be applied to different resources such as 5373 `StatefulSets`, `Deployments`, `Pods`, and 5374 `Services`. 5375 annotations: 5376 x-kubernetes-preserve-unknown-fields: true 5377 type: object 5378 description: >- 5379 Annotations added to the resource template. 5380 Can be applied to different resources such 5381 as `StatefulSets`, `Deployments`, `Pods`, 5382 and `Services`. 5383 description: Metadata applied to the resource. 5384 description: Template for Entity Operator `Deployment`. 5385 pod: 5386 type: object 5387 properties: 5388 metadata: 5389 type: object 5390 properties: 5391 labels: 5392 x-kubernetes-preserve-unknown-fields: true 5393 type: object 5394 description: >- 5395 Labels added to the resource template. Can 5396 be applied to different resources such as 5397 `StatefulSets`, `Deployments`, `Pods`, and 5398 `Services`. 5399 annotations: 5400 x-kubernetes-preserve-unknown-fields: true 5401 type: object 5402 description: >- 5403 Annotations added to the resource template. 5404 Can be applied to different resources such 5405 as `StatefulSets`, `Deployments`, `Pods`, 5406 and `Services`. 5407 description: Metadata applied to the resource. 5408 imagePullSecrets: 5409 type: array 5410 items: 5411 type: object 5412 properties: 5413 name: 5414 type: string 5415 description: >- 5416 List of references to secrets in the same 5417 namespace to use for pulling any of the images 5418 used by this Pod. When the 5419 `STRIMZI_IMAGE_PULL_SECRETS` environment 5420 variable in Cluster Operator and the 5421 `imagePullSecrets` option are specified, only 5422 the `imagePullSecrets` variable is used and the 5423 `STRIMZI_IMAGE_PULL_SECRETS` variable is 5424 ignored. 5425 securityContext: 5426 type: object 5427 properties: 5428 fsGroup: 5429 type: integer 5430 fsGroupChangePolicy: 5431 type: string 5432 runAsGroup: 5433 type: integer 5434 runAsNonRoot: 5435 type: boolean 5436 runAsUser: 5437 type: integer 5438 seLinuxOptions: 5439 type: object 5440 properties: 5441 level: 5442 type: string 5443 role: 5444 type: string 5445 type: 5446 type: string 5447 user: 5448 type: string 5449 seccompProfile: 5450 type: object 5451 properties: 5452 localhostProfile: 5453 type: string 5454 type: 5455 type: string 5456 supplementalGroups: 5457 type: array 5458 items: 5459 type: integer 5460 sysctls: 5461 type: array 5462 items: 5463 type: object 5464 properties: 5465 name: 5466 type: string 5467 value: 5468 type: string 5469 windowsOptions: 5470 type: object 5471 properties: 5472 gmsaCredentialSpec: 5473 type: string 5474 gmsaCredentialSpecName: 5475 type: string 5476 hostProcess: 5477 type: boolean 5478 runAsUserName: 5479 type: string 5480 description: >- 5481 Configures pod-level security attributes and 5482 common container settings. 5483 terminationGracePeriodSeconds: 5484 type: integer 5485 minimum: 0 5486 description: >- 5487 The grace period is the duration in seconds 5488 after the processes running in the pod are sent 5489 a termination signal, and the time when the 5490 processes are forcibly halted with a kill 5491 signal. Set this value to longer than the 5492 expected cleanup time for your process. Value 5493 must be a non-negative integer. A zero value 5494 indicates delete immediately. You might need to 5495 increase the grace period for very large Kafka 5496 clusters, so that the Kafka brokers have enough 5497 time to transfer their work to another broker 5498 before they are terminated. Defaults to 30 5499 seconds. 5500 affinity: 5501 type: object 5502 properties: 5503 nodeAffinity: 5504 type: object 5505 properties: 5506 preferredDuringSchedulingIgnoredDuringExecution: 5507 type: array 5508 items: 5509 type: object 5510 properties: 5511 preference: 5512 type: object 5513 properties: 5514 matchExpressions: 5515 type: array 5516 items: 5517 type: object 5518 properties: 5519 key: 5520 type: string 5521 operator: 5522 type: string 5523 values: 5524 type: array 5525 items: 5526 type: string 5527 matchFields: 5528 type: array 5529 items: 5530 type: object 5531 properties: 5532 key: 5533 type: string 5534 operator: 5535 type: string 5536 values: 5537 type: array 5538 items: 5539 type: string 5540 weight: 5541 type: integer 5542 requiredDuringSchedulingIgnoredDuringExecution: 5543 type: object 5544 properties: 5545 nodeSelectorTerms: 5546 type: array 5547 items: 5548 type: object 5549 properties: 5550 matchExpressions: 5551 type: array 5552 items: 5553 type: object 5554 properties: 5555 key: 5556 type: string 5557 operator: 5558 type: string 5559 values: 5560 type: array 5561 items: 5562 type: string 5563 matchFields: 5564 type: array 5565 items: 5566 type: object 5567 properties: 5568 key: 5569 type: string 5570 operator: 5571 type: string 5572 values: 5573 type: array 5574 items: 5575 type: string 5576 podAffinity: 5577 type: object 5578 properties: 5579 preferredDuringSchedulingIgnoredDuringExecution: 5580 type: array 5581 items: 5582 type: object 5583 properties: 5584 podAffinityTerm: 5585 type: object 5586 properties: 5587 labelSelector: 5588 type: object 5589 properties: 5590 matchExpressions: 5591 type: array 5592 items: 5593 type: object 5594 properties: 5595 key: 5596 type: string 5597 operator: 5598 type: string 5599 values: 5600 type: array 5601 items: 5602 type: string 5603 matchLabels: 5604 x-kubernetes-preserve-unknown-fields: true 5605 type: object 5606 namespaceSelector: 5607 type: object 5608 properties: 5609 matchExpressions: 5610 type: array 5611 items: 5612 type: object 5613 properties: 5614 key: 5615 type: string 5616 operator: 5617 type: string 5618 values: 5619 type: array 5620 items: 5621 type: string 5622 matchLabels: 5623 x-kubernetes-preserve-unknown-fields: true 5624 type: object 5625 namespaces: 5626 type: array 5627 items: 5628 type: string 5629 topologyKey: 5630 type: string 5631 weight: 5632 type: integer 5633 requiredDuringSchedulingIgnoredDuringExecution: 5634 type: array 5635 items: 5636 type: object 5637 properties: 5638 labelSelector: 5639 type: object 5640 properties: 5641 matchExpressions: 5642 type: array 5643 items: 5644 type: object 5645 properties: 5646 key: 5647 type: string 5648 operator: 5649 type: string 5650 values: 5651 type: array 5652 items: 5653 type: string 5654 matchLabels: 5655 x-kubernetes-preserve-unknown-fields: true 5656 type: object 5657 namespaceSelector: 5658 type: object 5659 properties: 5660 matchExpressions: 5661 type: array 5662 items: 5663 type: object 5664 properties: 5665 key: 5666 type: string 5667 operator: 5668 type: string 5669 values: 5670 type: array 5671 items: 5672 type: string 5673 matchLabels: 5674 x-kubernetes-preserve-unknown-fields: true 5675 type: object 5676 namespaces: 5677 type: array 5678 items: 5679 type: string 5680 topologyKey: 5681 type: string 5682 podAntiAffinity: 5683 type: object 5684 properties: 5685 preferredDuringSchedulingIgnoredDuringExecution: 5686 type: array 5687 items: 5688 type: object 5689 properties: 5690 podAffinityTerm: 5691 type: object 5692 properties: 5693 labelSelector: 5694 type: object 5695 properties: 5696 matchExpressions: 5697 type: array 5698 items: 5699 type: object 5700 properties: 5701 key: 5702 type: string 5703 operator: 5704 type: string 5705 values: 5706 type: array 5707 items: 5708 type: string 5709 matchLabels: 5710 x-kubernetes-preserve-unknown-fields: true 5711 type: object 5712 namespaceSelector: 5713 type: object 5714 properties: 5715 matchExpressions: 5716 type: array 5717 items: 5718 type: object 5719 properties: 5720 key: 5721 type: string 5722 operator: 5723 type: string 5724 values: 5725 type: array 5726 items: 5727 type: string 5728 matchLabels: 5729 x-kubernetes-preserve-unknown-fields: true 5730 type: object 5731 namespaces: 5732 type: array 5733 items: 5734 type: string 5735 topologyKey: 5736 type: string 5737 weight: 5738 type: integer 5739 requiredDuringSchedulingIgnoredDuringExecution: 5740 type: array 5741 items: 5742 type: object 5743 properties: 5744 labelSelector: 5745 type: object 5746 properties: 5747 matchExpressions: 5748 type: array 5749 items: 5750 type: object 5751 properties: 5752 key: 5753 type: string 5754 operator: 5755 type: string 5756 values: 5757 type: array 5758 items: 5759 type: string 5760 matchLabels: 5761 x-kubernetes-preserve-unknown-fields: true 5762 type: object 5763 namespaceSelector: 5764 type: object 5765 properties: 5766 matchExpressions: 5767 type: array 5768 items: 5769 type: object 5770 properties: 5771 key: 5772 type: string 5773 operator: 5774 type: string 5775 values: 5776 type: array 5777 items: 5778 type: string 5779 matchLabels: 5780 x-kubernetes-preserve-unknown-fields: true 5781 type: object 5782 namespaces: 5783 type: array 5784 items: 5785 type: string 5786 topologyKey: 5787 type: string 5788 description: The pod's affinity rules. 5789 tolerations: 5790 type: array 5791 items: 5792 type: object 5793 properties: 5794 effect: 5795 type: string 5796 key: 5797 type: string 5798 operator: 5799 type: string 5800 tolerationSeconds: 5801 type: integer 5802 value: 5803 type: string 5804 description: The pod's tolerations. 5805 priorityClassName: 5806 type: string 5807 description: >- 5808 The name of the priority class used to assign 5809 priority to the pods. For more information about 5810 priority classes, see {K8sPriorityClass}. 5811 schedulerName: 5812 type: string 5813 description: >- 5814 The name of the scheduler used to dispatch this 5815 `Pod`. If not specified, the default scheduler 5816 will be used. 5817 hostAliases: 5818 type: array 5819 items: 5820 type: object 5821 properties: 5822 hostnames: 5823 type: array 5824 items: 5825 type: string 5826 ip: 5827 type: string 5828 description: >- 5829 The pod's HostAliases. HostAliases is an 5830 optional list of hosts and IPs that will be 5831 injected into the Pod's hosts file if specified. 5832 tmpDirSizeLimit: 5833 type: string 5834 pattern: '^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$' 5835 description: >- 5836 Defines the total amount (for example `1Gi`) of 5837 local storage required for temporary EmptyDir 5838 volume (`/tmp`). Default value is `1Mi`. 5839 enableServiceLinks: 5840 type: boolean 5841 description: >- 5842 Indicates whether information about services 5843 should be injected into Pod's environment 5844 variables. 5845 topologySpreadConstraints: 5846 type: array 5847 items: 5848 type: object 5849 properties: 5850 labelSelector: 5851 type: object 5852 properties: 5853 matchExpressions: 5854 type: array 5855 items: 5856 type: object 5857 properties: 5858 key: 5859 type: string 5860 operator: 5861 type: string 5862 values: 5863 type: array 5864 items: 5865 type: string 5866 matchLabels: 5867 x-kubernetes-preserve-unknown-fields: true 5868 type: object 5869 maxSkew: 5870 type: integer 5871 topologyKey: 5872 type: string 5873 whenUnsatisfiable: 5874 type: string 5875 description: The pod's topology spread constraints. 5876 description: Template for Entity Operator `Pods`. 5877 topicOperatorContainer: 5878 type: object 5879 properties: 5880 env: 5881 type: array 5882 items: 5883 type: object 5884 properties: 5885 name: 5886 type: string 5887 description: The environment variable key. 5888 value: 5889 type: string 5890 description: The environment variable value. 5891 description: >- 5892 Environment variables which should be applied to 5893 the container. 5894 securityContext: 5895 type: object 5896 properties: 5897 allowPrivilegeEscalation: 5898 type: boolean 5899 capabilities: 5900 type: object 5901 properties: 5902 add: 5903 type: array 5904 items: 5905 type: string 5906 drop: 5907 type: array 5908 items: 5909 type: string 5910 privileged: 5911 type: boolean 5912 procMount: 5913 type: string 5914 readOnlyRootFilesystem: 5915 type: boolean 5916 runAsGroup: 5917 type: integer 5918 runAsNonRoot: 5919 type: boolean 5920 runAsUser: 5921 type: integer 5922 seLinuxOptions: 5923 type: object 5924 properties: 5925 level: 5926 type: string 5927 role: 5928 type: string 5929 type: 5930 type: string 5931 user: 5932 type: string 5933 seccompProfile: 5934 type: object 5935 properties: 5936 localhostProfile: 5937 type: string 5938 type: 5939 type: string 5940 windowsOptions: 5941 type: object 5942 properties: 5943 gmsaCredentialSpec: 5944 type: string 5945 gmsaCredentialSpecName: 5946 type: string 5947 hostProcess: 5948 type: boolean 5949 runAsUserName: 5950 type: string 5951 description: Security context for the container. 5952 description: Template for the Entity Topic Operator container. 5953 userOperatorContainer: 5954 type: object 5955 properties: 5956 env: 5957 type: array 5958 items: 5959 type: object 5960 properties: 5961 name: 5962 type: string 5963 description: The environment variable key. 5964 value: 5965 type: string 5966 description: The environment variable value. 5967 description: >- 5968 Environment variables which should be applied to 5969 the container. 5970 securityContext: 5971 type: object 5972 properties: 5973 allowPrivilegeEscalation: 5974 type: boolean 5975 capabilities: 5976 type: object 5977 properties: 5978 add: 5979 type: array 5980 items: 5981 type: string 5982 drop: 5983 type: array 5984 items: 5985 type: string 5986 privileged: 5987 type: boolean 5988 procMount: 5989 type: string 5990 readOnlyRootFilesystem: 5991 type: boolean 5992 runAsGroup: 5993 type: integer 5994 runAsNonRoot: 5995 type: boolean 5996 runAsUser: 5997 type: integer 5998 seLinuxOptions: 5999 type: object 6000 properties: 6001 level: 6002 type: string 6003 role: 6004 type: string 6005 type: 6006 type: string 6007 user: 6008 type: string 6009 seccompProfile: 6010 type: object 6011 properties: 6012 localhostProfile: 6013 type: string 6014 type: 6015 type: string 6016 windowsOptions: 6017 type: object 6018 properties: 6019 gmsaCredentialSpec: 6020 type: string 6021 gmsaCredentialSpecName: 6022 type: string 6023 hostProcess: 6024 type: boolean 6025 runAsUserName: 6026 type: string 6027 description: Security context for the container. 6028 description: Template for the Entity User Operator container. 6029 tlsSidecarContainer: 6030 type: object 6031 properties: 6032 env: 6033 type: array 6034 items: 6035 type: object 6036 properties: 6037 name: 6038 type: string 6039 description: The environment variable key. 6040 value: 6041 type: string 6042 description: The environment variable value. 6043 description: >- 6044 Environment variables which should be applied to 6045 the container. 6046 securityContext: 6047 type: object 6048 properties: 6049 allowPrivilegeEscalation: 6050 type: boolean 6051 capabilities: 6052 type: object 6053 properties: 6054 add: 6055 type: array 6056 items: 6057 type: string 6058 drop: 6059 type: array 6060 items: 6061 type: string 6062 privileged: 6063 type: boolean 6064 procMount: 6065 type: string 6066 readOnlyRootFilesystem: 6067 type: boolean 6068 runAsGroup: 6069 type: integer 6070 runAsNonRoot: 6071 type: boolean 6072 runAsUser: 6073 type: integer 6074 seLinuxOptions: 6075 type: object 6076 properties: 6077 level: 6078 type: string 6079 role: 6080 type: string 6081 type: 6082 type: string 6083 user: 6084 type: string 6085 seccompProfile: 6086 type: object 6087 properties: 6088 localhostProfile: 6089 type: string 6090 type: 6091 type: string 6092 windowsOptions: 6093 type: object 6094 properties: 6095 gmsaCredentialSpec: 6096 type: string 6097 gmsaCredentialSpecName: 6098 type: string 6099 hostProcess: 6100 type: boolean 6101 runAsUserName: 6102 type: string 6103 description: Security context for the container. 6104 description: >- 6105 Template for the Entity Operator TLS sidecar 6106 container. 6107 serviceAccount: 6108 type: object 6109 properties: 6110 metadata: 6111 type: object 6112 properties: 6113 labels: 6114 x-kubernetes-preserve-unknown-fields: true 6115 type: object 6116 description: >- 6117 Labels added to the resource template. Can 6118 be applied to different resources such as 6119 `StatefulSets`, `Deployments`, `Pods`, and 6120 `Services`. 6121 annotations: 6122 x-kubernetes-preserve-unknown-fields: true 6123 type: object 6124 description: >- 6125 Annotations added to the resource template. 6126 Can be applied to different resources such 6127 as `StatefulSets`, `Deployments`, `Pods`, 6128 and `Services`. 6129 description: Metadata applied to the resource. 6130 description: Template for the Entity Operator service account. 6131 description: >- 6132 Template for Entity Operator resources. The template 6133 allows users to specify how is the `Deployment` and 6134 `Pods` generated. 6135 description: Configuration of the Entity Operator. 6136 clusterCa: 6137 type: object 6138 properties: 6139 generateCertificateAuthority: 6140 type: boolean 6141 description: >- 6142 If true then Certificate Authority certificates will be 6143 generated automatically. Otherwise the user will need to 6144 provide a Secret with the CA certificate. Default is 6145 true. 6146 generateSecretOwnerReference: 6147 type: boolean 6148 description: >- 6149 If `true`, the Cluster and Client CA Secrets are 6150 configured with the `ownerReference` set to the `Kafka` 6151 resource. If the `Kafka` resource is deleted when 6152 `true`, the CA Secrets are also deleted. If `false`, the 6153 `ownerReference` is disabled. If the `Kafka` resource is 6154 deleted when `false`, the CA Secrets are retained and 6155 available for reuse. Default is `true`. 6156 validityDays: 6157 type: integer 6158 minimum: 1 6159 description: >- 6160 The number of days generated certificates should be 6161 valid for. The default is 365. 6162 renewalDays: 6163 type: integer 6164 minimum: 1 6165 description: >- 6166 The number of days in the certificate renewal period. 6167 This is the number of days before the a certificate 6168 expires during which renewal actions may be performed. 6169 When `generateCertificateAuthority` is true, this will 6170 cause the generation of a new certificate. When 6171 `generateCertificateAuthority` is true, this will cause 6172 extra logging at WARN level about the pending 6173 certificate expiry. Default is 30. 6174 certificateExpirationPolicy: 6175 type: string 6176 enum: 6177 - renew-certificate 6178 - replace-key 6179 description: >- 6180 How should CA certificate expiration be handled when 6181 `generateCertificateAuthority=true`. The default is for 6182 a new CA certificate to be generated reusing the 6183 existing private key. 6184 description: Configuration of the cluster certificate authority. 6185 clientsCa: 6186 type: object 6187 properties: 6188 generateCertificateAuthority: 6189 type: boolean 6190 description: >- 6191 If true then Certificate Authority certificates will be 6192 generated automatically. Otherwise the user will need to 6193 provide a Secret with the CA certificate. Default is 6194 true. 6195 generateSecretOwnerReference: 6196 type: boolean 6197 description: >- 6198 If `true`, the Cluster and Client CA Secrets are 6199 configured with the `ownerReference` set to the `Kafka` 6200 resource. If the `Kafka` resource is deleted when 6201 `true`, the CA Secrets are also deleted. If `false`, the 6202 `ownerReference` is disabled. If the `Kafka` resource is 6203 deleted when `false`, the CA Secrets are retained and 6204 available for reuse. Default is `true`. 6205 validityDays: 6206 type: integer 6207 minimum: 1 6208 description: >- 6209 The number of days generated certificates should be 6210 valid for. The default is 365. 6211 renewalDays: 6212 type: integer 6213 minimum: 1 6214 description: >- 6215 The number of days in the certificate renewal period. 6216 This is the number of days before the a certificate 6217 expires during which renewal actions may be performed. 6218 When `generateCertificateAuthority` is true, this will 6219 cause the generation of a new certificate. When 6220 `generateCertificateAuthority` is true, this will cause 6221 extra logging at WARN level about the pending 6222 certificate expiry. Default is 30. 6223 certificateExpirationPolicy: 6224 type: string 6225 enum: 6226 - renew-certificate 6227 - replace-key 6228 description: >- 6229 How should CA certificate expiration be handled when 6230 `generateCertificateAuthority=true`. The default is for 6231 a new CA certificate to be generated reusing the 6232 existing private key. 6233 description: Configuration of the clients certificate authority. 6234 cruiseControl: 6235 type: object 6236 properties: 6237 image: 6238 type: string 6239 description: The docker image for the pods. 6240 tlsSidecar: 6241 type: object 6242 properties: 6243 image: 6244 type: string 6245 description: The docker image for the container. 6246 livenessProbe: 6247 type: object 6248 properties: 6249 failureThreshold: 6250 type: integer 6251 minimum: 1 6252 description: >- 6253 Minimum consecutive failures for the probe to be 6254 considered failed after having succeeded. 6255 Defaults to 3. Minimum value is 1. 6256 initialDelaySeconds: 6257 type: integer 6258 minimum: 0 6259 description: >- 6260 The initial delay before first the health is 6261 first checked. Default to 15 seconds. Minimum 6262 value is 0. 6263 periodSeconds: 6264 type: integer 6265 minimum: 1 6266 description: >- 6267 How often (in seconds) to perform the probe. 6268 Default to 10 seconds. Minimum value is 1. 6269 successThreshold: 6270 type: integer 6271 minimum: 1 6272 description: >- 6273 Minimum consecutive successes for the probe to 6274 be considered successful after having failed. 6275 Defaults to 1. Must be 1 for liveness. Minimum 6276 value is 1. 6277 timeoutSeconds: 6278 type: integer 6279 minimum: 1 6280 description: >- 6281 The timeout for each attempted health check. 6282 Default to 5 seconds. Minimum value is 1. 6283 description: Pod liveness checking. 6284 logLevel: 6285 type: string 6286 enum: 6287 - emerg 6288 - alert 6289 - crit 6290 - err 6291 - warning 6292 - notice 6293 - info 6294 - debug 6295 description: >- 6296 The log level for the TLS sidecar. Default value is 6297 `notice`. 6298 readinessProbe: 6299 type: object 6300 properties: 6301 failureThreshold: 6302 type: integer 6303 minimum: 1 6304 description: >- 6305 Minimum consecutive failures for the probe to be 6306 considered failed after having succeeded. 6307 Defaults to 3. Minimum value is 1. 6308 initialDelaySeconds: 6309 type: integer 6310 minimum: 0 6311 description: >- 6312 The initial delay before first the health is 6313 first checked. Default to 15 seconds. Minimum 6314 value is 0. 6315 periodSeconds: 6316 type: integer 6317 minimum: 1 6318 description: >- 6319 How often (in seconds) to perform the probe. 6320 Default to 10 seconds. Minimum value is 1. 6321 successThreshold: 6322 type: integer 6323 minimum: 1 6324 description: >- 6325 Minimum consecutive successes for the probe to 6326 be considered successful after having failed. 6327 Defaults to 1. Must be 1 for liveness. Minimum 6328 value is 1. 6329 timeoutSeconds: 6330 type: integer 6331 minimum: 1 6332 description: >- 6333 The timeout for each attempted health check. 6334 Default to 5 seconds. Minimum value is 1. 6335 description: Pod readiness checking. 6336 resources: 6337 type: object 6338 properties: 6339 limits: 6340 x-kubernetes-preserve-unknown-fields: true 6341 type: object 6342 requests: 6343 x-kubernetes-preserve-unknown-fields: true 6344 type: object 6345 description: CPU and memory resources to reserve. 6346 description: TLS sidecar configuration. 6347 resources: 6348 type: object 6349 properties: 6350 limits: 6351 x-kubernetes-preserve-unknown-fields: true 6352 type: object 6353 requests: 6354 x-kubernetes-preserve-unknown-fields: true 6355 type: object 6356 description: >- 6357 CPU and memory resources to reserve for the Cruise 6358 Control container. 6359 livenessProbe: 6360 type: object 6361 properties: 6362 failureThreshold: 6363 type: integer 6364 minimum: 1 6365 description: >- 6366 Minimum consecutive failures for the probe to be 6367 considered failed after having succeeded. Defaults 6368 to 3. Minimum value is 1. 6369 initialDelaySeconds: 6370 type: integer 6371 minimum: 0 6372 description: >- 6373 The initial delay before first the health is first 6374 checked. Default to 15 seconds. Minimum value is 0. 6375 periodSeconds: 6376 type: integer 6377 minimum: 1 6378 description: >- 6379 How often (in seconds) to perform the probe. Default 6380 to 10 seconds. Minimum value is 1. 6381 successThreshold: 6382 type: integer 6383 minimum: 1 6384 description: >- 6385 Minimum consecutive successes for the probe to be 6386 considered successful after having failed. Defaults 6387 to 1. Must be 1 for liveness. Minimum value is 1. 6388 timeoutSeconds: 6389 type: integer 6390 minimum: 1 6391 description: >- 6392 The timeout for each attempted health check. Default 6393 to 5 seconds. Minimum value is 1. 6394 description: Pod liveness checking for the Cruise Control container. 6395 readinessProbe: 6396 type: object 6397 properties: 6398 failureThreshold: 6399 type: integer 6400 minimum: 1 6401 description: >- 6402 Minimum consecutive failures for the probe to be 6403 considered failed after having succeeded. Defaults 6404 to 3. Minimum value is 1. 6405 initialDelaySeconds: 6406 type: integer 6407 minimum: 0 6408 description: >- 6409 The initial delay before first the health is first 6410 checked. Default to 15 seconds. Minimum value is 0. 6411 periodSeconds: 6412 type: integer 6413 minimum: 1 6414 description: >- 6415 How often (in seconds) to perform the probe. Default 6416 to 10 seconds. Minimum value is 1. 6417 successThreshold: 6418 type: integer 6419 minimum: 1 6420 description: >- 6421 Minimum consecutive successes for the probe to be 6422 considered successful after having failed. Defaults 6423 to 1. Must be 1 for liveness. Minimum value is 1. 6424 timeoutSeconds: 6425 type: integer 6426 minimum: 1 6427 description: >- 6428 The timeout for each attempted health check. Default 6429 to 5 seconds. Minimum value is 1. 6430 description: Pod readiness checking for the Cruise Control container. 6431 jvmOptions: 6432 type: object 6433 properties: 6434 '-XX': 6435 x-kubernetes-preserve-unknown-fields: true 6436 type: object 6437 description: A map of -XX options to the JVM. 6438 '-Xms': 6439 type: string 6440 pattern: '^[0-9]+[mMgG]?$' 6441 description: '-Xms option to to the JVM.' 6442 '-Xmx': 6443 type: string 6444 pattern: '^[0-9]+[mMgG]?$' 6445 description: '-Xmx option to to the JVM.' 6446 gcLoggingEnabled: 6447 type: boolean 6448 description: >- 6449 Specifies whether the Garbage Collection logging is 6450 enabled. The default is false. 6451 javaSystemProperties: 6452 type: array 6453 items: 6454 type: object 6455 properties: 6456 name: 6457 type: string 6458 description: The system property name. 6459 value: 6460 type: string 6461 description: The system property value. 6462 description: >- 6463 A map of additional system properties which will be 6464 passed using the `-D` option to the JVM. 6465 description: JVM Options for the Cruise Control container. 6466 logging: 6467 type: object 6468 properties: 6469 loggers: 6470 x-kubernetes-preserve-unknown-fields: true 6471 type: object 6472 description: A Map from logger name to logger level. 6473 type: 6474 type: string 6475 enum: 6476 - inline 6477 - external 6478 description: 'Logging type, must be either ''inline'' or ''external''.' 6479 valueFrom: 6480 type: object 6481 properties: 6482 configMapKeyRef: 6483 type: object 6484 properties: 6485 key: 6486 type: string 6487 name: 6488 type: string 6489 optional: 6490 type: boolean 6491 description: >- 6492 Reference to the key in the ConfigMap containing 6493 the configuration. 6494 description: >- 6495 `ConfigMap` entry where the logging configuration is 6496 stored. 6497 required: 6498 - type 6499 description: Logging configuration (Log4j 2) for Cruise Control. 6500 template: 6501 type: object 6502 properties: 6503 deployment: 6504 type: object 6505 properties: 6506 metadata: 6507 type: object 6508 properties: 6509 labels: 6510 x-kubernetes-preserve-unknown-fields: true 6511 type: object 6512 description: >- 6513 Labels added to the resource template. Can 6514 be applied to different resources such as 6515 `StatefulSets`, `Deployments`, `Pods`, and 6516 `Services`. 6517 annotations: 6518 x-kubernetes-preserve-unknown-fields: true 6519 type: object 6520 description: >- 6521 Annotations added to the resource template. 6522 Can be applied to different resources such 6523 as `StatefulSets`, `Deployments`, `Pods`, 6524 and `Services`. 6525 description: Metadata applied to the resource. 6526 description: Template for Cruise Control `Deployment`. 6527 pod: 6528 type: object 6529 properties: 6530 metadata: 6531 type: object 6532 properties: 6533 labels: 6534 x-kubernetes-preserve-unknown-fields: true 6535 type: object 6536 description: >- 6537 Labels added to the resource template. Can 6538 be applied to different resources such as 6539 `StatefulSets`, `Deployments`, `Pods`, and 6540 `Services`. 6541 annotations: 6542 x-kubernetes-preserve-unknown-fields: true 6543 type: object 6544 description: >- 6545 Annotations added to the resource template. 6546 Can be applied to different resources such 6547 as `StatefulSets`, `Deployments`, `Pods`, 6548 and `Services`. 6549 description: Metadata applied to the resource. 6550 imagePullSecrets: 6551 type: array 6552 items: 6553 type: object 6554 properties: 6555 name: 6556 type: string 6557 description: >- 6558 List of references to secrets in the same 6559 namespace to use for pulling any of the images 6560 used by this Pod. When the 6561 `STRIMZI_IMAGE_PULL_SECRETS` environment 6562 variable in Cluster Operator and the 6563 `imagePullSecrets` option are specified, only 6564 the `imagePullSecrets` variable is used and the 6565 `STRIMZI_IMAGE_PULL_SECRETS` variable is 6566 ignored. 6567 securityContext: 6568 type: object 6569 properties: 6570 fsGroup: 6571 type: integer 6572 fsGroupChangePolicy: 6573 type: string 6574 runAsGroup: 6575 type: integer 6576 runAsNonRoot: 6577 type: boolean 6578 runAsUser: 6579 type: integer 6580 seLinuxOptions: 6581 type: object 6582 properties: 6583 level: 6584 type: string 6585 role: 6586 type: string 6587 type: 6588 type: string 6589 user: 6590 type: string 6591 seccompProfile: 6592 type: object 6593 properties: 6594 localhostProfile: 6595 type: string 6596 type: 6597 type: string 6598 supplementalGroups: 6599 type: array 6600 items: 6601 type: integer 6602 sysctls: 6603 type: array 6604 items: 6605 type: object 6606 properties: 6607 name: 6608 type: string 6609 value: 6610 type: string 6611 windowsOptions: 6612 type: object 6613 properties: 6614 gmsaCredentialSpec: 6615 type: string 6616 gmsaCredentialSpecName: 6617 type: string 6618 hostProcess: 6619 type: boolean 6620 runAsUserName: 6621 type: string 6622 description: >- 6623 Configures pod-level security attributes and 6624 common container settings. 6625 terminationGracePeriodSeconds: 6626 type: integer 6627 minimum: 0 6628 description: >- 6629 The grace period is the duration in seconds 6630 after the processes running in the pod are sent 6631 a termination signal, and the time when the 6632 processes are forcibly halted with a kill 6633 signal. Set this value to longer than the 6634 expected cleanup time for your process. Value 6635 must be a non-negative integer. A zero value 6636 indicates delete immediately. You might need to 6637 increase the grace period for very large Kafka 6638 clusters, so that the Kafka brokers have enough 6639 time to transfer their work to another broker 6640 before they are terminated. Defaults to 30 6641 seconds. 6642 affinity: 6643 type: object 6644 properties: 6645 nodeAffinity: 6646 type: object 6647 properties: 6648 preferredDuringSchedulingIgnoredDuringExecution: 6649 type: array 6650 items: 6651 type: object 6652 properties: 6653 preference: 6654 type: object 6655 properties: 6656 matchExpressions: 6657 type: array 6658 items: 6659 type: object 6660 properties: 6661 key: 6662 type: string 6663 operator: 6664 type: string 6665 values: 6666 type: array 6667 items: 6668 type: string 6669 matchFields: 6670 type: array 6671 items: 6672 type: object 6673 properties: 6674 key: 6675 type: string 6676 operator: 6677 type: string 6678 values: 6679 type: array 6680 items: 6681 type: string 6682 weight: 6683 type: integer 6684 requiredDuringSchedulingIgnoredDuringExecution: 6685 type: object 6686 properties: 6687 nodeSelectorTerms: 6688 type: array 6689 items: 6690 type: object 6691 properties: 6692 matchExpressions: 6693 type: array 6694 items: 6695 type: object 6696 properties: 6697 key: 6698 type: string 6699 operator: 6700 type: string 6701 values: 6702 type: array 6703 items: 6704 type: string 6705 matchFields: 6706 type: array 6707 items: 6708 type: object 6709 properties: 6710 key: 6711 type: string 6712 operator: 6713 type: string 6714 values: 6715 type: array 6716 items: 6717 type: string 6718 podAffinity: 6719 type: object 6720 properties: 6721 preferredDuringSchedulingIgnoredDuringExecution: 6722 type: array 6723 items: 6724 type: object 6725 properties: 6726 podAffinityTerm: 6727 type: object 6728 properties: 6729 labelSelector: 6730 type: object 6731 properties: 6732 matchExpressions: 6733 type: array 6734 items: 6735 type: object 6736 properties: 6737 key: 6738 type: string 6739 operator: 6740 type: string 6741 values: 6742 type: array 6743 items: 6744 type: string 6745 matchLabels: 6746 x-kubernetes-preserve-unknown-fields: true 6747 type: object 6748 namespaceSelector: 6749 type: object 6750 properties: 6751 matchExpressions: 6752 type: array 6753 items: 6754 type: object 6755 properties: 6756 key: 6757 type: string 6758 operator: 6759 type: string 6760 values: 6761 type: array 6762 items: 6763 type: string 6764 matchLabels: 6765 x-kubernetes-preserve-unknown-fields: true 6766 type: object 6767 namespaces: 6768 type: array 6769 items: 6770 type: string 6771 topologyKey: 6772 type: string 6773 weight: 6774 type: integer 6775 requiredDuringSchedulingIgnoredDuringExecution: 6776 type: array 6777 items: 6778 type: object 6779 properties: 6780 labelSelector: 6781 type: object 6782 properties: 6783 matchExpressions: 6784 type: array 6785 items: 6786 type: object 6787 properties: 6788 key: 6789 type: string 6790 operator: 6791 type: string 6792 values: 6793 type: array 6794 items: 6795 type: string 6796 matchLabels: 6797 x-kubernetes-preserve-unknown-fields: true 6798 type: object 6799 namespaceSelector: 6800 type: object 6801 properties: 6802 matchExpressions: 6803 type: array 6804 items: 6805 type: object 6806 properties: 6807 key: 6808 type: string 6809 operator: 6810 type: string 6811 values: 6812 type: array 6813 items: 6814 type: string 6815 matchLabels: 6816 x-kubernetes-preserve-unknown-fields: true 6817 type: object 6818 namespaces: 6819 type: array 6820 items: 6821 type: string 6822 topologyKey: 6823 type: string 6824 podAntiAffinity: 6825 type: object 6826 properties: 6827 preferredDuringSchedulingIgnoredDuringExecution: 6828 type: array 6829 items: 6830 type: object 6831 properties: 6832 podAffinityTerm: 6833 type: object 6834 properties: 6835 labelSelector: 6836 type: object 6837 properties: 6838 matchExpressions: 6839 type: array 6840 items: 6841 type: object 6842 properties: 6843 key: 6844 type: string 6845 operator: 6846 type: string 6847 values: 6848 type: array 6849 items: 6850 type: string 6851 matchLabels: 6852 x-kubernetes-preserve-unknown-fields: true 6853 type: object 6854 namespaceSelector: 6855 type: object 6856 properties: 6857 matchExpressions: 6858 type: array 6859 items: 6860 type: object 6861 properties: 6862 key: 6863 type: string 6864 operator: 6865 type: string 6866 values: 6867 type: array 6868 items: 6869 type: string 6870 matchLabels: 6871 x-kubernetes-preserve-unknown-fields: true 6872 type: object 6873 namespaces: 6874 type: array 6875 items: 6876 type: string 6877 topologyKey: 6878 type: string 6879 weight: 6880 type: integer 6881 requiredDuringSchedulingIgnoredDuringExecution: 6882 type: array 6883 items: 6884 type: object 6885 properties: 6886 labelSelector: 6887 type: object 6888 properties: 6889 matchExpressions: 6890 type: array 6891 items: 6892 type: object 6893 properties: 6894 key: 6895 type: string 6896 operator: 6897 type: string 6898 values: 6899 type: array 6900 items: 6901 type: string 6902 matchLabels: 6903 x-kubernetes-preserve-unknown-fields: true 6904 type: object 6905 namespaceSelector: 6906 type: object 6907 properties: 6908 matchExpressions: 6909 type: array 6910 items: 6911 type: object 6912 properties: 6913 key: 6914 type: string 6915 operator: 6916 type: string 6917 values: 6918 type: array 6919 items: 6920 type: string 6921 matchLabels: 6922 x-kubernetes-preserve-unknown-fields: true 6923 type: object 6924 namespaces: 6925 type: array 6926 items: 6927 type: string 6928 topologyKey: 6929 type: string 6930 description: The pod's affinity rules. 6931 tolerations: 6932 type: array 6933 items: 6934 type: object 6935 properties: 6936 effect: 6937 type: string 6938 key: 6939 type: string 6940 operator: 6941 type: string 6942 tolerationSeconds: 6943 type: integer 6944 value: 6945 type: string 6946 description: The pod's tolerations. 6947 priorityClassName: 6948 type: string 6949 description: >- 6950 The name of the priority class used to assign 6951 priority to the pods. For more information about 6952 priority classes, see {K8sPriorityClass}. 6953 schedulerName: 6954 type: string 6955 description: >- 6956 The name of the scheduler used to dispatch this 6957 `Pod`. If not specified, the default scheduler 6958 will be used. 6959 hostAliases: 6960 type: array 6961 items: 6962 type: object 6963 properties: 6964 hostnames: 6965 type: array 6966 items: 6967 type: string 6968 ip: 6969 type: string 6970 description: >- 6971 The pod's HostAliases. HostAliases is an 6972 optional list of hosts and IPs that will be 6973 injected into the Pod's hosts file if specified. 6974 tmpDirSizeLimit: 6975 type: string 6976 pattern: '^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$' 6977 description: >- 6978 Defines the total amount (for example `1Gi`) of 6979 local storage required for temporary EmptyDir 6980 volume (`/tmp`). Default value is `1Mi`. 6981 enableServiceLinks: 6982 type: boolean 6983 description: >- 6984 Indicates whether information about services 6985 should be injected into Pod's environment 6986 variables. 6987 topologySpreadConstraints: 6988 type: array 6989 items: 6990 type: object 6991 properties: 6992 labelSelector: 6993 type: object 6994 properties: 6995 matchExpressions: 6996 type: array 6997 items: 6998 type: object 6999 properties: 7000 key: 7001 type: string 7002 operator: 7003 type: string 7004 values: 7005 type: array 7006 items: 7007 type: string 7008 matchLabels: 7009 x-kubernetes-preserve-unknown-fields: true 7010 type: object 7011 maxSkew: 7012 type: integer 7013 topologyKey: 7014 type: string 7015 whenUnsatisfiable: 7016 type: string 7017 description: The pod's topology spread constraints. 7018 description: Template for Cruise Control `Pods`. 7019 apiService: 7020 type: object 7021 properties: 7022 metadata: 7023 type: object 7024 properties: 7025 labels: 7026 x-kubernetes-preserve-unknown-fields: true 7027 type: object 7028 description: >- 7029 Labels added to the resource template. Can 7030 be applied to different resources such as 7031 `StatefulSets`, `Deployments`, `Pods`, and 7032 `Services`. 7033 annotations: 7034 x-kubernetes-preserve-unknown-fields: true 7035 type: object 7036 description: >- 7037 Annotations added to the resource template. 7038 Can be applied to different resources such 7039 as `StatefulSets`, `Deployments`, `Pods`, 7040 and `Services`. 7041 description: Metadata applied to the resource. 7042 ipFamilyPolicy: 7043 type: string 7044 enum: 7045 - SingleStack 7046 - PreferDualStack 7047 - RequireDualStack 7048 description: >- 7049 Specifies the IP Family Policy used by the 7050 service. Available options are `SingleStack`, 7051 `PreferDualStack` and `RequireDualStack`. 7052 `SingleStack` is for a single IP family. 7053 `PreferDualStack` is for two IP families on 7054 dual-stack configured clusters or a single IP 7055 family on single-stack clusters. 7056 `RequireDualStack` fails unless there are two IP 7057 families on dual-stack configured clusters. If 7058 unspecified, Kubernetes will choose the default 7059 value based on the service type. Available on 7060 Kubernetes 1.20 and newer. 7061 ipFamilies: 7062 type: array 7063 items: 7064 type: string 7065 enum: 7066 - IPv4 7067 - IPv6 7068 description: >- 7069 Specifies the IP Families used by the service. 7070 Available options are `IPv4` and `IPv6. If 7071 unspecified, Kubernetes will choose the default 7072 value based on the `ipFamilyPolicy` setting. 7073 Available on Kubernetes 1.20 and newer. 7074 description: Template for Cruise Control API `Service`. 7075 podDisruptionBudget: 7076 type: object 7077 properties: 7078 metadata: 7079 type: object 7080 properties: 7081 labels: 7082 x-kubernetes-preserve-unknown-fields: true 7083 type: object 7084 description: >- 7085 Labels added to the resource template. Can 7086 be applied to different resources such as 7087 `StatefulSets`, `Deployments`, `Pods`, and 7088 `Services`. 7089 annotations: 7090 x-kubernetes-preserve-unknown-fields: true 7091 type: object 7092 description: >- 7093 Annotations added to the resource template. 7094 Can be applied to different resources such 7095 as `StatefulSets`, `Deployments`, `Pods`, 7096 and `Services`. 7097 description: >- 7098 Metadata to apply to the 7099 `PodDisruptionBudgetTemplate` resource. 7100 maxUnavailable: 7101 type: integer 7102 minimum: 0 7103 description: >- 7104 Maximum number of unavailable pods to allow 7105 automatic Pod eviction. A Pod eviction is 7106 allowed when the `maxUnavailable` number of pods 7107 or fewer are unavailable after the eviction. 7108 Setting this value to 0 prevents all voluntary 7109 evictions, so the pods must be evicted manually. 7110 Defaults to 1. 7111 description: Template for Cruise Control `PodDisruptionBudget`. 7112 cruiseControlContainer: 7113 type: object 7114 properties: 7115 env: 7116 type: array 7117 items: 7118 type: object 7119 properties: 7120 name: 7121 type: string 7122 description: The environment variable key. 7123 value: 7124 type: string 7125 description: The environment variable value. 7126 description: >- 7127 Environment variables which should be applied to 7128 the container. 7129 securityContext: 7130 type: object 7131 properties: 7132 allowPrivilegeEscalation: 7133 type: boolean 7134 capabilities: 7135 type: object 7136 properties: 7137 add: 7138 type: array 7139 items: 7140 type: string 7141 drop: 7142 type: array 7143 items: 7144 type: string 7145 privileged: 7146 type: boolean 7147 procMount: 7148 type: string 7149 readOnlyRootFilesystem: 7150 type: boolean 7151 runAsGroup: 7152 type: integer 7153 runAsNonRoot: 7154 type: boolean 7155 runAsUser: 7156 type: integer 7157 seLinuxOptions: 7158 type: object 7159 properties: 7160 level: 7161 type: string 7162 role: 7163 type: string 7164 type: 7165 type: string 7166 user: 7167 type: string 7168 seccompProfile: 7169 type: object 7170 properties: 7171 localhostProfile: 7172 type: string 7173 type: 7174 type: string 7175 windowsOptions: 7176 type: object 7177 properties: 7178 gmsaCredentialSpec: 7179 type: string 7180 gmsaCredentialSpecName: 7181 type: string 7182 hostProcess: 7183 type: boolean 7184 runAsUserName: 7185 type: string 7186 description: Security context for the container. 7187 description: Template for the Cruise Control container. 7188 tlsSidecarContainer: 7189 type: object 7190 properties: 7191 env: 7192 type: array 7193 items: 7194 type: object 7195 properties: 7196 name: 7197 type: string 7198 description: The environment variable key. 7199 value: 7200 type: string 7201 description: The environment variable value. 7202 description: >- 7203 Environment variables which should be applied to 7204 the container. 7205 securityContext: 7206 type: object 7207 properties: 7208 allowPrivilegeEscalation: 7209 type: boolean 7210 capabilities: 7211 type: object 7212 properties: 7213 add: 7214 type: array 7215 items: 7216 type: string 7217 drop: 7218 type: array 7219 items: 7220 type: string 7221 privileged: 7222 type: boolean 7223 procMount: 7224 type: string 7225 readOnlyRootFilesystem: 7226 type: boolean 7227 runAsGroup: 7228 type: integer 7229 runAsNonRoot: 7230 type: boolean 7231 runAsUser: 7232 type: integer 7233 seLinuxOptions: 7234 type: object 7235 properties: 7236 level: 7237 type: string 7238 role: 7239 type: string 7240 type: 7241 type: string 7242 user: 7243 type: string 7244 seccompProfile: 7245 type: object 7246 properties: 7247 localhostProfile: 7248 type: string 7249 type: 7250 type: string 7251 windowsOptions: 7252 type: object 7253 properties: 7254 gmsaCredentialSpec: 7255 type: string 7256 gmsaCredentialSpecName: 7257 type: string 7258 hostProcess: 7259 type: boolean 7260 runAsUserName: 7261 type: string 7262 description: Security context for the container. 7263 description: >- 7264 Template for the Cruise Control TLS sidecar 7265 container. 7266 serviceAccount: 7267 type: object 7268 properties: 7269 metadata: 7270 type: object 7271 properties: 7272 labels: 7273 x-kubernetes-preserve-unknown-fields: true 7274 type: object 7275 description: >- 7276 Labels added to the resource template. Can 7277 be applied to different resources such as 7278 `StatefulSets`, `Deployments`, `Pods`, and 7279 `Services`. 7280 annotations: 7281 x-kubernetes-preserve-unknown-fields: true 7282 type: object 7283 description: >- 7284 Annotations added to the resource template. 7285 Can be applied to different resources such 7286 as `StatefulSets`, `Deployments`, `Pods`, 7287 and `Services`. 7288 description: Metadata applied to the resource. 7289 description: Template for the Cruise Control service account. 7290 description: >- 7291 Template to specify how Cruise Control resources, 7292 `Deployments` and `Pods`, are generated. 7293 brokerCapacity: 7294 type: object 7295 properties: 7296 disk: 7297 type: string 7298 pattern: '^[0-9]+([.][0-9]*)?([KMGTPE]i?|e[0-9]+)?$' 7299 description: >- 7300 Broker capacity for disk in bytes. Use a number 7301 value with either standard Kubernetes byte units (K, 7302 M, G, or T), their bibyte (power of two) equivalents 7303 (Ki, Mi, Gi, or Ti), or a byte value with or without 7304 E notation. For example, 100000M, 100000Mi, 7305 104857600000, or 1e+11. 7306 cpuUtilization: 7307 type: integer 7308 minimum: 0 7309 maximum: 100 7310 description: >- 7311 Broker capacity for CPU resource utilization as a 7312 percentage (0 - 100). 7313 inboundNetwork: 7314 type: string 7315 pattern: '^[0-9]+([KMG]i?)?B/s$' 7316 description: >- 7317 Broker capacity for inbound network throughput in 7318 bytes per second. Use an integer value with standard 7319 Kubernetes byte units (K, M, G) or their bibyte 7320 (power of two) equivalents (Ki, Mi, Gi) per second. 7321 For example, 10000KiB/s. 7322 outboundNetwork: 7323 type: string 7324 pattern: '^[0-9]+([KMG]i?)?B/s$' 7325 description: >- 7326 Broker capacity for outbound network throughput in 7327 bytes per second. Use an integer value with standard 7328 Kubernetes byte units (K, M, G) or their bibyte 7329 (power of two) equivalents (Ki, Mi, Gi) per second. 7330 For example, 10000KiB/s. 7331 description: The Cruise Control `brokerCapacity` configuration. 7332 config: 7333 x-kubernetes-preserve-unknown-fields: true 7334 type: object 7335 description: >- 7336 The Cruise Control configuration. For a full list of 7337 configuration options refer to 7338 https://github.com/linkedin/cruise-control/wiki/Configurations. 7339 Note that properties with the following prefixes cannot 7340 be set: bootstrap.servers, client.id, zookeeper., 7341 network., security., 7342 failed.brokers.zk.path,webserver.http., 7343 webserver.api.urlprefix, webserver.session.path, 7344 webserver.accesslog., two.step., 7345 request.reason.required,metric.reporter.sampler.bootstrap.servers, 7346 metric.reporter.topic, 7347 partition.metric.sample.store.topic, 7348 broker.metric.sample.store.topic,capacity.config.file, 7349 self.healing., ssl. (with the exception of: 7350 ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols, 7351 webserver.http.cors.enabled, webserver.http.cors.origin, 7352 webserver.http.cors.exposeheaders, 7353 webserver.security.enable, webserver.ssl.enable). 7354 metricsConfig: 7355 type: object 7356 properties: 7357 type: 7358 type: string 7359 enum: 7360 - jmxPrometheusExporter 7361 description: >- 7362 Metrics type. Only 'jmxPrometheusExporter' supported 7363 currently. 7364 valueFrom: 7365 type: object 7366 properties: 7367 configMapKeyRef: 7368 type: object 7369 properties: 7370 key: 7371 type: string 7372 name: 7373 type: string 7374 optional: 7375 type: boolean 7376 description: >- 7377 Reference to the key in the ConfigMap containing 7378 the configuration. 7379 description: >- 7380 ConfigMap entry where the Prometheus JMX Exporter 7381 configuration is stored. For details of the 7382 structure of this configuration, see the 7383 {JMXExporter}. 7384 required: 7385 - type 7386 - valueFrom 7387 description: Metrics configuration. 7388 description: >- 7389 Configuration for Cruise Control deployment. Deploys a 7390 Cruise Control instance when specified. 7391 jmxTrans: 7392 type: object 7393 properties: 7394 image: 7395 type: string 7396 description: The image to use for the JmxTrans. 7397 outputDefinitions: 7398 type: array 7399 items: 7400 type: object 7401 properties: 7402 outputType: 7403 type: string 7404 description: >- 7405 Template for setting the format of the data that 7406 will be pushed.For more information see 7407 https://github.com/jmxtrans/jmxtrans/wiki/OutputWriters[JmxTrans 7408 OutputWriters]. 7409 host: 7410 type: string 7411 description: >- 7412 The DNS/hostname of the remote host that the data 7413 is pushed to. 7414 port: 7415 type: integer 7416 description: >- 7417 The port of the remote host that the data is 7418 pushed to. 7419 flushDelayInSeconds: 7420 type: integer 7421 description: >- 7422 How many seconds the JmxTrans waits before pushing 7423 a new set of data out. 7424 typeNames: 7425 type: array 7426 items: 7427 type: string 7428 description: >- 7429 Template for filtering data to be included in 7430 response to a wildcard query. For more information 7431 see 7432 https://github.com/jmxtrans/jmxtrans/wiki/Queries[JmxTrans 7433 queries]. 7434 name: 7435 type: string 7436 description: >- 7437 Template for setting the name of the output 7438 definition. This is used to identify where to send 7439 the results of queries should be sent. 7440 required: 7441 - outputType 7442 - name 7443 description: >- 7444 Defines the output hosts that will be referenced later 7445 on. For more information on these properties see, 7446 xref:type-JmxTransOutputDefinitionTemplate-reference[`JmxTransOutputDefinitionTemplate` 7447 schema reference]. 7448 logLevel: 7449 type: string 7450 description: >- 7451 Sets the logging level of the JmxTrans deployment.For 7452 more information see, 7453 https://github.com/jmxtrans/jmxtrans-agent/wiki/Troubleshooting[JmxTrans 7454 Logging Level]. 7455 kafkaQueries: 7456 type: array 7457 items: 7458 type: object 7459 properties: 7460 targetMBean: 7461 type: string 7462 description: >- 7463 If using wildcards instead of a specific MBean 7464 then the data is gathered from multiple MBeans. 7465 Otherwise if specifying an MBean then data is 7466 gathered from that specified MBean. 7467 attributes: 7468 type: array 7469 items: 7470 type: string 7471 description: >- 7472 Determine which attributes of the targeted MBean 7473 should be included. 7474 outputs: 7475 type: array 7476 items: 7477 type: string 7478 description: >- 7479 List of the names of output definitions specified 7480 in the spec.kafka.jmxTrans.outputDefinitions that 7481 have defined where JMX metrics are pushed to, and 7482 in which data format. 7483 required: 7484 - targetMBean 7485 - attributes 7486 - outputs 7487 description: >- 7488 Queries to send to the Kafka brokers to define what data 7489 should be read from each broker. For more information on 7490 these properties see, 7491 xref:type-JmxTransQueryTemplate-reference[`JmxTransQueryTemplate` 7492 schema reference]. 7493 resources: 7494 type: object 7495 properties: 7496 limits: 7497 x-kubernetes-preserve-unknown-fields: true 7498 type: object 7499 requests: 7500 x-kubernetes-preserve-unknown-fields: true 7501 type: object 7502 description: CPU and memory resources to reserve. 7503 template: 7504 type: object 7505 properties: 7506 deployment: 7507 type: object 7508 properties: 7509 metadata: 7510 type: object 7511 properties: 7512 labels: 7513 x-kubernetes-preserve-unknown-fields: true 7514 type: object 7515 description: >- 7516 Labels added to the resource template. Can 7517 be applied to different resources such as 7518 `StatefulSets`, `Deployments`, `Pods`, and 7519 `Services`. 7520 annotations: 7521 x-kubernetes-preserve-unknown-fields: true 7522 type: object 7523 description: >- 7524 Annotations added to the resource template. 7525 Can be applied to different resources such 7526 as `StatefulSets`, `Deployments`, `Pods`, 7527 and `Services`. 7528 description: Metadata applied to the resource. 7529 description: Template for JmxTrans `Deployment`. 7530 pod: 7531 type: object 7532 properties: 7533 metadata: 7534 type: object 7535 properties: 7536 labels: 7537 x-kubernetes-preserve-unknown-fields: true 7538 type: object 7539 description: >- 7540 Labels added to the resource template. Can 7541 be applied to different resources such as 7542 `StatefulSets`, `Deployments`, `Pods`, and 7543 `Services`. 7544 annotations: 7545 x-kubernetes-preserve-unknown-fields: true 7546 type: object 7547 description: >- 7548 Annotations added to the resource template. 7549 Can be applied to different resources such 7550 as `StatefulSets`, `Deployments`, `Pods`, 7551 and `Services`. 7552 description: Metadata applied to the resource. 7553 imagePullSecrets: 7554 type: array 7555 items: 7556 type: object 7557 properties: 7558 name: 7559 type: string 7560 description: >- 7561 List of references to secrets in the same 7562 namespace to use for pulling any of the images 7563 used by this Pod. When the 7564 `STRIMZI_IMAGE_PULL_SECRETS` environment 7565 variable in Cluster Operator and the 7566 `imagePullSecrets` option are specified, only 7567 the `imagePullSecrets` variable is used and the 7568 `STRIMZI_IMAGE_PULL_SECRETS` variable is 7569 ignored. 7570 securityContext: 7571 type: object 7572 properties: 7573 fsGroup: 7574 type: integer 7575 fsGroupChangePolicy: 7576 type: string 7577 runAsGroup: 7578 type: integer 7579 runAsNonRoot: 7580 type: boolean 7581 runAsUser: 7582 type: integer 7583 seLinuxOptions: 7584 type: object 7585 properties: 7586 level: 7587 type: string 7588 role: 7589 type: string 7590 type: 7591 type: string 7592 user: 7593 type: string 7594 seccompProfile: 7595 type: object 7596 properties: 7597 localhostProfile: 7598 type: string 7599 type: 7600 type: string 7601 supplementalGroups: 7602 type: array 7603 items: 7604 type: integer 7605 sysctls: 7606 type: array 7607 items: 7608 type: object 7609 properties: 7610 name: 7611 type: string 7612 value: 7613 type: string 7614 windowsOptions: 7615 type: object 7616 properties: 7617 gmsaCredentialSpec: 7618 type: string 7619 gmsaCredentialSpecName: 7620 type: string 7621 hostProcess: 7622 type: boolean 7623 runAsUserName: 7624 type: string 7625 description: >- 7626 Configures pod-level security attributes and 7627 common container settings. 7628 terminationGracePeriodSeconds: 7629 type: integer 7630 minimum: 0 7631 description: >- 7632 The grace period is the duration in seconds 7633 after the processes running in the pod are sent 7634 a termination signal, and the time when the 7635 processes are forcibly halted with a kill 7636 signal. Set this value to longer than the 7637 expected cleanup time for your process. Value 7638 must be a non-negative integer. A zero value 7639 indicates delete immediately. You might need to 7640 increase the grace period for very large Kafka 7641 clusters, so that the Kafka brokers have enough 7642 time to transfer their work to another broker 7643 before they are terminated. Defaults to 30 7644 seconds. 7645 affinity: 7646 type: object 7647 properties: 7648 nodeAffinity: 7649 type: object 7650 properties: 7651 preferredDuringSchedulingIgnoredDuringExecution: 7652 type: array 7653 items: 7654 type: object 7655 properties: 7656 preference: 7657 type: object 7658 properties: 7659 matchExpressions: 7660 type: array 7661 items: 7662 type: object 7663 properties: 7664 key: 7665 type: string 7666 operator: 7667 type: string 7668 values: 7669 type: array 7670 items: 7671 type: string 7672 matchFields: 7673 type: array 7674 items: 7675 type: object 7676 properties: 7677 key: 7678 type: string 7679 operator: 7680 type: string 7681 values: 7682 type: array 7683 items: 7684 type: string 7685 weight: 7686 type: integer 7687 requiredDuringSchedulingIgnoredDuringExecution: 7688 type: object 7689 properties: 7690 nodeSelectorTerms: 7691 type: array 7692 items: 7693 type: object 7694 properties: 7695 matchExpressions: 7696 type: array 7697 items: 7698 type: object 7699 properties: 7700 key: 7701 type: string 7702 operator: 7703 type: string 7704 values: 7705 type: array 7706 items: 7707 type: string 7708 matchFields: 7709 type: array 7710 items: 7711 type: object 7712 properties: 7713 key: 7714 type: string 7715 operator: 7716 type: string 7717 values: 7718 type: array 7719 items: 7720 type: string 7721 podAffinity: 7722 type: object 7723 properties: 7724 preferredDuringSchedulingIgnoredDuringExecution: 7725 type: array 7726 items: 7727 type: object 7728 properties: 7729 podAffinityTerm: 7730 type: object 7731 properties: 7732 labelSelector: 7733 type: object 7734 properties: 7735 matchExpressions: 7736 type: array 7737 items: 7738 type: object 7739 properties: 7740 key: 7741 type: string 7742 operator: 7743 type: string 7744 values: 7745 type: array 7746 items: 7747 type: string 7748 matchLabels: 7749 x-kubernetes-preserve-unknown-fields: true 7750 type: object 7751 namespaceSelector: 7752 type: object 7753 properties: 7754 matchExpressions: 7755 type: array 7756 items: 7757 type: object 7758 properties: 7759 key: 7760 type: string 7761 operator: 7762 type: string 7763 values: 7764 type: array 7765 items: 7766 type: string 7767 matchLabels: 7768 x-kubernetes-preserve-unknown-fields: true 7769 type: object 7770 namespaces: 7771 type: array 7772 items: 7773 type: string 7774 topologyKey: 7775 type: string 7776 weight: 7777 type: integer 7778 requiredDuringSchedulingIgnoredDuringExecution: 7779 type: array 7780 items: 7781 type: object 7782 properties: 7783 labelSelector: 7784 type: object 7785 properties: 7786 matchExpressions: 7787 type: array 7788 items: 7789 type: object 7790 properties: 7791 key: 7792 type: string 7793 operator: 7794 type: string 7795 values: 7796 type: array 7797 items: 7798 type: string 7799 matchLabels: 7800 x-kubernetes-preserve-unknown-fields: true 7801 type: object 7802 namespaceSelector: 7803 type: object 7804 properties: 7805 matchExpressions: 7806 type: array 7807 items: 7808 type: object 7809 properties: 7810 key: 7811 type: string 7812 operator: 7813 type: string 7814 values: 7815 type: array 7816 items: 7817 type: string 7818 matchLabels: 7819 x-kubernetes-preserve-unknown-fields: true 7820 type: object 7821 namespaces: 7822 type: array 7823 items: 7824 type: string 7825 topologyKey: 7826 type: string 7827 podAntiAffinity: 7828 type: object 7829 properties: 7830 preferredDuringSchedulingIgnoredDuringExecution: 7831 type: array 7832 items: 7833 type: object 7834 properties: 7835 podAffinityTerm: 7836 type: object 7837 properties: 7838 labelSelector: 7839 type: object 7840 properties: 7841 matchExpressions: 7842 type: array 7843 items: 7844 type: object 7845 properties: 7846 key: 7847 type: string 7848 operator: 7849 type: string 7850 values: 7851 type: array 7852 items: 7853 type: string 7854 matchLabels: 7855 x-kubernetes-preserve-unknown-fields: true 7856 type: object 7857 namespaceSelector: 7858 type: object 7859 properties: 7860 matchExpressions: 7861 type: array 7862 items: 7863 type: object 7864 properties: 7865 key: 7866 type: string 7867 operator: 7868 type: string 7869 values: 7870 type: array 7871 items: 7872 type: string 7873 matchLabels: 7874 x-kubernetes-preserve-unknown-fields: true 7875 type: object 7876 namespaces: 7877 type: array 7878 items: 7879 type: string 7880 topologyKey: 7881 type: string 7882 weight: 7883 type: integer 7884 requiredDuringSchedulingIgnoredDuringExecution: 7885 type: array 7886 items: 7887 type: object 7888 properties: 7889 labelSelector: 7890 type: object 7891 properties: 7892 matchExpressions: 7893 type: array 7894 items: 7895 type: object 7896 properties: 7897 key: 7898 type: string 7899 operator: 7900 type: string 7901 values: 7902 type: array 7903 items: 7904 type: string 7905 matchLabels: 7906 x-kubernetes-preserve-unknown-fields: true 7907 type: object 7908 namespaceSelector: 7909 type: object 7910 properties: 7911 matchExpressions: 7912 type: array 7913 items: 7914 type: object 7915 properties: 7916 key: 7917 type: string 7918 operator: 7919 type: string 7920 values: 7921 type: array 7922 items: 7923 type: string 7924 matchLabels: 7925 x-kubernetes-preserve-unknown-fields: true 7926 type: object 7927 namespaces: 7928 type: array 7929 items: 7930 type: string 7931 topologyKey: 7932 type: string 7933 description: The pod's affinity rules. 7934 tolerations: 7935 type: array 7936 items: 7937 type: object 7938 properties: 7939 effect: 7940 type: string 7941 key: 7942 type: string 7943 operator: 7944 type: string 7945 tolerationSeconds: 7946 type: integer 7947 value: 7948 type: string 7949 description: The pod's tolerations. 7950 priorityClassName: 7951 type: string 7952 description: >- 7953 The name of the priority class used to assign 7954 priority to the pods. For more information about 7955 priority classes, see {K8sPriorityClass}. 7956 schedulerName: 7957 type: string 7958 description: >- 7959 The name of the scheduler used to dispatch this 7960 `Pod`. If not specified, the default scheduler 7961 will be used. 7962 hostAliases: 7963 type: array 7964 items: 7965 type: object 7966 properties: 7967 hostnames: 7968 type: array 7969 items: 7970 type: string 7971 ip: 7972 type: string 7973 description: >- 7974 The pod's HostAliases. HostAliases is an 7975 optional list of hosts and IPs that will be 7976 injected into the Pod's hosts file if specified. 7977 tmpDirSizeLimit: 7978 type: string 7979 pattern: '^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$' 7980 description: >- 7981 Defines the total amount (for example `1Gi`) of 7982 local storage required for temporary EmptyDir 7983 volume (`/tmp`). Default value is `1Mi`. 7984 enableServiceLinks: 7985 type: boolean 7986 description: >- 7987 Indicates whether information about services 7988 should be injected into Pod's environment 7989 variables. 7990 topologySpreadConstraints: 7991 type: array 7992 items: 7993 type: object 7994 properties: 7995 labelSelector: 7996 type: object 7997 properties: 7998 matchExpressions: 7999 type: array 8000 items: 8001 type: object 8002 properties: 8003 key: 8004 type: string 8005 operator: 8006 type: string 8007 values: 8008 type: array 8009 items: 8010 type: string 8011 matchLabels: 8012 x-kubernetes-preserve-unknown-fields: true 8013 type: object 8014 maxSkew: 8015 type: integer 8016 topologyKey: 8017 type: string 8018 whenUnsatisfiable: 8019 type: string 8020 description: The pod's topology spread constraints. 8021 description: Template for JmxTrans `Pods`. 8022 container: 8023 type: object 8024 properties: 8025 env: 8026 type: array 8027 items: 8028 type: object 8029 properties: 8030 name: 8031 type: string 8032 description: The environment variable key. 8033 value: 8034 type: string 8035 description: The environment variable value. 8036 description: >- 8037 Environment variables which should be applied to 8038 the container. 8039 securityContext: 8040 type: object 8041 properties: 8042 allowPrivilegeEscalation: 8043 type: boolean 8044 capabilities: 8045 type: object 8046 properties: 8047 add: 8048 type: array 8049 items: 8050 type: string 8051 drop: 8052 type: array 8053 items: 8054 type: string 8055 privileged: 8056 type: boolean 8057 procMount: 8058 type: string 8059 readOnlyRootFilesystem: 8060 type: boolean 8061 runAsGroup: 8062 type: integer 8063 runAsNonRoot: 8064 type: boolean 8065 runAsUser: 8066 type: integer 8067 seLinuxOptions: 8068 type: object 8069 properties: 8070 level: 8071 type: string 8072 role: 8073 type: string 8074 type: 8075 type: string 8076 user: 8077 type: string 8078 seccompProfile: 8079 type: object 8080 properties: 8081 localhostProfile: 8082 type: string 8083 type: 8084 type: string 8085 windowsOptions: 8086 type: object 8087 properties: 8088 gmsaCredentialSpec: 8089 type: string 8090 gmsaCredentialSpecName: 8091 type: string 8092 hostProcess: 8093 type: boolean 8094 runAsUserName: 8095 type: string 8096 description: Security context for the container. 8097 description: Template for JmxTrans container. 8098 serviceAccount: 8099 type: object 8100 properties: 8101 metadata: 8102 type: object 8103 properties: 8104 labels: 8105 x-kubernetes-preserve-unknown-fields: true 8106 type: object 8107 description: >- 8108 Labels added to the resource template. Can 8109 be applied to different resources such as 8110 `StatefulSets`, `Deployments`, `Pods`, and 8111 `Services`. 8112 annotations: 8113 x-kubernetes-preserve-unknown-fields: true 8114 type: object 8115 description: >- 8116 Annotations added to the resource template. 8117 Can be applied to different resources such 8118 as `StatefulSets`, `Deployments`, `Pods`, 8119 and `Services`. 8120 description: Metadata applied to the resource. 8121 description: Template for the JMX Trans service account. 8122 description: Template for JmxTrans resources. 8123 required: 8124 - outputDefinitions 8125 - kafkaQueries 8126 description: >- 8127 Configuration for JmxTrans. When the property is present a 8128 JmxTrans deployment is created for gathering JMX metrics 8129 from each Kafka broker. For more information see 8130 https://github.com/jmxtrans/jmxtrans[JmxTrans GitHub]. 8131 kafkaExporter: 8132 type: object 8133 properties: 8134 image: 8135 type: string 8136 description: The docker image for the pods. 8137 groupRegex: 8138 type: string 8139 description: >- 8140 Regular expression to specify which consumer groups to 8141 collect. Default value is `.*`. 8142 topicRegex: 8143 type: string 8144 description: >- 8145 Regular expression to specify which topics to collect. 8146 Default value is `.*`. 8147 resources: 8148 type: object 8149 properties: 8150 limits: 8151 x-kubernetes-preserve-unknown-fields: true 8152 type: object 8153 requests: 8154 x-kubernetes-preserve-unknown-fields: true 8155 type: object 8156 description: CPU and memory resources to reserve. 8157 logging: 8158 type: string 8159 description: >- 8160 Only log messages with the given severity or above. 8161 Valid levels: [`info`, `debug`, `trace`]. Default log 8162 level is `info`. 8163 enableSaramaLogging: 8164 type: boolean 8165 description: >- 8166 Enable Sarama logging, a Go client library used by the 8167 Kafka Exporter. 8168 template: 8169 type: object 8170 properties: 8171 deployment: 8172 type: object 8173 properties: 8174 metadata: 8175 type: object 8176 properties: 8177 labels: 8178 x-kubernetes-preserve-unknown-fields: true 8179 type: object 8180 description: >- 8181 Labels added to the resource template. Can 8182 be applied to different resources such as 8183 `StatefulSets`, `Deployments`, `Pods`, and 8184 `Services`. 8185 annotations: 8186 x-kubernetes-preserve-unknown-fields: true 8187 type: object 8188 description: >- 8189 Annotations added to the resource template. 8190 Can be applied to different resources such 8191 as `StatefulSets`, `Deployments`, `Pods`, 8192 and `Services`. 8193 description: Metadata applied to the resource. 8194 description: Template for Kafka Exporter `Deployment`. 8195 pod: 8196 type: object 8197 properties: 8198 metadata: 8199 type: object 8200 properties: 8201 labels: 8202 x-kubernetes-preserve-unknown-fields: true 8203 type: object 8204 description: >- 8205 Labels added to the resource template. Can 8206 be applied to different resources such as 8207 `StatefulSets`, `Deployments`, `Pods`, and 8208 `Services`. 8209 annotations: 8210 x-kubernetes-preserve-unknown-fields: true 8211 type: object 8212 description: >- 8213 Annotations added to the resource template. 8214 Can be applied to different resources such 8215 as `StatefulSets`, `Deployments`, `Pods`, 8216 and `Services`. 8217 description: Metadata applied to the resource. 8218 imagePullSecrets: 8219 type: array 8220 items: 8221 type: object 8222 properties: 8223 name: 8224 type: string 8225 description: >- 8226 List of references to secrets in the same 8227 namespace to use for pulling any of the images 8228 used by this Pod. When the 8229 `STRIMZI_IMAGE_PULL_SECRETS` environment 8230 variable in Cluster Operator and the 8231 `imagePullSecrets` option are specified, only 8232 the `imagePullSecrets` variable is used and the 8233 `STRIMZI_IMAGE_PULL_SECRETS` variable is 8234 ignored. 8235 securityContext: 8236 type: object 8237 properties: 8238 fsGroup: 8239 type: integer 8240 fsGroupChangePolicy: 8241 type: string 8242 runAsGroup: 8243 type: integer 8244 runAsNonRoot: 8245 type: boolean 8246 runAsUser: 8247 type: integer 8248 seLinuxOptions: 8249 type: object 8250 properties: 8251 level: 8252 type: string 8253 role: 8254 type: string 8255 type: 8256 type: string 8257 user: 8258 type: string 8259 seccompProfile: 8260 type: object 8261 properties: 8262 localhostProfile: 8263 type: string 8264 type: 8265 type: string 8266 supplementalGroups: 8267 type: array 8268 items: 8269 type: integer 8270 sysctls: 8271 type: array 8272 items: 8273 type: object 8274 properties: 8275 name: 8276 type: string 8277 value: 8278 type: string 8279 windowsOptions: 8280 type: object 8281 properties: 8282 gmsaCredentialSpec: 8283 type: string 8284 gmsaCredentialSpecName: 8285 type: string 8286 hostProcess: 8287 type: boolean 8288 runAsUserName: 8289 type: string 8290 description: >- 8291 Configures pod-level security attributes and 8292 common container settings. 8293 terminationGracePeriodSeconds: 8294 type: integer 8295 minimum: 0 8296 description: >- 8297 The grace period is the duration in seconds 8298 after the processes running in the pod are sent 8299 a termination signal, and the time when the 8300 processes are forcibly halted with a kill 8301 signal. Set this value to longer than the 8302 expected cleanup time for your process. Value 8303 must be a non-negative integer. A zero value 8304 indicates delete immediately. You might need to 8305 increase the grace period for very large Kafka 8306 clusters, so that the Kafka brokers have enough 8307 time to transfer their work to another broker 8308 before they are terminated. Defaults to 30 8309 seconds. 8310 affinity: 8311 type: object 8312 properties: 8313 nodeAffinity: 8314 type: object 8315 properties: 8316 preferredDuringSchedulingIgnoredDuringExecution: 8317 type: array 8318 items: 8319 type: object 8320 properties: 8321 preference: 8322 type: object 8323 properties: 8324 matchExpressions: 8325 type: array 8326 items: 8327 type: object 8328 properties: 8329 key: 8330 type: string 8331 operator: 8332 type: string 8333 values: 8334 type: array 8335 items: 8336 type: string 8337 matchFields: 8338 type: array 8339 items: 8340 type: object 8341 properties: 8342 key: 8343 type: string 8344 operator: 8345 type: string 8346 values: 8347 type: array 8348 items: 8349 type: string 8350 weight: 8351 type: integer 8352 requiredDuringSchedulingIgnoredDuringExecution: 8353 type: object 8354 properties: 8355 nodeSelectorTerms: 8356 type: array 8357 items: 8358 type: object 8359 properties: 8360 matchExpressions: 8361 type: array 8362 items: 8363 type: object 8364 properties: 8365 key: 8366 type: string 8367 operator: 8368 type: string 8369 values: 8370 type: array 8371 items: 8372 type: string 8373 matchFields: 8374 type: array 8375 items: 8376 type: object 8377 properties: 8378 key: 8379 type: string 8380 operator: 8381 type: string 8382 values: 8383 type: array 8384 items: 8385 type: string 8386 podAffinity: 8387 type: object 8388 properties: 8389 preferredDuringSchedulingIgnoredDuringExecution: 8390 type: array 8391 items: 8392 type: object 8393 properties: 8394 podAffinityTerm: 8395 type: object 8396 properties: 8397 labelSelector: 8398 type: object 8399 properties: 8400 matchExpressions: 8401 type: array 8402 items: 8403 type: object 8404 properties: 8405 key: 8406 type: string 8407 operator: 8408 type: string 8409 values: 8410 type: array 8411 items: 8412 type: string 8413 matchLabels: 8414 x-kubernetes-preserve-unknown-fields: true 8415 type: object 8416 namespaceSelector: 8417 type: object 8418 properties: 8419 matchExpressions: 8420 type: array 8421 items: 8422 type: object 8423 properties: 8424 key: 8425 type: string 8426 operator: 8427 type: string 8428 values: 8429 type: array 8430 items: 8431 type: string 8432 matchLabels: 8433 x-kubernetes-preserve-unknown-fields: true 8434 type: object 8435 namespaces: 8436 type: array 8437 items: 8438 type: string 8439 topologyKey: 8440 type: string 8441 weight: 8442 type: integer 8443 requiredDuringSchedulingIgnoredDuringExecution: 8444 type: array 8445 items: 8446 type: object 8447 properties: 8448 labelSelector: 8449 type: object 8450 properties: 8451 matchExpressions: 8452 type: array 8453 items: 8454 type: object 8455 properties: 8456 key: 8457 type: string 8458 operator: 8459 type: string 8460 values: 8461 type: array 8462 items: 8463 type: string 8464 matchLabels: 8465 x-kubernetes-preserve-unknown-fields: true 8466 type: object 8467 namespaceSelector: 8468 type: object 8469 properties: 8470 matchExpressions: 8471 type: array 8472 items: 8473 type: object 8474 properties: 8475 key: 8476 type: string 8477 operator: 8478 type: string 8479 values: 8480 type: array 8481 items: 8482 type: string 8483 matchLabels: 8484 x-kubernetes-preserve-unknown-fields: true 8485 type: object 8486 namespaces: 8487 type: array 8488 items: 8489 type: string 8490 topologyKey: 8491 type: string 8492 podAntiAffinity: 8493 type: object 8494 properties: 8495 preferredDuringSchedulingIgnoredDuringExecution: 8496 type: array 8497 items: 8498 type: object 8499 properties: 8500 podAffinityTerm: 8501 type: object 8502 properties: 8503 labelSelector: 8504 type: object 8505 properties: 8506 matchExpressions: 8507 type: array 8508 items: 8509 type: object 8510 properties: 8511 key: 8512 type: string 8513 operator: 8514 type: string 8515 values: 8516 type: array 8517 items: 8518 type: string 8519 matchLabels: 8520 x-kubernetes-preserve-unknown-fields: true 8521 type: object 8522 namespaceSelector: 8523 type: object 8524 properties: 8525 matchExpressions: 8526 type: array 8527 items: 8528 type: object 8529 properties: 8530 key: 8531 type: string 8532 operator: 8533 type: string 8534 values: 8535 type: array 8536 items: 8537 type: string 8538 matchLabels: 8539 x-kubernetes-preserve-unknown-fields: true 8540 type: object 8541 namespaces: 8542 type: array 8543 items: 8544 type: string 8545 topologyKey: 8546 type: string 8547 weight: 8548 type: integer 8549 requiredDuringSchedulingIgnoredDuringExecution: 8550 type: array 8551 items: 8552 type: object 8553 properties: 8554 labelSelector: 8555 type: object 8556 properties: 8557 matchExpressions: 8558 type: array 8559 items: 8560 type: object 8561 properties: 8562 key: 8563 type: string 8564 operator: 8565 type: string 8566 values: 8567 type: array 8568 items: 8569 type: string 8570 matchLabels: 8571 x-kubernetes-preserve-unknown-fields: true 8572 type: object 8573 namespaceSelector: 8574 type: object 8575 properties: 8576 matchExpressions: 8577 type: array 8578 items: 8579 type: object 8580 properties: 8581 key: 8582 type: string 8583 operator: 8584 type: string 8585 values: 8586 type: array 8587 items: 8588 type: string 8589 matchLabels: 8590 x-kubernetes-preserve-unknown-fields: true 8591 type: object 8592 namespaces: 8593 type: array 8594 items: 8595 type: string 8596 topologyKey: 8597 type: string 8598 description: The pod's affinity rules. 8599 tolerations: 8600 type: array 8601 items: 8602 type: object 8603 properties: 8604 effect: 8605 type: string 8606 key: 8607 type: string 8608 operator: 8609 type: string 8610 tolerationSeconds: 8611 type: integer 8612 value: 8613 type: string 8614 description: The pod's tolerations. 8615 priorityClassName: 8616 type: string 8617 description: >- 8618 The name of the priority class used to assign 8619 priority to the pods. For more information about 8620 priority classes, see {K8sPriorityClass}. 8621 schedulerName: 8622 type: string 8623 description: >- 8624 The name of the scheduler used to dispatch this 8625 `Pod`. If not specified, the default scheduler 8626 will be used. 8627 hostAliases: 8628 type: array 8629 items: 8630 type: object 8631 properties: 8632 hostnames: 8633 type: array 8634 items: 8635 type: string 8636 ip: 8637 type: string 8638 description: >- 8639 The pod's HostAliases. HostAliases is an 8640 optional list of hosts and IPs that will be 8641 injected into the Pod's hosts file if specified. 8642 tmpDirSizeLimit: 8643 type: string 8644 pattern: '^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$' 8645 description: >- 8646 Defines the total amount (for example `1Gi`) of 8647 local storage required for temporary EmptyDir 8648 volume (`/tmp`). Default value is `1Mi`. 8649 enableServiceLinks: 8650 type: boolean 8651 description: >- 8652 Indicates whether information about services 8653 should be injected into Pod's environment 8654 variables. 8655 topologySpreadConstraints: 8656 type: array 8657 items: 8658 type: object 8659 properties: 8660 labelSelector: 8661 type: object 8662 properties: 8663 matchExpressions: 8664 type: array 8665 items: 8666 type: object 8667 properties: 8668 key: 8669 type: string 8670 operator: 8671 type: string 8672 values: 8673 type: array 8674 items: 8675 type: string 8676 matchLabels: 8677 x-kubernetes-preserve-unknown-fields: true 8678 type: object 8679 maxSkew: 8680 type: integer 8681 topologyKey: 8682 type: string 8683 whenUnsatisfiable: 8684 type: string 8685 description: The pod's topology spread constraints. 8686 description: Template for Kafka Exporter `Pods`. 8687 service: 8688 type: object 8689 properties: 8690 metadata: 8691 type: object 8692 properties: 8693 labels: 8694 x-kubernetes-preserve-unknown-fields: true 8695 type: object 8696 description: >- 8697 Labels added to the resource template. Can 8698 be applied to different resources such as 8699 `StatefulSets`, `Deployments`, `Pods`, and 8700 `Services`. 8701 annotations: 8702 x-kubernetes-preserve-unknown-fields: true 8703 type: object 8704 description: >- 8705 Annotations added to the resource template. 8706 Can be applied to different resources such 8707 as `StatefulSets`, `Deployments`, `Pods`, 8708 and `Services`. 8709 description: Metadata applied to the resource. 8710 description: Template for Kafka Exporter `Service`. 8711 container: 8712 type: object 8713 properties: 8714 env: 8715 type: array 8716 items: 8717 type: object 8718 properties: 8719 name: 8720 type: string 8721 description: The environment variable key. 8722 value: 8723 type: string 8724 description: The environment variable value. 8725 description: >- 8726 Environment variables which should be applied to 8727 the container. 8728 securityContext: 8729 type: object 8730 properties: 8731 allowPrivilegeEscalation: 8732 type: boolean 8733 capabilities: 8734 type: object 8735 properties: 8736 add: 8737 type: array 8738 items: 8739 type: string 8740 drop: 8741 type: array 8742 items: 8743 type: string 8744 privileged: 8745 type: boolean 8746 procMount: 8747 type: string 8748 readOnlyRootFilesystem: 8749 type: boolean 8750 runAsGroup: 8751 type: integer 8752 runAsNonRoot: 8753 type: boolean 8754 runAsUser: 8755 type: integer 8756 seLinuxOptions: 8757 type: object 8758 properties: 8759 level: 8760 type: string 8761 role: 8762 type: string 8763 type: 8764 type: string 8765 user: 8766 type: string 8767 seccompProfile: 8768 type: object 8769 properties: 8770 localhostProfile: 8771 type: string 8772 type: 8773 type: string 8774 windowsOptions: 8775 type: object 8776 properties: 8777 gmsaCredentialSpec: 8778 type: string 8779 gmsaCredentialSpecName: 8780 type: string 8781 hostProcess: 8782 type: boolean 8783 runAsUserName: 8784 type: string 8785 description: Security context for the container. 8786 description: Template for the Kafka Exporter container. 8787 serviceAccount: 8788 type: object 8789 properties: 8790 metadata: 8791 type: object 8792 properties: 8793 labels: 8794 x-kubernetes-preserve-unknown-fields: true 8795 type: object 8796 description: >- 8797 Labels added to the resource template. Can 8798 be applied to different resources such as 8799 `StatefulSets`, `Deployments`, `Pods`, and 8800 `Services`. 8801 annotations: 8802 x-kubernetes-preserve-unknown-fields: true 8803 type: object 8804 description: >- 8805 Annotations added to the resource template. 8806 Can be applied to different resources such 8807 as `StatefulSets`, `Deployments`, `Pods`, 8808 and `Services`. 8809 description: Metadata applied to the resource. 8810 description: Template for the Kafka Exporter service account. 8811 description: Customization of deployment templates and pods. 8812 livenessProbe: 8813 type: object 8814 properties: 8815 failureThreshold: 8816 type: integer 8817 minimum: 1 8818 description: >- 8819 Minimum consecutive failures for the probe to be 8820 considered failed after having succeeded. Defaults 8821 to 3. Minimum value is 1. 8822 initialDelaySeconds: 8823 type: integer 8824 minimum: 0 8825 description: >- 8826 The initial delay before first the health is first 8827 checked. Default to 15 seconds. Minimum value is 0. 8828 periodSeconds: 8829 type: integer 8830 minimum: 1 8831 description: >- 8832 How often (in seconds) to perform the probe. Default 8833 to 10 seconds. Minimum value is 1. 8834 successThreshold: 8835 type: integer 8836 minimum: 1 8837 description: >- 8838 Minimum consecutive successes for the probe to be 8839 considered successful after having failed. Defaults 8840 to 1. Must be 1 for liveness. Minimum value is 1. 8841 timeoutSeconds: 8842 type: integer 8843 minimum: 1 8844 description: >- 8845 The timeout for each attempted health check. Default 8846 to 5 seconds. Minimum value is 1. 8847 description: Pod liveness check. 8848 readinessProbe: 8849 type: object 8850 properties: 8851 failureThreshold: 8852 type: integer 8853 minimum: 1 8854 description: >- 8855 Minimum consecutive failures for the probe to be 8856 considered failed after having succeeded. Defaults 8857 to 3. Minimum value is 1. 8858 initialDelaySeconds: 8859 type: integer 8860 minimum: 0 8861 description: >- 8862 The initial delay before first the health is first 8863 checked. Default to 15 seconds. Minimum value is 0. 8864 periodSeconds: 8865 type: integer 8866 minimum: 1 8867 description: >- 8868 How often (in seconds) to perform the probe. Default 8869 to 10 seconds. Minimum value is 1. 8870 successThreshold: 8871 type: integer 8872 minimum: 1 8873 description: >- 8874 Minimum consecutive successes for the probe to be 8875 considered successful after having failed. Defaults 8876 to 1. Must be 1 for liveness. Minimum value is 1. 8877 timeoutSeconds: 8878 type: integer 8879 minimum: 1 8880 description: >- 8881 The timeout for each attempted health check. Default 8882 to 5 seconds. Minimum value is 1. 8883 description: Pod readiness check. 8884 description: >- 8885 Configuration of the Kafka Exporter. Kafka Exporter can 8886 provide additional metrics, for example lag of consumer 8887 group at topic/partition. 8888 maintenanceTimeWindows: 8889 type: array 8890 items: 8891 type: string 8892 description: >- 8893 A list of time windows for maintenance tasks (that is, 8894 certificates renewal). Each time window is defined by a cron 8895 expression. 8896 required: 8897 - kafka 8898 - zookeeper 8899 description: >- 8900 The specification of the Kafka and ZooKeeper clusters, and Topic 8901 Operator. 8902 status: 8903 type: object 8904 properties: 8905 conditions: 8906 type: array 8907 items: 8908 type: object 8909 properties: 8910 type: 8911 type: string 8912 description: >- 8913 The unique identifier of a condition, used to 8914 distinguish between other conditions in the resource. 8915 status: 8916 type: string 8917 description: >- 8918 The status of the condition, either True, False or 8919 Unknown. 8920 lastTransitionTime: 8921 type: string 8922 description: >- 8923 Last time the condition of a type changed from one 8924 status to another. The required format is 8925 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone. 8926 reason: 8927 type: string 8928 description: >- 8929 The reason for the condition's last transition (a 8930 single word in CamelCase). 8931 message: 8932 type: string 8933 description: >- 8934 Human-readable message indicating details about the 8935 condition's last transition. 8936 description: List of status conditions. 8937 observedGeneration: 8938 type: integer 8939 description: >- 8940 The generation of the CRD that was last reconciled by the 8941 operator. 8942 listeners: 8943 type: array 8944 items: 8945 type: object 8946 properties: 8947 type: 8948 type: string 8949 description: >- 8950 *The `type` property has been deprecated, and should 8951 now be configured using `name`.* The name of the 8952 listener. 8953 name: 8954 type: string 8955 description: The name of the listener. 8956 addresses: 8957 type: array 8958 items: 8959 type: object 8960 properties: 8961 host: 8962 type: string 8963 description: >- 8964 The DNS name or IP address of the Kafka 8965 bootstrap service. 8966 port: 8967 type: integer 8968 description: The port of the Kafka bootstrap service. 8969 description: A list of the addresses for this listener. 8970 bootstrapServers: 8971 type: string 8972 description: >- 8973 A comma-separated list of `host:port` pairs for 8974 connecting to the Kafka cluster using this listener. 8975 certificates: 8976 type: array 8977 items: 8978 type: string 8979 description: >- 8980 A list of TLS certificates which can be used to verify 8981 the identity of the server when connecting to the 8982 given listener. Set only for `tls` and `external` 8983 listeners. 8984 description: Addresses of the internal and external listeners. 8985 clusterId: 8986 type: string 8987 description: Kafka cluster Id. 8988 description: >- 8989 The status of the Kafka and ZooKeeper clusters, and Topic 8990 Operator. 8991 8992 --- 8993 apiVersion: rbac.authorization.k8s.io/v1 8994 kind: ClusterRole 8995 metadata: 8996 name: strimzi-cluster-operator-namespaced 8997 labels: 8998 app: strimzi 8999 rules: 9000 - apiGroups: 9001 - rbac.authorization.k8s.io 9002 resources: 9003 - rolebindings 9004 verbs: 9005 - get 9006 - list 9007 - watch 9008 - create 9009 - delete 9010 - patch 9011 - update 9012 - apiGroups: 9013 - rbac.authorization.k8s.io 9014 resources: 9015 - roles 9016 verbs: 9017 - get 9018 - list 9019 - watch 9020 - create 9021 - delete 9022 - patch 9023 - update 9024 - apiGroups: 9025 - '' 9026 resources: 9027 - pods 9028 - serviceaccounts 9029 - configmaps 9030 - services 9031 - endpoints 9032 - secrets 9033 - persistentvolumeclaims 9034 verbs: 9035 - get 9036 - list 9037 - watch 9038 - create 9039 - delete 9040 - patch 9041 - update 9042 - apiGroups: 9043 - kafka.strimzi.io 9044 resources: 9045 - kafkas 9046 - kafkas/status 9047 - kafkaconnects 9048 - kafkaconnects/status 9049 - kafkaconnectors 9050 - kafkaconnectors/status 9051 - kafkamirrormakers 9052 - kafkamirrormakers/status 9053 - kafkabridges 9054 - kafkabridges/status 9055 - kafkamirrormaker2s 9056 - kafkamirrormaker2s/status 9057 - kafkarebalances 9058 - kafkarebalances/status 9059 verbs: 9060 - get 9061 - list 9062 - watch 9063 - create 9064 - delete 9065 - patch 9066 - update 9067 - apiGroups: 9068 - core.strimzi.io 9069 resources: 9070 - strimzipodsets 9071 - strimzipodsets/status 9072 verbs: 9073 - get 9074 - list 9075 - watch 9076 - create 9077 - delete 9078 - patch 9079 - update 9080 - apiGroups: 9081 - extensions 9082 resources: 9083 - deployments 9084 - deployments/scale 9085 - replicasets 9086 - replicationcontrollers 9087 - networkpolicies 9088 - ingresses 9089 verbs: 9090 - get 9091 - list 9092 - watch 9093 - create 9094 - delete 9095 - patch 9096 - update 9097 - apiGroups: 9098 - apps 9099 resources: 9100 - deployments 9101 - deployments/scale 9102 - deployments/status 9103 - statefulsets 9104 - replicasets 9105 verbs: 9106 - get 9107 - list 9108 - watch 9109 - create 9110 - delete 9111 - patch 9112 - update 9113 - apiGroups: 9114 - '' 9115 resources: 9116 - events 9117 verbs: 9118 - create 9119 - apiGroups: 9120 - build.openshift.io 9121 resources: 9122 - buildconfigs 9123 - buildconfigs/instantiate 9124 - builds 9125 verbs: 9126 - get 9127 - list 9128 - watch 9129 - create 9130 - delete 9131 - patch 9132 - update 9133 - apiGroups: 9134 - networking.k8s.io 9135 resources: 9136 - networkpolicies 9137 - ingresses 9138 verbs: 9139 - get 9140 - list 9141 - watch 9142 - create 9143 - delete 9144 - patch 9145 - update 9146 - apiGroups: 9147 - route.openshift.io 9148 resources: 9149 - routes 9150 - routes/custom-host 9151 verbs: 9152 - get 9153 - list 9154 - watch 9155 - create 9156 - delete 9157 - patch 9158 - update 9159 - apiGroups: 9160 - policy 9161 resources: 9162 - poddisruptionbudgets 9163 verbs: 9164 - get 9165 - list 9166 - watch 9167 - create 9168 - delete 9169 - patch 9170 - update 9171 9172 --- 9173 apiVersion: apiextensions.k8s.io/v1 9174 kind: CustomResourceDefinition 9175 metadata: 9176 name: kafkatopics.kafka.strimzi.io 9177 labels: 9178 app: strimzi 9179 strimzi.io/crd-install: 'true' 9180 spec: 9181 group: kafka.strimzi.io 9182 names: 9183 kind: KafkaTopic 9184 listKind: KafkaTopicList 9185 singular: kafkatopic 9186 plural: kafkatopics 9187 shortNames: 9188 - kt 9189 categories: 9190 - strimzi 9191 scope: Namespaced 9192 conversion: 9193 strategy: None 9194 versions: 9195 - name: v1beta2 9196 served: true 9197 storage: true 9198 subresources: 9199 status: {} 9200 additionalPrinterColumns: 9201 - name: Cluster 9202 description: The name of the Kafka cluster this topic belongs to 9203 jsonPath: .metadata.labels.strimzi\.io/cluster 9204 type: string 9205 - name: Partitions 9206 description: The desired number of partitions in the topic 9207 jsonPath: .spec.partitions 9208 type: integer 9209 - name: Replication factor 9210 description: The desired number of replicas of each partition 9211 jsonPath: .spec.replicas 9212 type: integer 9213 - name: Ready 9214 description: The state of the custom resource 9215 jsonPath: '.status.conditions[?(@.type=="Ready")].status' 9216 type: string 9217 schema: 9218 openAPIV3Schema: 9219 type: object 9220 properties: 9221 spec: 9222 type: object 9223 properties: 9224 partitions: 9225 type: integer 9226 minimum: 1 9227 description: >- 9228 The number of partitions the topic should have. This cannot 9229 be decreased after topic creation. It can be increased after 9230 topic creation, but it is important to understand the 9231 consequences that has, especially for topics with semantic 9232 partitioning. When absent this will default to the broker 9233 configuration for `num.partitions`. 9234 replicas: 9235 type: integer 9236 minimum: 1 9237 maximum: 32767 9238 description: >- 9239 The number of replicas the topic should have. When absent 9240 this will default to the broker configuration for 9241 `default.replication.factor`. 9242 config: 9243 x-kubernetes-preserve-unknown-fields: true 9244 type: object 9245 description: The topic configuration. 9246 topicName: 9247 type: string 9248 description: >- 9249 The name of the topic. When absent this will default to the 9250 metadata.name of the topic. It is recommended to not set 9251 this unless the topic name is not a valid Kubernetes 9252 resource name. 9253 description: The specification of the topic. 9254 status: 9255 type: object 9256 properties: 9257 conditions: 9258 type: array 9259 items: 9260 type: object 9261 properties: 9262 type: 9263 type: string 9264 description: >- 9265 The unique identifier of a condition, used to 9266 distinguish between other conditions in the resource. 9267 status: 9268 type: string 9269 description: >- 9270 The status of the condition, either True, False or 9271 Unknown. 9272 lastTransitionTime: 9273 type: string 9274 description: >- 9275 Last time the condition of a type changed from one 9276 status to another. The required format is 9277 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone. 9278 reason: 9279 type: string 9280 description: >- 9281 The reason for the condition's last transition (a 9282 single word in CamelCase). 9283 message: 9284 type: string 9285 description: >- 9286 Human-readable message indicating details about the 9287 condition's last transition. 9288 description: List of status conditions. 9289 observedGeneration: 9290 type: integer 9291 description: >- 9292 The generation of the CRD that was last reconciled by the 9293 operator. 9294 topicName: 9295 type: string 9296 description: Topic name. 9297 description: The status of the topic. 9298 - name: v1beta1 9299 served: true 9300 storage: false 9301 subresources: 9302 status: {} 9303 additionalPrinterColumns: 9304 - name: Cluster 9305 description: The name of the Kafka cluster this topic belongs to 9306 jsonPath: .metadata.labels.strimzi\.io/cluster 9307 type: string 9308 - name: Partitions 9309 description: The desired number of partitions in the topic 9310 jsonPath: .spec.partitions 9311 type: integer 9312 - name: Replication factor 9313 description: The desired number of replicas of each partition 9314 jsonPath: .spec.replicas 9315 type: integer 9316 - name: Ready 9317 description: The state of the custom resource 9318 jsonPath: '.status.conditions[?(@.type=="Ready")].status' 9319 type: string 9320 schema: 9321 openAPIV3Schema: 9322 type: object 9323 properties: 9324 spec: 9325 type: object 9326 properties: 9327 partitions: 9328 type: integer 9329 minimum: 1 9330 description: >- 9331 The number of partitions the topic should have. This cannot 9332 be decreased after topic creation. It can be increased after 9333 topic creation, but it is important to understand the 9334 consequences that has, especially for topics with semantic 9335 partitioning. When absent this will default to the broker 9336 configuration for `num.partitions`. 9337 replicas: 9338 type: integer 9339 minimum: 1 9340 maximum: 32767 9341 description: >- 9342 The number of replicas the topic should have. When absent 9343 this will default to the broker configuration for 9344 `default.replication.factor`. 9345 config: 9346 x-kubernetes-preserve-unknown-fields: true 9347 type: object 9348 description: The topic configuration. 9349 topicName: 9350 type: string 9351 description: >- 9352 The name of the topic. When absent this will default to the 9353 metadata.name of the topic. It is recommended to not set 9354 this unless the topic name is not a valid Kubernetes 9355 resource name. 9356 description: The specification of the topic. 9357 status: 9358 type: object 9359 properties: 9360 conditions: 9361 type: array 9362 items: 9363 type: object 9364 properties: 9365 type: 9366 type: string 9367 description: >- 9368 The unique identifier of a condition, used to 9369 distinguish between other conditions in the resource. 9370 status: 9371 type: string 9372 description: >- 9373 The status of the condition, either True, False or 9374 Unknown. 9375 lastTransitionTime: 9376 type: string 9377 description: >- 9378 Last time the condition of a type changed from one 9379 status to another. The required format is 9380 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone. 9381 reason: 9382 type: string 9383 description: >- 9384 The reason for the condition's last transition (a 9385 single word in CamelCase). 9386 message: 9387 type: string 9388 description: >- 9389 Human-readable message indicating details about the 9390 condition's last transition. 9391 description: List of status conditions. 9392 observedGeneration: 9393 type: integer 9394 description: >- 9395 The generation of the CRD that was last reconciled by the 9396 operator. 9397 topicName: 9398 type: string 9399 description: Topic name. 9400 description: The status of the topic. 9401 - name: v1alpha1 9402 served: true 9403 storage: false 9404 subresources: 9405 status: {} 9406 additionalPrinterColumns: 9407 - name: Cluster 9408 description: The name of the Kafka cluster this topic belongs to 9409 jsonPath: .metadata.labels.strimzi\.io/cluster 9410 type: string 9411 - name: Partitions 9412 description: The desired number of partitions in the topic 9413 jsonPath: .spec.partitions 9414 type: integer 9415 - name: Replication factor 9416 description: The desired number of replicas of each partition 9417 jsonPath: .spec.replicas 9418 type: integer 9419 - name: Ready 9420 description: The state of the custom resource 9421 jsonPath: '.status.conditions[?(@.type=="Ready")].status' 9422 type: string 9423 schema: 9424 openAPIV3Schema: 9425 type: object 9426 properties: 9427 spec: 9428 type: object 9429 properties: 9430 partitions: 9431 type: integer 9432 minimum: 1 9433 description: >- 9434 The number of partitions the topic should have. This cannot 9435 be decreased after topic creation. It can be increased after 9436 topic creation, but it is important to understand the 9437 consequences that has, especially for topics with semantic 9438 partitioning. When absent this will default to the broker 9439 configuration for `num.partitions`. 9440 replicas: 9441 type: integer 9442 minimum: 1 9443 maximum: 32767 9444 description: >- 9445 The number of replicas the topic should have. When absent 9446 this will default to the broker configuration for 9447 `default.replication.factor`. 9448 config: 9449 x-kubernetes-preserve-unknown-fields: true 9450 type: object 9451 description: The topic configuration. 9452 topicName: 9453 type: string 9454 description: >- 9455 The name of the topic. When absent this will default to the 9456 metadata.name of the topic. It is recommended to not set 9457 this unless the topic name is not a valid Kubernetes 9458 resource name. 9459 description: The specification of the topic. 9460 status: 9461 type: object 9462 properties: 9463 conditions: 9464 type: array 9465 items: 9466 type: object 9467 properties: 9468 type: 9469 type: string 9470 description: >- 9471 The unique identifier of a condition, used to 9472 distinguish between other conditions in the resource. 9473 status: 9474 type: string 9475 description: >- 9476 The status of the condition, either True, False or 9477 Unknown. 9478 lastTransitionTime: 9479 type: string 9480 description: >- 9481 Last time the condition of a type changed from one 9482 status to another. The required format is 9483 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone. 9484 reason: 9485 type: string 9486 description: >- 9487 The reason for the condition's last transition (a 9488 single word in CamelCase). 9489 message: 9490 type: string 9491 description: >- 9492 Human-readable message indicating details about the 9493 condition's last transition. 9494 description: List of status conditions. 9495 observedGeneration: 9496 type: integer 9497 description: >- 9498 The generation of the CRD that was last reconciled by the 9499 operator. 9500 topicName: 9501 type: string 9502 description: Topic name. 9503 description: The status of the topic. 9504 9505 --- 9506 apiVersion: apiextensions.k8s.io/v1 9507 kind: CustomResourceDefinition 9508 metadata: 9509 name: kafkaconnects.kafka.strimzi.io 9510 labels: 9511 app: strimzi 9512 strimzi.io/crd-install: 'true' 9513 spec: 9514 group: kafka.strimzi.io 9515 names: 9516 kind: KafkaConnect 9517 listKind: KafkaConnectList 9518 singular: kafkaconnect 9519 plural: kafkaconnects 9520 shortNames: 9521 - kc 9522 categories: 9523 - strimzi 9524 scope: Namespaced 9525 conversion: 9526 strategy: None 9527 versions: 9528 - name: v1beta2 9529 served: true 9530 storage: true 9531 subresources: 9532 status: {} 9533 scale: 9534 specReplicasPath: .spec.replicas 9535 statusReplicasPath: .status.replicas 9536 labelSelectorPath: .status.labelSelector 9537 additionalPrinterColumns: 9538 - name: Desired replicas 9539 description: The desired number of Kafka Connect replicas 9540 jsonPath: .spec.replicas 9541 type: integer 9542 - name: Ready 9543 description: The state of the custom resource 9544 jsonPath: '.status.conditions[?(@.type=="Ready")].status' 9545 type: string 9546 schema: 9547 openAPIV3Schema: 9548 type: object 9549 properties: 9550 spec: 9551 type: object 9552 properties: 9553 version: 9554 type: string 9555 description: >- 9556 The Kafka Connect version. Defaults to 9557 {DefaultKafkaVersion}. Consult the user documentation to 9558 understand the process required to upgrade or downgrade the 9559 version. 9560 replicas: 9561 type: integer 9562 description: The number of pods in the Kafka Connect group. 9563 image: 9564 type: string 9565 description: The docker image for the pods. 9566 bootstrapServers: 9567 type: string 9568 description: >- 9569 Bootstrap servers to connect to. This should be given as a 9570 comma separated list of _<hostname>_:_<port>_ pairs. 9571 tls: 9572 type: object 9573 properties: 9574 trustedCertificates: 9575 type: array 9576 items: 9577 type: object 9578 properties: 9579 certificate: 9580 type: string 9581 description: The name of the file certificate in the Secret. 9582 secretName: 9583 type: string 9584 description: The name of the Secret containing the certificate. 9585 required: 9586 - certificate 9587 - secretName 9588 description: Trusted certificates for TLS connection. 9589 description: TLS configuration. 9590 authentication: 9591 type: object 9592 properties: 9593 accessToken: 9594 type: object 9595 properties: 9596 key: 9597 type: string 9598 description: >- 9599 The key under which the secret value is stored in 9600 the Kubernetes Secret. 9601 secretName: 9602 type: string 9603 description: >- 9604 The name of the Kubernetes Secret containing the 9605 secret value. 9606 required: 9607 - key 9608 - secretName 9609 description: >- 9610 Link to Kubernetes Secret containing the access token 9611 which was obtained from the authorization server. 9612 accessTokenIsJwt: 9613 type: boolean 9614 description: >- 9615 Configure whether access token should be treated as JWT. 9616 This should be set to `false` if the authorization 9617 server returns opaque tokens. Defaults to `true`. 9618 audience: 9619 type: string 9620 description: >- 9621 OAuth audience to use when authenticating against the 9622 authorization server. Some authorization servers require 9623 the audience to be explicitly set. The possible values 9624 depend on how the authorization server is configured. By 9625 default, `audience` is not specified when performing the 9626 token endpoint request. 9627 certificateAndKey: 9628 type: object 9629 properties: 9630 certificate: 9631 type: string 9632 description: The name of the file certificate in the Secret. 9633 key: 9634 type: string 9635 description: The name of the private key in the Secret. 9636 secretName: 9637 type: string 9638 description: The name of the Secret containing the certificate. 9639 required: 9640 - certificate 9641 - key 9642 - secretName 9643 description: >- 9644 Reference to the `Secret` which holds the certificate 9645 and private key pair. 9646 clientId: 9647 type: string 9648 description: >- 9649 OAuth Client ID which the Kafka client can use to 9650 authenticate against the OAuth server and use the token 9651 endpoint URI. 9652 clientSecret: 9653 type: object 9654 properties: 9655 key: 9656 type: string 9657 description: >- 9658 The key under which the secret value is stored in 9659 the Kubernetes Secret. 9660 secretName: 9661 type: string 9662 description: >- 9663 The name of the Kubernetes Secret containing the 9664 secret value. 9665 required: 9666 - key 9667 - secretName 9668 description: >- 9669 Link to Kubernetes Secret containing the OAuth client 9670 secret which the Kafka client can use to authenticate 9671 against the OAuth server and use the token endpoint URI. 9672 connectTimeoutSeconds: 9673 type: integer 9674 description: >- 9675 The connect timeout in seconds when connecting to 9676 authorization server. If not set, the effective connect 9677 timeout is 60 seconds. 9678 disableTlsHostnameVerification: 9679 type: boolean 9680 description: >- 9681 Enable or disable TLS hostname verification. Default 9682 value is `false`. 9683 maxTokenExpirySeconds: 9684 type: integer 9685 description: >- 9686 Set or limit time-to-live of the access tokens to the 9687 specified number of seconds. This should be set if the 9688 authorization server returns opaque tokens. 9689 passwordSecret: 9690 type: object 9691 properties: 9692 password: 9693 type: string 9694 description: >- 9695 The name of the key in the Secret under which the 9696 password is stored. 9697 secretName: 9698 type: string 9699 description: The name of the Secret containing the password. 9700 required: 9701 - password 9702 - secretName 9703 description: Reference to the `Secret` which holds the password. 9704 readTimeoutSeconds: 9705 type: integer 9706 description: >- 9707 The read timeout in seconds when connecting to 9708 authorization server. If not set, the effective read 9709 timeout is 60 seconds. 9710 refreshToken: 9711 type: object 9712 properties: 9713 key: 9714 type: string 9715 description: >- 9716 The key under which the secret value is stored in 9717 the Kubernetes Secret. 9718 secretName: 9719 type: string 9720 description: >- 9721 The name of the Kubernetes Secret containing the 9722 secret value. 9723 required: 9724 - key 9725 - secretName 9726 description: >- 9727 Link to Kubernetes Secret containing the refresh token 9728 which can be used to obtain access token from the 9729 authorization server. 9730 scope: 9731 type: string 9732 description: >- 9733 OAuth scope to use when authenticating against the 9734 authorization server. Some authorization servers require 9735 this to be set. The possible values depend on how 9736 authorization server is configured. By default `scope` 9737 is not specified when doing the token endpoint request. 9738 tlsTrustedCertificates: 9739 type: array 9740 items: 9741 type: object 9742 properties: 9743 certificate: 9744 type: string 9745 description: The name of the file certificate in the Secret. 9746 secretName: 9747 type: string 9748 description: The name of the Secret containing the certificate. 9749 required: 9750 - certificate 9751 - secretName 9752 description: >- 9753 Trusted certificates for TLS connection to the OAuth 9754 server. 9755 tokenEndpointUri: 9756 type: string 9757 description: Authorization server token endpoint URI. 9758 type: 9759 type: string 9760 enum: 9761 - tls 9762 - scram-sha-256 9763 - scram-sha-512 9764 - plain 9765 - oauth 9766 description: >- 9767 Authentication type. Currently the only supported types 9768 are `tls`, `scram-sha-256`, `scram-sha-512`, and 9769 `plain`. `scram-sha-256` and `scram-sha-512` types use 9770 SASL SCRAM-SHA-256 and SASL SCRAM-SHA-512 9771 Authentication, respectively. `plain` type uses SASL 9772 PLAIN Authentication. `oauth` type uses SASL OAUTHBEARER 9773 Authentication. The `tls` type uses TLS Client 9774 Authentication. The `tls` type is supported only over 9775 TLS connections. 9776 username: 9777 type: string 9778 description: Username used for the authentication. 9779 required: 9780 - type 9781 description: Authentication configuration for Kafka Connect. 9782 config: 9783 x-kubernetes-preserve-unknown-fields: true 9784 type: object 9785 description: >- 9786 The Kafka Connect configuration. Properties with the 9787 following prefixes cannot be set: ssl., sasl., security., 9788 listeners, plugin.path, rest., bootstrap.servers, 9789 consumer.interceptor.classes, producer.interceptor.classes 9790 (with the exception of: 9791 ssl.endpoint.identification.algorithm, ssl.cipher.suites, 9792 ssl.protocol, ssl.enabled.protocols). 9793 resources: 9794 type: object 9795 properties: 9796 limits: 9797 x-kubernetes-preserve-unknown-fields: true 9798 type: object 9799 requests: 9800 x-kubernetes-preserve-unknown-fields: true 9801 type: object 9802 description: >- 9803 The maximum limits for CPU and memory resources and the 9804 requested initial resources. 9805 livenessProbe: 9806 type: object 9807 properties: 9808 failureThreshold: 9809 type: integer 9810 minimum: 1 9811 description: >- 9812 Minimum consecutive failures for the probe to be 9813 considered failed after having succeeded. Defaults to 3. 9814 Minimum value is 1. 9815 initialDelaySeconds: 9816 type: integer 9817 minimum: 0 9818 description: >- 9819 The initial delay before first the health is first 9820 checked. Default to 15 seconds. Minimum value is 0. 9821 periodSeconds: 9822 type: integer 9823 minimum: 1 9824 description: >- 9825 How often (in seconds) to perform the probe. Default to 9826 10 seconds. Minimum value is 1. 9827 successThreshold: 9828 type: integer 9829 minimum: 1 9830 description: >- 9831 Minimum consecutive successes for the probe to be 9832 considered successful after having failed. Defaults to 9833 1. Must be 1 for liveness. Minimum value is 1. 9834 timeoutSeconds: 9835 type: integer 9836 minimum: 1 9837 description: >- 9838 The timeout for each attempted health check. Default to 9839 5 seconds. Minimum value is 1. 9840 description: Pod liveness checking. 9841 readinessProbe: 9842 type: object 9843 properties: 9844 failureThreshold: 9845 type: integer 9846 minimum: 1 9847 description: >- 9848 Minimum consecutive failures for the probe to be 9849 considered failed after having succeeded. Defaults to 3. 9850 Minimum value is 1. 9851 initialDelaySeconds: 9852 type: integer 9853 minimum: 0 9854 description: >- 9855 The initial delay before first the health is first 9856 checked. Default to 15 seconds. Minimum value is 0. 9857 periodSeconds: 9858 type: integer 9859 minimum: 1 9860 description: >- 9861 How often (in seconds) to perform the probe. Default to 9862 10 seconds. Minimum value is 1. 9863 successThreshold: 9864 type: integer 9865 minimum: 1 9866 description: >- 9867 Minimum consecutive successes for the probe to be 9868 considered successful after having failed. Defaults to 9869 1. Must be 1 for liveness. Minimum value is 1. 9870 timeoutSeconds: 9871 type: integer 9872 minimum: 1 9873 description: >- 9874 The timeout for each attempted health check. Default to 9875 5 seconds. Minimum value is 1. 9876 description: Pod readiness checking. 9877 jvmOptions: 9878 type: object 9879 properties: 9880 '-XX': 9881 x-kubernetes-preserve-unknown-fields: true 9882 type: object 9883 description: A map of -XX options to the JVM. 9884 '-Xms': 9885 type: string 9886 pattern: '^[0-9]+[mMgG]?$' 9887 description: '-Xms option to to the JVM.' 9888 '-Xmx': 9889 type: string 9890 pattern: '^[0-9]+[mMgG]?$' 9891 description: '-Xmx option to to the JVM.' 9892 gcLoggingEnabled: 9893 type: boolean 9894 description: >- 9895 Specifies whether the Garbage Collection logging is 9896 enabled. The default is false. 9897 javaSystemProperties: 9898 type: array 9899 items: 9900 type: object 9901 properties: 9902 name: 9903 type: string 9904 description: The system property name. 9905 value: 9906 type: string 9907 description: The system property value. 9908 description: >- 9909 A map of additional system properties which will be 9910 passed using the `-D` option to the JVM. 9911 description: JVM Options for pods. 9912 jmxOptions: 9913 type: object 9914 properties: 9915 authentication: 9916 type: object 9917 properties: 9918 type: 9919 type: string 9920 enum: 9921 - password 9922 description: >- 9923 Authentication type. Currently the only supported 9924 types are `password`.`password` type creates a 9925 username and protected port with no TLS. 9926 required: 9927 - type 9928 description: >- 9929 Authentication configuration for connecting to the JMX 9930 port. 9931 description: JMX Options. 9932 logging: 9933 type: object 9934 properties: 9935 loggers: 9936 x-kubernetes-preserve-unknown-fields: true 9937 type: object 9938 description: A Map from logger name to logger level. 9939 type: 9940 type: string 9941 enum: 9942 - inline 9943 - external 9944 description: 'Logging type, must be either ''inline'' or ''external''.' 9945 valueFrom: 9946 type: object 9947 properties: 9948 configMapKeyRef: 9949 type: object 9950 properties: 9951 key: 9952 type: string 9953 name: 9954 type: string 9955 optional: 9956 type: boolean 9957 description: >- 9958 Reference to the key in the ConfigMap containing the 9959 configuration. 9960 description: >- 9961 `ConfigMap` entry where the logging configuration is 9962 stored. 9963 required: 9964 - type 9965 description: Logging configuration for Kafka Connect. 9966 tracing: 9967 type: object 9968 properties: 9969 type: 9970 type: string 9971 enum: 9972 - jaeger 9973 description: >- 9974 Type of the tracing used. Currently the only supported 9975 type is `jaeger` for Jaeger tracing. 9976 required: 9977 - type 9978 description: The configuration of tracing in Kafka Connect. 9979 template: 9980 type: object 9981 properties: 9982 deployment: 9983 type: object 9984 properties: 9985 metadata: 9986 type: object 9987 properties: 9988 labels: 9989 x-kubernetes-preserve-unknown-fields: true 9990 type: object 9991 description: >- 9992 Labels added to the resource template. Can be 9993 applied to different resources such as 9994 `StatefulSets`, `Deployments`, `Pods`, and 9995 `Services`. 9996 annotations: 9997 x-kubernetes-preserve-unknown-fields: true 9998 type: object 9999 description: >- 10000 Annotations added to the resource template. Can 10001 be applied to different resources such as 10002 `StatefulSets`, `Deployments`, `Pods`, and 10003 `Services`. 10004 description: Metadata applied to the resource. 10005 deploymentStrategy: 10006 type: string 10007 enum: 10008 - RollingUpdate 10009 - Recreate 10010 description: >- 10011 DeploymentStrategy which will be used for this 10012 Deployment. Valid values are `RollingUpdate` and 10013 `Recreate`. Defaults to `RollingUpdate`. 10014 description: Template for Kafka Connect `Deployment`. 10015 pod: 10016 type: object 10017 properties: 10018 metadata: 10019 type: object 10020 properties: 10021 labels: 10022 x-kubernetes-preserve-unknown-fields: true 10023 type: object 10024 description: >- 10025 Labels added to the resource template. Can be 10026 applied to different resources such as 10027 `StatefulSets`, `Deployments`, `Pods`, and 10028 `Services`. 10029 annotations: 10030 x-kubernetes-preserve-unknown-fields: true 10031 type: object 10032 description: >- 10033 Annotations added to the resource template. Can 10034 be applied to different resources such as 10035 `StatefulSets`, `Deployments`, `Pods`, and 10036 `Services`. 10037 description: Metadata applied to the resource. 10038 imagePullSecrets: 10039 type: array 10040 items: 10041 type: object 10042 properties: 10043 name: 10044 type: string 10045 description: >- 10046 List of references to secrets in the same namespace 10047 to use for pulling any of the images used by this 10048 Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` 10049 environment variable in Cluster Operator and the 10050 `imagePullSecrets` option are specified, only the 10051 `imagePullSecrets` variable is used and the 10052 `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored. 10053 securityContext: 10054 type: object 10055 properties: 10056 fsGroup: 10057 type: integer 10058 fsGroupChangePolicy: 10059 type: string 10060 runAsGroup: 10061 type: integer 10062 runAsNonRoot: 10063 type: boolean 10064 runAsUser: 10065 type: integer 10066 seLinuxOptions: 10067 type: object 10068 properties: 10069 level: 10070 type: string 10071 role: 10072 type: string 10073 type: 10074 type: string 10075 user: 10076 type: string 10077 seccompProfile: 10078 type: object 10079 properties: 10080 localhostProfile: 10081 type: string 10082 type: 10083 type: string 10084 supplementalGroups: 10085 type: array 10086 items: 10087 type: integer 10088 sysctls: 10089 type: array 10090 items: 10091 type: object 10092 properties: 10093 name: 10094 type: string 10095 value: 10096 type: string 10097 windowsOptions: 10098 type: object 10099 properties: 10100 gmsaCredentialSpec: 10101 type: string 10102 gmsaCredentialSpecName: 10103 type: string 10104 hostProcess: 10105 type: boolean 10106 runAsUserName: 10107 type: string 10108 description: >- 10109 Configures pod-level security attributes and common 10110 container settings. 10111 terminationGracePeriodSeconds: 10112 type: integer 10113 minimum: 0 10114 description: >- 10115 The grace period is the duration in seconds after 10116 the processes running in the pod are sent a 10117 termination signal, and the time when the processes 10118 are forcibly halted with a kill signal. Set this 10119 value to longer than the expected cleanup time for 10120 your process. Value must be a non-negative integer. 10121 A zero value indicates delete immediately. You might 10122 need to increase the grace period for very large 10123 Kafka clusters, so that the Kafka brokers have 10124 enough time to transfer their work to another broker 10125 before they are terminated. Defaults to 30 seconds. 10126 affinity: 10127 type: object 10128 properties: 10129 nodeAffinity: 10130 type: object 10131 properties: 10132 preferredDuringSchedulingIgnoredDuringExecution: 10133 type: array 10134 items: 10135 type: object 10136 properties: 10137 preference: 10138 type: object 10139 properties: 10140 matchExpressions: 10141 type: array 10142 items: 10143 type: object 10144 properties: 10145 key: 10146 type: string 10147 operator: 10148 type: string 10149 values: 10150 type: array 10151 items: 10152 type: string 10153 matchFields: 10154 type: array 10155 items: 10156 type: object 10157 properties: 10158 key: 10159 type: string 10160 operator: 10161 type: string 10162 values: 10163 type: array 10164 items: 10165 type: string 10166 weight: 10167 type: integer 10168 requiredDuringSchedulingIgnoredDuringExecution: 10169 type: object 10170 properties: 10171 nodeSelectorTerms: 10172 type: array 10173 items: 10174 type: object 10175 properties: 10176 matchExpressions: 10177 type: array 10178 items: 10179 type: object 10180 properties: 10181 key: 10182 type: string 10183 operator: 10184 type: string 10185 values: 10186 type: array 10187 items: 10188 type: string 10189 matchFields: 10190 type: array 10191 items: 10192 type: object 10193 properties: 10194 key: 10195 type: string 10196 operator: 10197 type: string 10198 values: 10199 type: array 10200 items: 10201 type: string 10202 podAffinity: 10203 type: object 10204 properties: 10205 preferredDuringSchedulingIgnoredDuringExecution: 10206 type: array 10207 items: 10208 type: object 10209 properties: 10210 podAffinityTerm: 10211 type: object 10212 properties: 10213 labelSelector: 10214 type: object 10215 properties: 10216 matchExpressions: 10217 type: array 10218 items: 10219 type: object 10220 properties: 10221 key: 10222 type: string 10223 operator: 10224 type: string 10225 values: 10226 type: array 10227 items: 10228 type: string 10229 matchLabels: 10230 x-kubernetes-preserve-unknown-fields: true 10231 type: object 10232 namespaceSelector: 10233 type: object 10234 properties: 10235 matchExpressions: 10236 type: array 10237 items: 10238 type: object 10239 properties: 10240 key: 10241 type: string 10242 operator: 10243 type: string 10244 values: 10245 type: array 10246 items: 10247 type: string 10248 matchLabels: 10249 x-kubernetes-preserve-unknown-fields: true 10250 type: object 10251 namespaces: 10252 type: array 10253 items: 10254 type: string 10255 topologyKey: 10256 type: string 10257 weight: 10258 type: integer 10259 requiredDuringSchedulingIgnoredDuringExecution: 10260 type: array 10261 items: 10262 type: object 10263 properties: 10264 labelSelector: 10265 type: object 10266 properties: 10267 matchExpressions: 10268 type: array 10269 items: 10270 type: object 10271 properties: 10272 key: 10273 type: string 10274 operator: 10275 type: string 10276 values: 10277 type: array 10278 items: 10279 type: string 10280 matchLabels: 10281 x-kubernetes-preserve-unknown-fields: true 10282 type: object 10283 namespaceSelector: 10284 type: object 10285 properties: 10286 matchExpressions: 10287 type: array 10288 items: 10289 type: object 10290 properties: 10291 key: 10292 type: string 10293 operator: 10294 type: string 10295 values: 10296 type: array 10297 items: 10298 type: string 10299 matchLabels: 10300 x-kubernetes-preserve-unknown-fields: true 10301 type: object 10302 namespaces: 10303 type: array 10304 items: 10305 type: string 10306 topologyKey: 10307 type: string 10308 podAntiAffinity: 10309 type: object 10310 properties: 10311 preferredDuringSchedulingIgnoredDuringExecution: 10312 type: array 10313 items: 10314 type: object 10315 properties: 10316 podAffinityTerm: 10317 type: object 10318 properties: 10319 labelSelector: 10320 type: object 10321 properties: 10322 matchExpressions: 10323 type: array 10324 items: 10325 type: object 10326 properties: 10327 key: 10328 type: string 10329 operator: 10330 type: string 10331 values: 10332 type: array 10333 items: 10334 type: string 10335 matchLabels: 10336 x-kubernetes-preserve-unknown-fields: true 10337 type: object 10338 namespaceSelector: 10339 type: object 10340 properties: 10341 matchExpressions: 10342 type: array 10343 items: 10344 type: object 10345 properties: 10346 key: 10347 type: string 10348 operator: 10349 type: string 10350 values: 10351 type: array 10352 items: 10353 type: string 10354 matchLabels: 10355 x-kubernetes-preserve-unknown-fields: true 10356 type: object 10357 namespaces: 10358 type: array 10359 items: 10360 type: string 10361 topologyKey: 10362 type: string 10363 weight: 10364 type: integer 10365 requiredDuringSchedulingIgnoredDuringExecution: 10366 type: array 10367 items: 10368 type: object 10369 properties: 10370 labelSelector: 10371 type: object 10372 properties: 10373 matchExpressions: 10374 type: array 10375 items: 10376 type: object 10377 properties: 10378 key: 10379 type: string 10380 operator: 10381 type: string 10382 values: 10383 type: array 10384 items: 10385 type: string 10386 matchLabels: 10387 x-kubernetes-preserve-unknown-fields: true 10388 type: object 10389 namespaceSelector: 10390 type: object 10391 properties: 10392 matchExpressions: 10393 type: array 10394 items: 10395 type: object 10396 properties: 10397 key: 10398 type: string 10399 operator: 10400 type: string 10401 values: 10402 type: array 10403 items: 10404 type: string 10405 matchLabels: 10406 x-kubernetes-preserve-unknown-fields: true 10407 type: object 10408 namespaces: 10409 type: array 10410 items: 10411 type: string 10412 topologyKey: 10413 type: string 10414 description: The pod's affinity rules. 10415 tolerations: 10416 type: array 10417 items: 10418 type: object 10419 properties: 10420 effect: 10421 type: string 10422 key: 10423 type: string 10424 operator: 10425 type: string 10426 tolerationSeconds: 10427 type: integer 10428 value: 10429 type: string 10430 description: The pod's tolerations. 10431 priorityClassName: 10432 type: string 10433 description: >- 10434 The name of the priority class used to assign 10435 priority to the pods. For more information about 10436 priority classes, see {K8sPriorityClass}. 10437 schedulerName: 10438 type: string 10439 description: >- 10440 The name of the scheduler used to dispatch this 10441 `Pod`. If not specified, the default scheduler will 10442 be used. 10443 hostAliases: 10444 type: array 10445 items: 10446 type: object 10447 properties: 10448 hostnames: 10449 type: array 10450 items: 10451 type: string 10452 ip: 10453 type: string 10454 description: >- 10455 The pod's HostAliases. HostAliases is an optional 10456 list of hosts and IPs that will be injected into the 10457 Pod's hosts file if specified. 10458 tmpDirSizeLimit: 10459 type: string 10460 pattern: '^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$' 10461 description: >- 10462 Defines the total amount (for example `1Gi`) of 10463 local storage required for temporary EmptyDir volume 10464 (`/tmp`). Default value is `1Mi`. 10465 enableServiceLinks: 10466 type: boolean 10467 description: >- 10468 Indicates whether information about services should 10469 be injected into Pod's environment variables. 10470 topologySpreadConstraints: 10471 type: array 10472 items: 10473 type: object 10474 properties: 10475 labelSelector: 10476 type: object 10477 properties: 10478 matchExpressions: 10479 type: array 10480 items: 10481 type: object 10482 properties: 10483 key: 10484 type: string 10485 operator: 10486 type: string 10487 values: 10488 type: array 10489 items: 10490 type: string 10491 matchLabels: 10492 x-kubernetes-preserve-unknown-fields: true 10493 type: object 10494 maxSkew: 10495 type: integer 10496 topologyKey: 10497 type: string 10498 whenUnsatisfiable: 10499 type: string 10500 description: The pod's topology spread constraints. 10501 description: Template for Kafka Connect `Pods`. 10502 apiService: 10503 type: object 10504 properties: 10505 metadata: 10506 type: object 10507 properties: 10508 labels: 10509 x-kubernetes-preserve-unknown-fields: true 10510 type: object 10511 description: >- 10512 Labels added to the resource template. Can be 10513 applied to different resources such as 10514 `StatefulSets`, `Deployments`, `Pods`, and 10515 `Services`. 10516 annotations: 10517 x-kubernetes-preserve-unknown-fields: true 10518 type: object 10519 description: >- 10520 Annotations added to the resource template. Can 10521 be applied to different resources such as 10522 `StatefulSets`, `Deployments`, `Pods`, and 10523 `Services`. 10524 description: Metadata applied to the resource. 10525 ipFamilyPolicy: 10526 type: string 10527 enum: 10528 - SingleStack 10529 - PreferDualStack 10530 - RequireDualStack 10531 description: >- 10532 Specifies the IP Family Policy used by the service. 10533 Available options are `SingleStack`, 10534 `PreferDualStack` and `RequireDualStack`. 10535 `SingleStack` is for a single IP family. 10536 `PreferDualStack` is for two IP families on 10537 dual-stack configured clusters or a single IP family 10538 on single-stack clusters. `RequireDualStack` fails 10539 unless there are two IP families on dual-stack 10540 configured clusters. If unspecified, Kubernetes will 10541 choose the default value based on the service type. 10542 Available on Kubernetes 1.20 and newer. 10543 ipFamilies: 10544 type: array 10545 items: 10546 type: string 10547 enum: 10548 - IPv4 10549 - IPv6 10550 description: >- 10551 Specifies the IP Families used by the service. 10552 Available options are `IPv4` and `IPv6. If 10553 unspecified, Kubernetes will choose the default 10554 value based on the `ipFamilyPolicy` setting. 10555 Available on Kubernetes 1.20 and newer. 10556 description: Template for Kafka Connect API `Service`. 10557 connectContainer: 10558 type: object 10559 properties: 10560 env: 10561 type: array 10562 items: 10563 type: object 10564 properties: 10565 name: 10566 type: string 10567 description: The environment variable key. 10568 value: 10569 type: string 10570 description: The environment variable value. 10571 description: >- 10572 Environment variables which should be applied to the 10573 container. 10574 securityContext: 10575 type: object 10576 properties: 10577 allowPrivilegeEscalation: 10578 type: boolean 10579 capabilities: 10580 type: object 10581 properties: 10582 add: 10583 type: array 10584 items: 10585 type: string 10586 drop: 10587 type: array 10588 items: 10589 type: string 10590 privileged: 10591 type: boolean 10592 procMount: 10593 type: string 10594 readOnlyRootFilesystem: 10595 type: boolean 10596 runAsGroup: 10597 type: integer 10598 runAsNonRoot: 10599 type: boolean 10600 runAsUser: 10601 type: integer 10602 seLinuxOptions: 10603 type: object 10604 properties: 10605 level: 10606 type: string 10607 role: 10608 type: string 10609 type: 10610 type: string 10611 user: 10612 type: string 10613 seccompProfile: 10614 type: object 10615 properties: 10616 localhostProfile: 10617 type: string 10618 type: 10619 type: string 10620 windowsOptions: 10621 type: object 10622 properties: 10623 gmsaCredentialSpec: 10624 type: string 10625 gmsaCredentialSpecName: 10626 type: string 10627 hostProcess: 10628 type: boolean 10629 runAsUserName: 10630 type: string 10631 description: Security context for the container. 10632 description: Template for the Kafka Connect container. 10633 initContainer: 10634 type: object 10635 properties: 10636 env: 10637 type: array 10638 items: 10639 type: object 10640 properties: 10641 name: 10642 type: string 10643 description: The environment variable key. 10644 value: 10645 type: string 10646 description: The environment variable value. 10647 description: >- 10648 Environment variables which should be applied to the 10649 container. 10650 securityContext: 10651 type: object 10652 properties: 10653 allowPrivilegeEscalation: 10654 type: boolean 10655 capabilities: 10656 type: object 10657 properties: 10658 add: 10659 type: array 10660 items: 10661 type: string 10662 drop: 10663 type: array 10664 items: 10665 type: string 10666 privileged: 10667 type: boolean 10668 procMount: 10669 type: string 10670 readOnlyRootFilesystem: 10671 type: boolean 10672 runAsGroup: 10673 type: integer 10674 runAsNonRoot: 10675 type: boolean 10676 runAsUser: 10677 type: integer 10678 seLinuxOptions: 10679 type: object 10680 properties: 10681 level: 10682 type: string 10683 role: 10684 type: string 10685 type: 10686 type: string 10687 user: 10688 type: string 10689 seccompProfile: 10690 type: object 10691 properties: 10692 localhostProfile: 10693 type: string 10694 type: 10695 type: string 10696 windowsOptions: 10697 type: object 10698 properties: 10699 gmsaCredentialSpec: 10700 type: string 10701 gmsaCredentialSpecName: 10702 type: string 10703 hostProcess: 10704 type: boolean 10705 runAsUserName: 10706 type: string 10707 description: Security context for the container. 10708 description: Template for the Kafka init container. 10709 podDisruptionBudget: 10710 type: object 10711 properties: 10712 metadata: 10713 type: object 10714 properties: 10715 labels: 10716 x-kubernetes-preserve-unknown-fields: true 10717 type: object 10718 description: >- 10719 Labels added to the resource template. Can be 10720 applied to different resources such as 10721 `StatefulSets`, `Deployments`, `Pods`, and 10722 `Services`. 10723 annotations: 10724 x-kubernetes-preserve-unknown-fields: true 10725 type: object 10726 description: >- 10727 Annotations added to the resource template. Can 10728 be applied to different resources such as 10729 `StatefulSets`, `Deployments`, `Pods`, and 10730 `Services`. 10731 description: >- 10732 Metadata to apply to the 10733 `PodDisruptionBudgetTemplate` resource. 10734 maxUnavailable: 10735 type: integer 10736 minimum: 0 10737 description: >- 10738 Maximum number of unavailable pods to allow 10739 automatic Pod eviction. A Pod eviction is allowed 10740 when the `maxUnavailable` number of pods or fewer 10741 are unavailable after the eviction. Setting this 10742 value to 0 prevents all voluntary evictions, so the 10743 pods must be evicted manually. Defaults to 1. 10744 description: Template for Kafka Connect `PodDisruptionBudget`. 10745 serviceAccount: 10746 type: object 10747 properties: 10748 metadata: 10749 type: object 10750 properties: 10751 labels: 10752 x-kubernetes-preserve-unknown-fields: true 10753 type: object 10754 description: >- 10755 Labels added to the resource template. Can be 10756 applied to different resources such as 10757 `StatefulSets`, `Deployments`, `Pods`, and 10758 `Services`. 10759 annotations: 10760 x-kubernetes-preserve-unknown-fields: true 10761 type: object 10762 description: >- 10763 Annotations added to the resource template. Can 10764 be applied to different resources such as 10765 `StatefulSets`, `Deployments`, `Pods`, and 10766 `Services`. 10767 description: Metadata applied to the resource. 10768 description: Template for the Kafka Connect service account. 10769 clusterRoleBinding: 10770 type: object 10771 properties: 10772 metadata: 10773 type: object 10774 properties: 10775 labels: 10776 x-kubernetes-preserve-unknown-fields: true 10777 type: object 10778 description: >- 10779 Labels added to the resource template. Can be 10780 applied to different resources such as 10781 `StatefulSets`, `Deployments`, `Pods`, and 10782 `Services`. 10783 annotations: 10784 x-kubernetes-preserve-unknown-fields: true 10785 type: object 10786 description: >- 10787 Annotations added to the resource template. Can 10788 be applied to different resources such as 10789 `StatefulSets`, `Deployments`, `Pods`, and 10790 `Services`. 10791 description: Metadata applied to the resource. 10792 description: Template for the Kafka Connect ClusterRoleBinding. 10793 buildPod: 10794 type: object 10795 properties: 10796 metadata: 10797 type: object 10798 properties: 10799 labels: 10800 x-kubernetes-preserve-unknown-fields: true 10801 type: object 10802 description: >- 10803 Labels added to the resource template. Can be 10804 applied to different resources such as 10805 `StatefulSets`, `Deployments`, `Pods`, and 10806 `Services`. 10807 annotations: 10808 x-kubernetes-preserve-unknown-fields: true 10809 type: object 10810 description: >- 10811 Annotations added to the resource template. Can 10812 be applied to different resources such as 10813 `StatefulSets`, `Deployments`, `Pods`, and 10814 `Services`. 10815 description: Metadata applied to the resource. 10816 imagePullSecrets: 10817 type: array 10818 items: 10819 type: object 10820 properties: 10821 name: 10822 type: string 10823 description: >- 10824 List of references to secrets in the same namespace 10825 to use for pulling any of the images used by this 10826 Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` 10827 environment variable in Cluster Operator and the 10828 `imagePullSecrets` option are specified, only the 10829 `imagePullSecrets` variable is used and the 10830 `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored. 10831 securityContext: 10832 type: object 10833 properties: 10834 fsGroup: 10835 type: integer 10836 fsGroupChangePolicy: 10837 type: string 10838 runAsGroup: 10839 type: integer 10840 runAsNonRoot: 10841 type: boolean 10842 runAsUser: 10843 type: integer 10844 seLinuxOptions: 10845 type: object 10846 properties: 10847 level: 10848 type: string 10849 role: 10850 type: string 10851 type: 10852 type: string 10853 user: 10854 type: string 10855 seccompProfile: 10856 type: object 10857 properties: 10858 localhostProfile: 10859 type: string 10860 type: 10861 type: string 10862 supplementalGroups: 10863 type: array 10864 items: 10865 type: integer 10866 sysctls: 10867 type: array 10868 items: 10869 type: object 10870 properties: 10871 name: 10872 type: string 10873 value: 10874 type: string 10875 windowsOptions: 10876 type: object 10877 properties: 10878 gmsaCredentialSpec: 10879 type: string 10880 gmsaCredentialSpecName: 10881 type: string 10882 hostProcess: 10883 type: boolean 10884 runAsUserName: 10885 type: string 10886 description: >- 10887 Configures pod-level security attributes and common 10888 container settings. 10889 terminationGracePeriodSeconds: 10890 type: integer 10891 minimum: 0 10892 description: >- 10893 The grace period is the duration in seconds after 10894 the processes running in the pod are sent a 10895 termination signal, and the time when the processes 10896 are forcibly halted with a kill signal. Set this 10897 value to longer than the expected cleanup time for 10898 your process. Value must be a non-negative integer. 10899 A zero value indicates delete immediately. You might 10900 need to increase the grace period for very large 10901 Kafka clusters, so that the Kafka brokers have 10902 enough time to transfer their work to another broker 10903 before they are terminated. Defaults to 30 seconds. 10904 affinity: 10905 type: object 10906 properties: 10907 nodeAffinity: 10908 type: object 10909 properties: 10910 preferredDuringSchedulingIgnoredDuringExecution: 10911 type: array 10912 items: 10913 type: object 10914 properties: 10915 preference: 10916 type: object 10917 properties: 10918 matchExpressions: 10919 type: array 10920 items: 10921 type: object 10922 properties: 10923 key: 10924 type: string 10925 operator: 10926 type: string 10927 values: 10928 type: array 10929 items: 10930 type: string 10931 matchFields: 10932 type: array 10933 items: 10934 type: object 10935 properties: 10936 key: 10937 type: string 10938 operator: 10939 type: string 10940 values: 10941 type: array 10942 items: 10943 type: string 10944 weight: 10945 type: integer 10946 requiredDuringSchedulingIgnoredDuringExecution: 10947 type: object 10948 properties: 10949 nodeSelectorTerms: 10950 type: array 10951 items: 10952 type: object 10953 properties: 10954 matchExpressions: 10955 type: array 10956 items: 10957 type: object 10958 properties: 10959 key: 10960 type: string 10961 operator: 10962 type: string 10963 values: 10964 type: array 10965 items: 10966 type: string 10967 matchFields: 10968 type: array 10969 items: 10970 type: object 10971 properties: 10972 key: 10973 type: string 10974 operator: 10975 type: string 10976 values: 10977 type: array 10978 items: 10979 type: string 10980 podAffinity: 10981 type: object 10982 properties: 10983 preferredDuringSchedulingIgnoredDuringExecution: 10984 type: array 10985 items: 10986 type: object 10987 properties: 10988 podAffinityTerm: 10989 type: object 10990 properties: 10991 labelSelector: 10992 type: object 10993 properties: 10994 matchExpressions: 10995 type: array 10996 items: 10997 type: object 10998 properties: 10999 key: 11000 type: string 11001 operator: 11002 type: string 11003 values: 11004 type: array 11005 items: 11006 type: string 11007 matchLabels: 11008 x-kubernetes-preserve-unknown-fields: true 11009 type: object 11010 namespaceSelector: 11011 type: object 11012 properties: 11013 matchExpressions: 11014 type: array 11015 items: 11016 type: object 11017 properties: 11018 key: 11019 type: string 11020 operator: 11021 type: string 11022 values: 11023 type: array 11024 items: 11025 type: string 11026 matchLabels: 11027 x-kubernetes-preserve-unknown-fields: true 11028 type: object 11029 namespaces: 11030 type: array 11031 items: 11032 type: string 11033 topologyKey: 11034 type: string 11035 weight: 11036 type: integer 11037 requiredDuringSchedulingIgnoredDuringExecution: 11038 type: array 11039 items: 11040 type: object 11041 properties: 11042 labelSelector: 11043 type: object 11044 properties: 11045 matchExpressions: 11046 type: array 11047 items: 11048 type: object 11049 properties: 11050 key: 11051 type: string 11052 operator: 11053 type: string 11054 values: 11055 type: array 11056 items: 11057 type: string 11058 matchLabels: 11059 x-kubernetes-preserve-unknown-fields: true 11060 type: object 11061 namespaceSelector: 11062 type: object 11063 properties: 11064 matchExpressions: 11065 type: array 11066 items: 11067 type: object 11068 properties: 11069 key: 11070 type: string 11071 operator: 11072 type: string 11073 values: 11074 type: array 11075 items: 11076 type: string 11077 matchLabels: 11078 x-kubernetes-preserve-unknown-fields: true 11079 type: object 11080 namespaces: 11081 type: array 11082 items: 11083 type: string 11084 topologyKey: 11085 type: string 11086 podAntiAffinity: 11087 type: object 11088 properties: 11089 preferredDuringSchedulingIgnoredDuringExecution: 11090 type: array 11091 items: 11092 type: object 11093 properties: 11094 podAffinityTerm: 11095 type: object 11096 properties: 11097 labelSelector: 11098 type: object 11099 properties: 11100 matchExpressions: 11101 type: array 11102 items: 11103 type: object 11104 properties: 11105 key: 11106 type: string 11107 operator: 11108 type: string 11109 values: 11110 type: array 11111 items: 11112 type: string 11113 matchLabels: 11114 x-kubernetes-preserve-unknown-fields: true 11115 type: object 11116 namespaceSelector: 11117 type: object 11118 properties: 11119 matchExpressions: 11120 type: array 11121 items: 11122 type: object 11123 properties: 11124 key: 11125 type: string 11126 operator: 11127 type: string 11128 values: 11129 type: array 11130 items: 11131 type: string 11132 matchLabels: 11133 x-kubernetes-preserve-unknown-fields: true 11134 type: object 11135 namespaces: 11136 type: array 11137 items: 11138 type: string 11139 topologyKey: 11140 type: string 11141 weight: 11142 type: integer 11143 requiredDuringSchedulingIgnoredDuringExecution: 11144 type: array 11145 items: 11146 type: object 11147 properties: 11148 labelSelector: 11149 type: object 11150 properties: 11151 matchExpressions: 11152 type: array 11153 items: 11154 type: object 11155 properties: 11156 key: 11157 type: string 11158 operator: 11159 type: string 11160 values: 11161 type: array 11162 items: 11163 type: string 11164 matchLabels: 11165 x-kubernetes-preserve-unknown-fields: true 11166 type: object 11167 namespaceSelector: 11168 type: object 11169 properties: 11170 matchExpressions: 11171 type: array 11172 items: 11173 type: object 11174 properties: 11175 key: 11176 type: string 11177 operator: 11178 type: string 11179 values: 11180 type: array 11181 items: 11182 type: string 11183 matchLabels: 11184 x-kubernetes-preserve-unknown-fields: true 11185 type: object 11186 namespaces: 11187 type: array 11188 items: 11189 type: string 11190 topologyKey: 11191 type: string 11192 description: The pod's affinity rules. 11193 tolerations: 11194 type: array 11195 items: 11196 type: object 11197 properties: 11198 effect: 11199 type: string 11200 key: 11201 type: string 11202 operator: 11203 type: string 11204 tolerationSeconds: 11205 type: integer 11206 value: 11207 type: string 11208 description: The pod's tolerations. 11209 priorityClassName: 11210 type: string 11211 description: >- 11212 The name of the priority class used to assign 11213 priority to the pods. For more information about 11214 priority classes, see {K8sPriorityClass}. 11215 schedulerName: 11216 type: string 11217 description: >- 11218 The name of the scheduler used to dispatch this 11219 `Pod`. If not specified, the default scheduler will 11220 be used. 11221 hostAliases: 11222 type: array 11223 items: 11224 type: object 11225 properties: 11226 hostnames: 11227 type: array 11228 items: 11229 type: string 11230 ip: 11231 type: string 11232 description: >- 11233 The pod's HostAliases. HostAliases is an optional 11234 list of hosts and IPs that will be injected into the 11235 Pod's hosts file if specified. 11236 tmpDirSizeLimit: 11237 type: string 11238 pattern: '^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$' 11239 description: >- 11240 Defines the total amount (for example `1Gi`) of 11241 local storage required for temporary EmptyDir volume 11242 (`/tmp`). Default value is `1Mi`. 11243 enableServiceLinks: 11244 type: boolean 11245 description: >- 11246 Indicates whether information about services should 11247 be injected into Pod's environment variables. 11248 topologySpreadConstraints: 11249 type: array 11250 items: 11251 type: object 11252 properties: 11253 labelSelector: 11254 type: object 11255 properties: 11256 matchExpressions: 11257 type: array 11258 items: 11259 type: object 11260 properties: 11261 key: 11262 type: string 11263 operator: 11264 type: string 11265 values: 11266 type: array 11267 items: 11268 type: string 11269 matchLabels: 11270 x-kubernetes-preserve-unknown-fields: true 11271 type: object 11272 maxSkew: 11273 type: integer 11274 topologyKey: 11275 type: string 11276 whenUnsatisfiable: 11277 type: string 11278 description: The pod's topology spread constraints. 11279 description: >- 11280 Template for Kafka Connect Build `Pods`. The build pod 11281 is used only on Kubernetes. 11282 buildContainer: 11283 type: object 11284 properties: 11285 env: 11286 type: array 11287 items: 11288 type: object 11289 properties: 11290 name: 11291 type: string 11292 description: The environment variable key. 11293 value: 11294 type: string 11295 description: The environment variable value. 11296 description: >- 11297 Environment variables which should be applied to the 11298 container. 11299 securityContext: 11300 type: object 11301 properties: 11302 allowPrivilegeEscalation: 11303 type: boolean 11304 capabilities: 11305 type: object 11306 properties: 11307 add: 11308 type: array 11309 items: 11310 type: string 11311 drop: 11312 type: array 11313 items: 11314 type: string 11315 privileged: 11316 type: boolean 11317 procMount: 11318 type: string 11319 readOnlyRootFilesystem: 11320 type: boolean 11321 runAsGroup: 11322 type: integer 11323 runAsNonRoot: 11324 type: boolean 11325 runAsUser: 11326 type: integer 11327 seLinuxOptions: 11328 type: object 11329 properties: 11330 level: 11331 type: string 11332 role: 11333 type: string 11334 type: 11335 type: string 11336 user: 11337 type: string 11338 seccompProfile: 11339 type: object 11340 properties: 11341 localhostProfile: 11342 type: string 11343 type: 11344 type: string 11345 windowsOptions: 11346 type: object 11347 properties: 11348 gmsaCredentialSpec: 11349 type: string 11350 gmsaCredentialSpecName: 11351 type: string 11352 hostProcess: 11353 type: boolean 11354 runAsUserName: 11355 type: string 11356 description: Security context for the container. 11357 description: >- 11358 Template for the Kafka Connect Build container. The 11359 build container is used only on Kubernetes. 11360 buildConfig: 11361 type: object 11362 properties: 11363 metadata: 11364 type: object 11365 properties: 11366 labels: 11367 x-kubernetes-preserve-unknown-fields: true 11368 type: object 11369 description: >- 11370 Labels added to the resource template. Can be 11371 applied to different resources such as 11372 `StatefulSets`, `Deployments`, `Pods`, and 11373 `Services`. 11374 annotations: 11375 x-kubernetes-preserve-unknown-fields: true 11376 type: object 11377 description: >- 11378 Annotations added to the resource template. Can 11379 be applied to different resources such as 11380 `StatefulSets`, `Deployments`, `Pods`, and 11381 `Services`. 11382 description: >- 11383 Metadata to apply to the 11384 `PodDisruptionBudgetTemplate` resource. 11385 pullSecret: 11386 type: string 11387 description: >- 11388 Container Registry Secret with the credentials for 11389 pulling the base image. 11390 description: >- 11391 Template for the Kafka Connect BuildConfig used to build 11392 new container images. The BuildConfig is used only on 11393 OpenShift. 11394 buildServiceAccount: 11395 type: object 11396 properties: 11397 metadata: 11398 type: object 11399 properties: 11400 labels: 11401 x-kubernetes-preserve-unknown-fields: true 11402 type: object 11403 description: >- 11404 Labels added to the resource template. Can be 11405 applied to different resources such as 11406 `StatefulSets`, `Deployments`, `Pods`, and 11407 `Services`. 11408 annotations: 11409 x-kubernetes-preserve-unknown-fields: true 11410 type: object 11411 description: >- 11412 Annotations added to the resource template. Can 11413 be applied to different resources such as 11414 `StatefulSets`, `Deployments`, `Pods`, and 11415 `Services`. 11416 description: Metadata applied to the resource. 11417 description: Template for the Kafka Connect Build service account. 11418 jmxSecret: 11419 type: object 11420 properties: 11421 metadata: 11422 type: object 11423 properties: 11424 labels: 11425 x-kubernetes-preserve-unknown-fields: true 11426 type: object 11427 description: >- 11428 Labels added to the resource template. Can be 11429 applied to different resources such as 11430 `StatefulSets`, `Deployments`, `Pods`, and 11431 `Services`. 11432 annotations: 11433 x-kubernetes-preserve-unknown-fields: true 11434 type: object 11435 description: >- 11436 Annotations added to the resource template. Can 11437 be applied to different resources such as 11438 `StatefulSets`, `Deployments`, `Pods`, and 11439 `Services`. 11440 description: Metadata applied to the resource. 11441 description: >- 11442 Template for Secret of the Kafka Connect Cluster JMX 11443 authentication. 11444 description: >- 11445 Template for Kafka Connect and Kafka Mirror Maker 2 11446 resources. The template allows users to specify how the 11447 `Deployment`, `Pods` and `Service` are generated. 11448 externalConfiguration: 11449 type: object 11450 properties: 11451 env: 11452 type: array 11453 items: 11454 type: object 11455 properties: 11456 name: 11457 type: string 11458 description: >- 11459 Name of the environment variable which will be 11460 passed to the Kafka Connect pods. The name of the 11461 environment variable cannot start with `KAFKA_` or 11462 `STRIMZI_`. 11463 valueFrom: 11464 type: object 11465 properties: 11466 configMapKeyRef: 11467 type: object 11468 properties: 11469 key: 11470 type: string 11471 name: 11472 type: string 11473 optional: 11474 type: boolean 11475 description: Reference to a key in a ConfigMap. 11476 secretKeyRef: 11477 type: object 11478 properties: 11479 key: 11480 type: string 11481 name: 11482 type: string 11483 optional: 11484 type: boolean 11485 description: Reference to a key in a Secret. 11486 description: >- 11487 Value of the environment variable which will be 11488 passed to the Kafka Connect pods. It can be passed 11489 either as a reference to Secret or ConfigMap 11490 field. The field has to specify exactly one Secret 11491 or ConfigMap. 11492 required: 11493 - name 11494 - valueFrom 11495 description: >- 11496 Makes data from a Secret or ConfigMap available in the 11497 Kafka Connect pods as environment variables. 11498 volumes: 11499 type: array 11500 items: 11501 type: object 11502 properties: 11503 configMap: 11504 type: object 11505 properties: 11506 defaultMode: 11507 type: integer 11508 items: 11509 type: array 11510 items: 11511 type: object 11512 properties: 11513 key: 11514 type: string 11515 mode: 11516 type: integer 11517 path: 11518 type: string 11519 name: 11520 type: string 11521 optional: 11522 type: boolean 11523 description: >- 11524 Reference to a key in a ConfigMap. Exactly one 11525 Secret or ConfigMap has to be specified. 11526 name: 11527 type: string 11528 description: >- 11529 Name of the volume which will be added to the 11530 Kafka Connect pods. 11531 secret: 11532 type: object 11533 properties: 11534 defaultMode: 11535 type: integer 11536 items: 11537 type: array 11538 items: 11539 type: object 11540 properties: 11541 key: 11542 type: string 11543 mode: 11544 type: integer 11545 path: 11546 type: string 11547 optional: 11548 type: boolean 11549 secretName: 11550 type: string 11551 description: >- 11552 Reference to a key in a Secret. Exactly one Secret 11553 or ConfigMap has to be specified. 11554 required: 11555 - name 11556 description: >- 11557 Makes data from a Secret or ConfigMap available in the 11558 Kafka Connect pods as volumes. 11559 description: >- 11560 Pass data from Secrets or ConfigMaps to the Kafka Connect 11561 pods and use them to configure connectors. 11562 build: 11563 type: object 11564 properties: 11565 output: 11566 type: object 11567 properties: 11568 additionalKanikoOptions: 11569 type: array 11570 items: 11571 type: string 11572 description: >- 11573 Configures additional options which will be passed 11574 to the Kaniko executor when building the new Connect 11575 image. Allowed options are: --customPlatform, 11576 --insecure, --insecure-pull, --insecure-registry, 11577 --log-format, --log-timestamp, --registry-mirror, 11578 --reproducible, --single-snapshot, 11579 --skip-tls-verify, --skip-tls-verify-pull, 11580 --skip-tls-verify-registry, --verbosity, 11581 --snapshotMode, --use-new-run. These options will be 11582 used only on Kubernetes where the Kaniko executor is 11583 used. They will be ignored on OpenShift. The options 11584 are described in the 11585 link:https://github.com/GoogleContainerTools/kaniko[Kaniko 11586 GitHub repository^]. Changing this field does not 11587 trigger new build of the Kafka Connect image. 11588 image: 11589 type: string 11590 description: The name of the image which will be built. Required. 11591 pushSecret: 11592 type: string 11593 description: >- 11594 Container Registry Secret with the credentials for 11595 pushing the newly built image. 11596 type: 11597 type: string 11598 enum: 11599 - docker 11600 - imagestream 11601 description: >- 11602 Output type. Must be either `docker` for pushing the 11603 newly build image to Docker compatible registry or 11604 `imagestream` for pushing the image to OpenShift 11605 ImageStream. Required. 11606 required: 11607 - image 11608 - type 11609 description: >- 11610 Configures where should the newly built image be stored. 11611 Required. 11612 resources: 11613 type: object 11614 properties: 11615 limits: 11616 x-kubernetes-preserve-unknown-fields: true 11617 type: object 11618 requests: 11619 x-kubernetes-preserve-unknown-fields: true 11620 type: object 11621 description: CPU and memory resources to reserve for the build. 11622 plugins: 11623 type: array 11624 items: 11625 type: object 11626 properties: 11627 name: 11628 type: string 11629 pattern: '^[a-z0-9][-_a-z0-9]*[a-z0-9]$' 11630 description: >- 11631 The unique name of the connector plugin. Will be 11632 used to generate the path where the connector 11633 artifacts will be stored. The name has to be 11634 unique within the KafkaConnect resource. The name 11635 has to follow the following pattern: 11636 `^[a-z][-_a-z0-9]*[a-z]$`. Required. 11637 artifacts: 11638 type: array 11639 items: 11640 type: object 11641 properties: 11642 artifact: 11643 type: string 11644 description: >- 11645 Maven artifact id. Applicable to the `maven` 11646 artifact type only. 11647 fileName: 11648 type: string 11649 description: >- 11650 Name under which the artifact will be 11651 stored. 11652 group: 11653 type: string 11654 description: >- 11655 Maven group id. Applicable to the `maven` 11656 artifact type only. 11657 insecure: 11658 type: boolean 11659 description: >- 11660 By default, connections using TLS are 11661 verified to check they are secure. The 11662 server certificate used must be valid, 11663 trusted, and contain the server name. By 11664 setting this option to `true`, all TLS 11665 verification is disabled and the artifact 11666 will be downloaded, even when the server is 11667 considered insecure. 11668 repository: 11669 type: string 11670 description: >- 11671 Maven repository to download the artifact 11672 from. Applicable to the `maven` artifact 11673 type only. 11674 sha512sum: 11675 type: string 11676 description: >- 11677 SHA512 checksum of the artifact. Optional. 11678 If specified, the checksum will be verified 11679 while building the new container. If not 11680 specified, the downloaded artifact will not 11681 be verified. Not applicable to the `maven` 11682 artifact type. 11683 type: 11684 type: string 11685 enum: 11686 - jar 11687 - tgz 11688 - zip 11689 - maven 11690 - other 11691 description: >- 11692 Artifact type. Currently, the supported 11693 artifact types are `tgz`, `jar`, `zip`, 11694 `other` and `maven`. 11695 url: 11696 type: string 11697 pattern: >- 11698 ^(https?|ftp)://[-a-zA-Z0-9+&@#/%?=~_|!:,.;]*[-a-zA-Z0-9+&@#/%=~_|]$ 11699 description: >- 11700 URL of the artifact which will be 11701 downloaded. Strimzi does not do any security 11702 scanning of the downloaded artifacts. For 11703 security reasons, you should first verify 11704 the artifacts manually and configure the 11705 checksum verification to make sure the same 11706 artifact is used in the automated build. 11707 Required for `jar`, `zip`, `tgz` and `other` 11708 artifacts. Not applicable to the `maven` 11709 artifact type. 11710 version: 11711 type: string 11712 description: >- 11713 Maven version number. Applicable to the 11714 `maven` artifact type only. 11715 required: 11716 - type 11717 description: >- 11718 List of artifacts which belong to this connector 11719 plugin. Required. 11720 required: 11721 - name 11722 - artifacts 11723 description: >- 11724 List of connector plugins which should be added to the 11725 Kafka Connect. Required. 11726 required: 11727 - output 11728 - plugins 11729 description: >- 11730 Configures how the Connect container image should be built. 11731 Optional. 11732 clientRackInitImage: 11733 type: string 11734 description: >- 11735 The image of the init container used for initializing the 11736 `client.rack`. 11737 metricsConfig: 11738 type: object 11739 properties: 11740 type: 11741 type: string 11742 enum: 11743 - jmxPrometheusExporter 11744 description: >- 11745 Metrics type. Only 'jmxPrometheusExporter' supported 11746 currently. 11747 valueFrom: 11748 type: object 11749 properties: 11750 configMapKeyRef: 11751 type: object 11752 properties: 11753 key: 11754 type: string 11755 name: 11756 type: string 11757 optional: 11758 type: boolean 11759 description: >- 11760 Reference to the key in the ConfigMap containing the 11761 configuration. 11762 description: >- 11763 ConfigMap entry where the Prometheus JMX Exporter 11764 configuration is stored. For details of the structure of 11765 this configuration, see the {JMXExporter}. 11766 required: 11767 - type 11768 - valueFrom 11769 description: Metrics configuration. 11770 rack: 11771 type: object 11772 properties: 11773 topologyKey: 11774 type: string 11775 example: topology.kubernetes.io/zone 11776 description: >- 11777 A key that matches labels assigned to the Kubernetes 11778 cluster nodes. The value of the label is used to set the 11779 broker's `broker.rack` config and `client.rack` in Kafka 11780 Connect. 11781 required: 11782 - topologyKey 11783 description: >- 11784 Configuration of the node label which will be used as the 11785 client.rack consumer configuration. 11786 required: 11787 - bootstrapServers 11788 description: The specification of the Kafka Connect cluster. 11789 status: 11790 type: object 11791 properties: 11792 conditions: 11793 type: array 11794 items: 11795 type: object 11796 properties: 11797 type: 11798 type: string 11799 description: >- 11800 The unique identifier of a condition, used to 11801 distinguish between other conditions in the resource. 11802 status: 11803 type: string 11804 description: >- 11805 The status of the condition, either True, False or 11806 Unknown. 11807 lastTransitionTime: 11808 type: string 11809 description: >- 11810 Last time the condition of a type changed from one 11811 status to another. The required format is 11812 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone. 11813 reason: 11814 type: string 11815 description: >- 11816 The reason for the condition's last transition (a 11817 single word in CamelCase). 11818 message: 11819 type: string 11820 description: >- 11821 Human-readable message indicating details about the 11822 condition's last transition. 11823 description: List of status conditions. 11824 observedGeneration: 11825 type: integer 11826 description: >- 11827 The generation of the CRD that was last reconciled by the 11828 operator. 11829 url: 11830 type: string 11831 description: >- 11832 The URL of the REST API endpoint for managing and monitoring 11833 Kafka Connect connectors. 11834 connectorPlugins: 11835 type: array 11836 items: 11837 type: object 11838 properties: 11839 type: 11840 type: string 11841 description: >- 11842 The type of the connector plugin. The available types 11843 are `sink` and `source`. 11844 version: 11845 type: string 11846 description: The version of the connector plugin. 11847 class: 11848 type: string 11849 description: The class of the connector plugin. 11850 description: >- 11851 The list of connector plugins available in this Kafka 11852 Connect deployment. 11853 labelSelector: 11854 type: string 11855 description: Label selector for pods providing this resource. 11856 replicas: 11857 type: integer 11858 description: >- 11859 The current number of pods being used to provide this 11860 resource. 11861 description: The status of the Kafka Connect cluster. 11862 11863 --- 11864 apiVersion: apiextensions.k8s.io/v1 11865 kind: CustomResourceDefinition 11866 metadata: 11867 name: kafkabridges.kafka.strimzi.io 11868 labels: 11869 app: strimzi 11870 strimzi.io/crd-install: 'true' 11871 spec: 11872 group: kafka.strimzi.io 11873 names: 11874 kind: KafkaBridge 11875 listKind: KafkaBridgeList 11876 singular: kafkabridge 11877 plural: kafkabridges 11878 shortNames: 11879 - kb 11880 categories: 11881 - strimzi 11882 scope: Namespaced 11883 conversion: 11884 strategy: None 11885 versions: 11886 - name: v1beta2 11887 served: true 11888 storage: true 11889 subresources: 11890 status: {} 11891 scale: 11892 specReplicasPath: .spec.replicas 11893 statusReplicasPath: .status.replicas 11894 labelSelectorPath: .status.labelSelector 11895 additionalPrinterColumns: 11896 - name: Desired replicas 11897 description: The desired number of Kafka Bridge replicas 11898 jsonPath: .spec.replicas 11899 type: integer 11900 - name: Bootstrap Servers 11901 description: The boostrap servers 11902 jsonPath: .spec.bootstrapServers 11903 type: string 11904 priority: 1 11905 - name: Ready 11906 description: The state of the custom resource 11907 jsonPath: '.status.conditions[?(@.type=="Ready")].status' 11908 type: string 11909 schema: 11910 openAPIV3Schema: 11911 type: object 11912 properties: 11913 spec: 11914 type: object 11915 properties: 11916 replicas: 11917 type: integer 11918 minimum: 0 11919 description: The number of pods in the `Deployment`. 11920 image: 11921 type: string 11922 description: The docker image for the pods. 11923 bootstrapServers: 11924 type: string 11925 description: >- 11926 A list of host:port pairs for establishing the initial 11927 connection to the Kafka cluster. 11928 tls: 11929 type: object 11930 properties: 11931 trustedCertificates: 11932 type: array 11933 items: 11934 type: object 11935 properties: 11936 certificate: 11937 type: string 11938 description: The name of the file certificate in the Secret. 11939 secretName: 11940 type: string 11941 description: The name of the Secret containing the certificate. 11942 required: 11943 - certificate 11944 - secretName 11945 description: Trusted certificates for TLS connection. 11946 description: >- 11947 TLS configuration for connecting Kafka Bridge to the 11948 cluster. 11949 authentication: 11950 type: object 11951 properties: 11952 accessToken: 11953 type: object 11954 properties: 11955 key: 11956 type: string 11957 description: >- 11958 The key under which the secret value is stored in 11959 the Kubernetes Secret. 11960 secretName: 11961 type: string 11962 description: >- 11963 The name of the Kubernetes Secret containing the 11964 secret value. 11965 required: 11966 - key 11967 - secretName 11968 description: >- 11969 Link to Kubernetes Secret containing the access token 11970 which was obtained from the authorization server. 11971 accessTokenIsJwt: 11972 type: boolean 11973 description: >- 11974 Configure whether access token should be treated as JWT. 11975 This should be set to `false` if the authorization 11976 server returns opaque tokens. Defaults to `true`. 11977 audience: 11978 type: string 11979 description: >- 11980 OAuth audience to use when authenticating against the 11981 authorization server. Some authorization servers require 11982 the audience to be explicitly set. The possible values 11983 depend on how the authorization server is configured. By 11984 default, `audience` is not specified when performing the 11985 token endpoint request. 11986 certificateAndKey: 11987 type: object 11988 properties: 11989 certificate: 11990 type: string 11991 description: The name of the file certificate in the Secret. 11992 key: 11993 type: string 11994 description: The name of the private key in the Secret. 11995 secretName: 11996 type: string 11997 description: The name of the Secret containing the certificate. 11998 required: 11999 - certificate 12000 - key 12001 - secretName 12002 description: >- 12003 Reference to the `Secret` which holds the certificate 12004 and private key pair. 12005 clientId: 12006 type: string 12007 description: >- 12008 OAuth Client ID which the Kafka client can use to 12009 authenticate against the OAuth server and use the token 12010 endpoint URI. 12011 clientSecret: 12012 type: object 12013 properties: 12014 key: 12015 type: string 12016 description: >- 12017 The key under which the secret value is stored in 12018 the Kubernetes Secret. 12019 secretName: 12020 type: string 12021 description: >- 12022 The name of the Kubernetes Secret containing the 12023 secret value. 12024 required: 12025 - key 12026 - secretName 12027 description: >- 12028 Link to Kubernetes Secret containing the OAuth client 12029 secret which the Kafka client can use to authenticate 12030 against the OAuth server and use the token endpoint URI. 12031 connectTimeoutSeconds: 12032 type: integer 12033 description: >- 12034 The connect timeout in seconds when connecting to 12035 authorization server. If not set, the effective connect 12036 timeout is 60 seconds. 12037 disableTlsHostnameVerification: 12038 type: boolean 12039 description: >- 12040 Enable or disable TLS hostname verification. Default 12041 value is `false`. 12042 maxTokenExpirySeconds: 12043 type: integer 12044 description: >- 12045 Set or limit time-to-live of the access tokens to the 12046 specified number of seconds. This should be set if the 12047 authorization server returns opaque tokens. 12048 passwordSecret: 12049 type: object 12050 properties: 12051 password: 12052 type: string 12053 description: >- 12054 The name of the key in the Secret under which the 12055 password is stored. 12056 secretName: 12057 type: string 12058 description: The name of the Secret containing the password. 12059 required: 12060 - password 12061 - secretName 12062 description: Reference to the `Secret` which holds the password. 12063 readTimeoutSeconds: 12064 type: integer 12065 description: >- 12066 The read timeout in seconds when connecting to 12067 authorization server. If not set, the effective read 12068 timeout is 60 seconds. 12069 refreshToken: 12070 type: object 12071 properties: 12072 key: 12073 type: string 12074 description: >- 12075 The key under which the secret value is stored in 12076 the Kubernetes Secret. 12077 secretName: 12078 type: string 12079 description: >- 12080 The name of the Kubernetes Secret containing the 12081 secret value. 12082 required: 12083 - key 12084 - secretName 12085 description: >- 12086 Link to Kubernetes Secret containing the refresh token 12087 which can be used to obtain access token from the 12088 authorization server. 12089 scope: 12090 type: string 12091 description: >- 12092 OAuth scope to use when authenticating against the 12093 authorization server. Some authorization servers require 12094 this to be set. The possible values depend on how 12095 authorization server is configured. By default `scope` 12096 is not specified when doing the token endpoint request. 12097 tlsTrustedCertificates: 12098 type: array 12099 items: 12100 type: object 12101 properties: 12102 certificate: 12103 type: string 12104 description: The name of the file certificate in the Secret. 12105 secretName: 12106 type: string 12107 description: The name of the Secret containing the certificate. 12108 required: 12109 - certificate 12110 - secretName 12111 description: >- 12112 Trusted certificates for TLS connection to the OAuth 12113 server. 12114 tokenEndpointUri: 12115 type: string 12116 description: Authorization server token endpoint URI. 12117 type: 12118 type: string 12119 enum: 12120 - tls 12121 - scram-sha-256 12122 - scram-sha-512 12123 - plain 12124 - oauth 12125 description: >- 12126 Authentication type. Currently the only supported types 12127 are `tls`, `scram-sha-256`, `scram-sha-512`, and 12128 `plain`. `scram-sha-256` and `scram-sha-512` types use 12129 SASL SCRAM-SHA-256 and SASL SCRAM-SHA-512 12130 Authentication, respectively. `plain` type uses SASL 12131 PLAIN Authentication. `oauth` type uses SASL OAUTHBEARER 12132 Authentication. The `tls` type uses TLS Client 12133 Authentication. The `tls` type is supported only over 12134 TLS connections. 12135 username: 12136 type: string 12137 description: Username used for the authentication. 12138 required: 12139 - type 12140 description: Authentication configuration for connecting to the cluster. 12141 http: 12142 type: object 12143 properties: 12144 port: 12145 type: integer 12146 minimum: 1023 12147 description: The port which is the server listening on. 12148 cors: 12149 type: object 12150 properties: 12151 allowedOrigins: 12152 type: array 12153 items: 12154 type: string 12155 description: >- 12156 List of allowed origins. Java regular expressions 12157 can be used. 12158 allowedMethods: 12159 type: array 12160 items: 12161 type: string 12162 description: List of allowed HTTP methods. 12163 required: 12164 - allowedOrigins 12165 - allowedMethods 12166 description: CORS configuration for the HTTP Bridge. 12167 description: The HTTP related configuration. 12168 adminClient: 12169 type: object 12170 properties: 12171 config: 12172 x-kubernetes-preserve-unknown-fields: true 12173 type: object 12174 description: >- 12175 The Kafka AdminClient configuration used for AdminClient 12176 instances created by the bridge. 12177 description: Kafka AdminClient related configuration. 12178 consumer: 12179 type: object 12180 properties: 12181 config: 12182 x-kubernetes-preserve-unknown-fields: true 12183 type: object 12184 description: >- 12185 The Kafka consumer configuration used for consumer 12186 instances created by the bridge. Properties with the 12187 following prefixes cannot be set: ssl., 12188 bootstrap.servers, group.id, sasl., security. (with the 12189 exception of: ssl.endpoint.identification.algorithm, 12190 ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols). 12191 description: Kafka consumer related configuration. 12192 producer: 12193 type: object 12194 properties: 12195 config: 12196 x-kubernetes-preserve-unknown-fields: true 12197 type: object 12198 description: >- 12199 The Kafka producer configuration used for producer 12200 instances created by the bridge. Properties with the 12201 following prefixes cannot be set: ssl., 12202 bootstrap.servers, sasl., security. (with the exception 12203 of: ssl.endpoint.identification.algorithm, 12204 ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols). 12205 description: Kafka producer related configuration. 12206 resources: 12207 type: object 12208 properties: 12209 limits: 12210 x-kubernetes-preserve-unknown-fields: true 12211 type: object 12212 requests: 12213 x-kubernetes-preserve-unknown-fields: true 12214 type: object 12215 description: CPU and memory resources to reserve. 12216 jvmOptions: 12217 type: object 12218 properties: 12219 '-XX': 12220 x-kubernetes-preserve-unknown-fields: true 12221 type: object 12222 description: A map of -XX options to the JVM. 12223 '-Xms': 12224 type: string 12225 pattern: '^[0-9]+[mMgG]?$' 12226 description: '-Xms option to to the JVM.' 12227 '-Xmx': 12228 type: string 12229 pattern: '^[0-9]+[mMgG]?$' 12230 description: '-Xmx option to to the JVM.' 12231 gcLoggingEnabled: 12232 type: boolean 12233 description: >- 12234 Specifies whether the Garbage Collection logging is 12235 enabled. The default is false. 12236 javaSystemProperties: 12237 type: array 12238 items: 12239 type: object 12240 properties: 12241 name: 12242 type: string 12243 description: The system property name. 12244 value: 12245 type: string 12246 description: The system property value. 12247 description: >- 12248 A map of additional system properties which will be 12249 passed using the `-D` option to the JVM. 12250 description: '**Currently not supported** JVM Options for pods.' 12251 logging: 12252 type: object 12253 properties: 12254 loggers: 12255 x-kubernetes-preserve-unknown-fields: true 12256 type: object 12257 description: A Map from logger name to logger level. 12258 type: 12259 type: string 12260 enum: 12261 - inline 12262 - external 12263 description: 'Logging type, must be either ''inline'' or ''external''.' 12264 valueFrom: 12265 type: object 12266 properties: 12267 configMapKeyRef: 12268 type: object 12269 properties: 12270 key: 12271 type: string 12272 name: 12273 type: string 12274 optional: 12275 type: boolean 12276 description: >- 12277 Reference to the key in the ConfigMap containing the 12278 configuration. 12279 description: >- 12280 `ConfigMap` entry where the logging configuration is 12281 stored. 12282 required: 12283 - type 12284 description: Logging configuration for Kafka Bridge. 12285 enableMetrics: 12286 type: boolean 12287 description: Enable the metrics for the Kafka Bridge. Default is false. 12288 livenessProbe: 12289 type: object 12290 properties: 12291 failureThreshold: 12292 type: integer 12293 minimum: 1 12294 description: >- 12295 Minimum consecutive failures for the probe to be 12296 considered failed after having succeeded. Defaults to 3. 12297 Minimum value is 1. 12298 initialDelaySeconds: 12299 type: integer 12300 minimum: 0 12301 description: >- 12302 The initial delay before first the health is first 12303 checked. Default to 15 seconds. Minimum value is 0. 12304 periodSeconds: 12305 type: integer 12306 minimum: 1 12307 description: >- 12308 How often (in seconds) to perform the probe. Default to 12309 10 seconds. Minimum value is 1. 12310 successThreshold: 12311 type: integer 12312 minimum: 1 12313 description: >- 12314 Minimum consecutive successes for the probe to be 12315 considered successful after having failed. Defaults to 12316 1. Must be 1 for liveness. Minimum value is 1. 12317 timeoutSeconds: 12318 type: integer 12319 minimum: 1 12320 description: >- 12321 The timeout for each attempted health check. Default to 12322 5 seconds. Minimum value is 1. 12323 description: Pod liveness checking. 12324 readinessProbe: 12325 type: object 12326 properties: 12327 failureThreshold: 12328 type: integer 12329 minimum: 1 12330 description: >- 12331 Minimum consecutive failures for the probe to be 12332 considered failed after having succeeded. Defaults to 3. 12333 Minimum value is 1. 12334 initialDelaySeconds: 12335 type: integer 12336 minimum: 0 12337 description: >- 12338 The initial delay before first the health is first 12339 checked. Default to 15 seconds. Minimum value is 0. 12340 periodSeconds: 12341 type: integer 12342 minimum: 1 12343 description: >- 12344 How often (in seconds) to perform the probe. Default to 12345 10 seconds. Minimum value is 1. 12346 successThreshold: 12347 type: integer 12348 minimum: 1 12349 description: >- 12350 Minimum consecutive successes for the probe to be 12351 considered successful after having failed. Defaults to 12352 1. Must be 1 for liveness. Minimum value is 1. 12353 timeoutSeconds: 12354 type: integer 12355 minimum: 1 12356 description: >- 12357 The timeout for each attempted health check. Default to 12358 5 seconds. Minimum value is 1. 12359 description: Pod readiness checking. 12360 template: 12361 type: object 12362 properties: 12363 deployment: 12364 type: object 12365 properties: 12366 metadata: 12367 type: object 12368 properties: 12369 labels: 12370 x-kubernetes-preserve-unknown-fields: true 12371 type: object 12372 description: >- 12373 Labels added to the resource template. Can be 12374 applied to different resources such as 12375 `StatefulSets`, `Deployments`, `Pods`, and 12376 `Services`. 12377 annotations: 12378 x-kubernetes-preserve-unknown-fields: true 12379 type: object 12380 description: >- 12381 Annotations added to the resource template. Can 12382 be applied to different resources such as 12383 `StatefulSets`, `Deployments`, `Pods`, and 12384 `Services`. 12385 description: Metadata applied to the resource. 12386 deploymentStrategy: 12387 type: string 12388 enum: 12389 - RollingUpdate 12390 - Recreate 12391 description: >- 12392 DeploymentStrategy which will be used for this 12393 Deployment. Valid values are `RollingUpdate` and 12394 `Recreate`. Defaults to `RollingUpdate`. 12395 description: Template for Kafka Bridge `Deployment`. 12396 pod: 12397 type: object 12398 properties: 12399 metadata: 12400 type: object 12401 properties: 12402 labels: 12403 x-kubernetes-preserve-unknown-fields: true 12404 type: object 12405 description: >- 12406 Labels added to the resource template. Can be 12407 applied to different resources such as 12408 `StatefulSets`, `Deployments`, `Pods`, and 12409 `Services`. 12410 annotations: 12411 x-kubernetes-preserve-unknown-fields: true 12412 type: object 12413 description: >- 12414 Annotations added to the resource template. Can 12415 be applied to different resources such as 12416 `StatefulSets`, `Deployments`, `Pods`, and 12417 `Services`. 12418 description: Metadata applied to the resource. 12419 imagePullSecrets: 12420 type: array 12421 items: 12422 type: object 12423 properties: 12424 name: 12425 type: string 12426 description: >- 12427 List of references to secrets in the same namespace 12428 to use for pulling any of the images used by this 12429 Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` 12430 environment variable in Cluster Operator and the 12431 `imagePullSecrets` option are specified, only the 12432 `imagePullSecrets` variable is used and the 12433 `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored. 12434 securityContext: 12435 type: object 12436 properties: 12437 fsGroup: 12438 type: integer 12439 fsGroupChangePolicy: 12440 type: string 12441 runAsGroup: 12442 type: integer 12443 runAsNonRoot: 12444 type: boolean 12445 runAsUser: 12446 type: integer 12447 seLinuxOptions: 12448 type: object 12449 properties: 12450 level: 12451 type: string 12452 role: 12453 type: string 12454 type: 12455 type: string 12456 user: 12457 type: string 12458 seccompProfile: 12459 type: object 12460 properties: 12461 localhostProfile: 12462 type: string 12463 type: 12464 type: string 12465 supplementalGroups: 12466 type: array 12467 items: 12468 type: integer 12469 sysctls: 12470 type: array 12471 items: 12472 type: object 12473 properties: 12474 name: 12475 type: string 12476 value: 12477 type: string 12478 windowsOptions: 12479 type: object 12480 properties: 12481 gmsaCredentialSpec: 12482 type: string 12483 gmsaCredentialSpecName: 12484 type: string 12485 hostProcess: 12486 type: boolean 12487 runAsUserName: 12488 type: string 12489 description: >- 12490 Configures pod-level security attributes and common 12491 container settings. 12492 terminationGracePeriodSeconds: 12493 type: integer 12494 minimum: 0 12495 description: >- 12496 The grace period is the duration in seconds after 12497 the processes running in the pod are sent a 12498 termination signal, and the time when the processes 12499 are forcibly halted with a kill signal. Set this 12500 value to longer than the expected cleanup time for 12501 your process. Value must be a non-negative integer. 12502 A zero value indicates delete immediately. You might 12503 need to increase the grace period for very large 12504 Kafka clusters, so that the Kafka brokers have 12505 enough time to transfer their work to another broker 12506 before they are terminated. Defaults to 30 seconds. 12507 affinity: 12508 type: object 12509 properties: 12510 nodeAffinity: 12511 type: object 12512 properties: 12513 preferredDuringSchedulingIgnoredDuringExecution: 12514 type: array 12515 items: 12516 type: object 12517 properties: 12518 preference: 12519 type: object 12520 properties: 12521 matchExpressions: 12522 type: array 12523 items: 12524 type: object 12525 properties: 12526 key: 12527 type: string 12528 operator: 12529 type: string 12530 values: 12531 type: array 12532 items: 12533 type: string 12534 matchFields: 12535 type: array 12536 items: 12537 type: object 12538 properties: 12539 key: 12540 type: string 12541 operator: 12542 type: string 12543 values: 12544 type: array 12545 items: 12546 type: string 12547 weight: 12548 type: integer 12549 requiredDuringSchedulingIgnoredDuringExecution: 12550 type: object 12551 properties: 12552 nodeSelectorTerms: 12553 type: array 12554 items: 12555 type: object 12556 properties: 12557 matchExpressions: 12558 type: array 12559 items: 12560 type: object 12561 properties: 12562 key: 12563 type: string 12564 operator: 12565 type: string 12566 values: 12567 type: array 12568 items: 12569 type: string 12570 matchFields: 12571 type: array 12572 items: 12573 type: object 12574 properties: 12575 key: 12576 type: string 12577 operator: 12578 type: string 12579 values: 12580 type: array 12581 items: 12582 type: string 12583 podAffinity: 12584 type: object 12585 properties: 12586 preferredDuringSchedulingIgnoredDuringExecution: 12587 type: array 12588 items: 12589 type: object 12590 properties: 12591 podAffinityTerm: 12592 type: object 12593 properties: 12594 labelSelector: 12595 type: object 12596 properties: 12597 matchExpressions: 12598 type: array 12599 items: 12600 type: object 12601 properties: 12602 key: 12603 type: string 12604 operator: 12605 type: string 12606 values: 12607 type: array 12608 items: 12609 type: string 12610 matchLabels: 12611 x-kubernetes-preserve-unknown-fields: true 12612 type: object 12613 namespaceSelector: 12614 type: object 12615 properties: 12616 matchExpressions: 12617 type: array 12618 items: 12619 type: object 12620 properties: 12621 key: 12622 type: string 12623 operator: 12624 type: string 12625 values: 12626 type: array 12627 items: 12628 type: string 12629 matchLabels: 12630 x-kubernetes-preserve-unknown-fields: true 12631 type: object 12632 namespaces: 12633 type: array 12634 items: 12635 type: string 12636 topologyKey: 12637 type: string 12638 weight: 12639 type: integer 12640 requiredDuringSchedulingIgnoredDuringExecution: 12641 type: array 12642 items: 12643 type: object 12644 properties: 12645 labelSelector: 12646 type: object 12647 properties: 12648 matchExpressions: 12649 type: array 12650 items: 12651 type: object 12652 properties: 12653 key: 12654 type: string 12655 operator: 12656 type: string 12657 values: 12658 type: array 12659 items: 12660 type: string 12661 matchLabels: 12662 x-kubernetes-preserve-unknown-fields: true 12663 type: object 12664 namespaceSelector: 12665 type: object 12666 properties: 12667 matchExpressions: 12668 type: array 12669 items: 12670 type: object 12671 properties: 12672 key: 12673 type: string 12674 operator: 12675 type: string 12676 values: 12677 type: array 12678 items: 12679 type: string 12680 matchLabels: 12681 x-kubernetes-preserve-unknown-fields: true 12682 type: object 12683 namespaces: 12684 type: array 12685 items: 12686 type: string 12687 topologyKey: 12688 type: string 12689 podAntiAffinity: 12690 type: object 12691 properties: 12692 preferredDuringSchedulingIgnoredDuringExecution: 12693 type: array 12694 items: 12695 type: object 12696 properties: 12697 podAffinityTerm: 12698 type: object 12699 properties: 12700 labelSelector: 12701 type: object 12702 properties: 12703 matchExpressions: 12704 type: array 12705 items: 12706 type: object 12707 properties: 12708 key: 12709 type: string 12710 operator: 12711 type: string 12712 values: 12713 type: array 12714 items: 12715 type: string 12716 matchLabels: 12717 x-kubernetes-preserve-unknown-fields: true 12718 type: object 12719 namespaceSelector: 12720 type: object 12721 properties: 12722 matchExpressions: 12723 type: array 12724 items: 12725 type: object 12726 properties: 12727 key: 12728 type: string 12729 operator: 12730 type: string 12731 values: 12732 type: array 12733 items: 12734 type: string 12735 matchLabels: 12736 x-kubernetes-preserve-unknown-fields: true 12737 type: object 12738 namespaces: 12739 type: array 12740 items: 12741 type: string 12742 topologyKey: 12743 type: string 12744 weight: 12745 type: integer 12746 requiredDuringSchedulingIgnoredDuringExecution: 12747 type: array 12748 items: 12749 type: object 12750 properties: 12751 labelSelector: 12752 type: object 12753 properties: 12754 matchExpressions: 12755 type: array 12756 items: 12757 type: object 12758 properties: 12759 key: 12760 type: string 12761 operator: 12762 type: string 12763 values: 12764 type: array 12765 items: 12766 type: string 12767 matchLabels: 12768 x-kubernetes-preserve-unknown-fields: true 12769 type: object 12770 namespaceSelector: 12771 type: object 12772 properties: 12773 matchExpressions: 12774 type: array 12775 items: 12776 type: object 12777 properties: 12778 key: 12779 type: string 12780 operator: 12781 type: string 12782 values: 12783 type: array 12784 items: 12785 type: string 12786 matchLabels: 12787 x-kubernetes-preserve-unknown-fields: true 12788 type: object 12789 namespaces: 12790 type: array 12791 items: 12792 type: string 12793 topologyKey: 12794 type: string 12795 description: The pod's affinity rules. 12796 tolerations: 12797 type: array 12798 items: 12799 type: object 12800 properties: 12801 effect: 12802 type: string 12803 key: 12804 type: string 12805 operator: 12806 type: string 12807 tolerationSeconds: 12808 type: integer 12809 value: 12810 type: string 12811 description: The pod's tolerations. 12812 priorityClassName: 12813 type: string 12814 description: >- 12815 The name of the priority class used to assign 12816 priority to the pods. For more information about 12817 priority classes, see {K8sPriorityClass}. 12818 schedulerName: 12819 type: string 12820 description: >- 12821 The name of the scheduler used to dispatch this 12822 `Pod`. If not specified, the default scheduler will 12823 be used. 12824 hostAliases: 12825 type: array 12826 items: 12827 type: object 12828 properties: 12829 hostnames: 12830 type: array 12831 items: 12832 type: string 12833 ip: 12834 type: string 12835 description: >- 12836 The pod's HostAliases. HostAliases is an optional 12837 list of hosts and IPs that will be injected into the 12838 Pod's hosts file if specified. 12839 tmpDirSizeLimit: 12840 type: string 12841 pattern: '^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$' 12842 description: >- 12843 Defines the total amount (for example `1Gi`) of 12844 local storage required for temporary EmptyDir volume 12845 (`/tmp`). Default value is `1Mi`. 12846 enableServiceLinks: 12847 type: boolean 12848 description: >- 12849 Indicates whether information about services should 12850 be injected into Pod's environment variables. 12851 topologySpreadConstraints: 12852 type: array 12853 items: 12854 type: object 12855 properties: 12856 labelSelector: 12857 type: object 12858 properties: 12859 matchExpressions: 12860 type: array 12861 items: 12862 type: object 12863 properties: 12864 key: 12865 type: string 12866 operator: 12867 type: string 12868 values: 12869 type: array 12870 items: 12871 type: string 12872 matchLabels: 12873 x-kubernetes-preserve-unknown-fields: true 12874 type: object 12875 maxSkew: 12876 type: integer 12877 topologyKey: 12878 type: string 12879 whenUnsatisfiable: 12880 type: string 12881 description: The pod's topology spread constraints. 12882 description: Template for Kafka Bridge `Pods`. 12883 apiService: 12884 type: object 12885 properties: 12886 metadata: 12887 type: object 12888 properties: 12889 labels: 12890 x-kubernetes-preserve-unknown-fields: true 12891 type: object 12892 description: >- 12893 Labels added to the resource template. Can be 12894 applied to different resources such as 12895 `StatefulSets`, `Deployments`, `Pods`, and 12896 `Services`. 12897 annotations: 12898 x-kubernetes-preserve-unknown-fields: true 12899 type: object 12900 description: >- 12901 Annotations added to the resource template. Can 12902 be applied to different resources such as 12903 `StatefulSets`, `Deployments`, `Pods`, and 12904 `Services`. 12905 description: Metadata applied to the resource. 12906 ipFamilyPolicy: 12907 type: string 12908 enum: 12909 - SingleStack 12910 - PreferDualStack 12911 - RequireDualStack 12912 description: >- 12913 Specifies the IP Family Policy used by the service. 12914 Available options are `SingleStack`, 12915 `PreferDualStack` and `RequireDualStack`. 12916 `SingleStack` is for a single IP family. 12917 `PreferDualStack` is for two IP families on 12918 dual-stack configured clusters or a single IP family 12919 on single-stack clusters. `RequireDualStack` fails 12920 unless there are two IP families on dual-stack 12921 configured clusters. If unspecified, Kubernetes will 12922 choose the default value based on the service type. 12923 Available on Kubernetes 1.20 and newer. 12924 ipFamilies: 12925 type: array 12926 items: 12927 type: string 12928 enum: 12929 - IPv4 12930 - IPv6 12931 description: >- 12932 Specifies the IP Families used by the service. 12933 Available options are `IPv4` and `IPv6. If 12934 unspecified, Kubernetes will choose the default 12935 value based on the `ipFamilyPolicy` setting. 12936 Available on Kubernetes 1.20 and newer. 12937 description: Template for Kafka Bridge API `Service`. 12938 podDisruptionBudget: 12939 type: object 12940 properties: 12941 metadata: 12942 type: object 12943 properties: 12944 labels: 12945 x-kubernetes-preserve-unknown-fields: true 12946 type: object 12947 description: >- 12948 Labels added to the resource template. Can be 12949 applied to different resources such as 12950 `StatefulSets`, `Deployments`, `Pods`, and 12951 `Services`. 12952 annotations: 12953 x-kubernetes-preserve-unknown-fields: true 12954 type: object 12955 description: >- 12956 Annotations added to the resource template. Can 12957 be applied to different resources such as 12958 `StatefulSets`, `Deployments`, `Pods`, and 12959 `Services`. 12960 description: >- 12961 Metadata to apply to the 12962 `PodDisruptionBudgetTemplate` resource. 12963 maxUnavailable: 12964 type: integer 12965 minimum: 0 12966 description: >- 12967 Maximum number of unavailable pods to allow 12968 automatic Pod eviction. A Pod eviction is allowed 12969 when the `maxUnavailable` number of pods or fewer 12970 are unavailable after the eviction. Setting this 12971 value to 0 prevents all voluntary evictions, so the 12972 pods must be evicted manually. Defaults to 1. 12973 description: Template for Kafka Bridge `PodDisruptionBudget`. 12974 bridgeContainer: 12975 type: object 12976 properties: 12977 env: 12978 type: array 12979 items: 12980 type: object 12981 properties: 12982 name: 12983 type: string 12984 description: The environment variable key. 12985 value: 12986 type: string 12987 description: The environment variable value. 12988 description: >- 12989 Environment variables which should be applied to the 12990 container. 12991 securityContext: 12992 type: object 12993 properties: 12994 allowPrivilegeEscalation: 12995 type: boolean 12996 capabilities: 12997 type: object 12998 properties: 12999 add: 13000 type: array 13001 items: 13002 type: string 13003 drop: 13004 type: array 13005 items: 13006 type: string 13007 privileged: 13008 type: boolean 13009 procMount: 13010 type: string 13011 readOnlyRootFilesystem: 13012 type: boolean 13013 runAsGroup: 13014 type: integer 13015 runAsNonRoot: 13016 type: boolean 13017 runAsUser: 13018 type: integer 13019 seLinuxOptions: 13020 type: object 13021 properties: 13022 level: 13023 type: string 13024 role: 13025 type: string 13026 type: 13027 type: string 13028 user: 13029 type: string 13030 seccompProfile: 13031 type: object 13032 properties: 13033 localhostProfile: 13034 type: string 13035 type: 13036 type: string 13037 windowsOptions: 13038 type: object 13039 properties: 13040 gmsaCredentialSpec: 13041 type: string 13042 gmsaCredentialSpecName: 13043 type: string 13044 hostProcess: 13045 type: boolean 13046 runAsUserName: 13047 type: string 13048 description: Security context for the container. 13049 description: Template for the Kafka Bridge container. 13050 serviceAccount: 13051 type: object 13052 properties: 13053 metadata: 13054 type: object 13055 properties: 13056 labels: 13057 x-kubernetes-preserve-unknown-fields: true 13058 type: object 13059 description: >- 13060 Labels added to the resource template. Can be 13061 applied to different resources such as 13062 `StatefulSets`, `Deployments`, `Pods`, and 13063 `Services`. 13064 annotations: 13065 x-kubernetes-preserve-unknown-fields: true 13066 type: object 13067 description: >- 13068 Annotations added to the resource template. Can 13069 be applied to different resources such as 13070 `StatefulSets`, `Deployments`, `Pods`, and 13071 `Services`. 13072 description: Metadata applied to the resource. 13073 description: Template for the Kafka Bridge service account. 13074 description: >- 13075 Template for Kafka Bridge resources. The template allows 13076 users to specify how is the `Deployment` and `Pods` 13077 generated. 13078 tracing: 13079 type: object 13080 properties: 13081 type: 13082 type: string 13083 enum: 13084 - jaeger 13085 description: >- 13086 Type of the tracing used. Currently the only supported 13087 type is `jaeger` for Jaeger tracing. 13088 required: 13089 - type 13090 description: The configuration of tracing in Kafka Bridge. 13091 required: 13092 - bootstrapServers 13093 description: The specification of the Kafka Bridge. 13094 status: 13095 type: object 13096 properties: 13097 conditions: 13098 type: array 13099 items: 13100 type: object 13101 properties: 13102 type: 13103 type: string 13104 description: >- 13105 The unique identifier of a condition, used to 13106 distinguish between other conditions in the resource. 13107 status: 13108 type: string 13109 description: >- 13110 The status of the condition, either True, False or 13111 Unknown. 13112 lastTransitionTime: 13113 type: string 13114 description: >- 13115 Last time the condition of a type changed from one 13116 status to another. The required format is 13117 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone. 13118 reason: 13119 type: string 13120 description: >- 13121 The reason for the condition's last transition (a 13122 single word in CamelCase). 13123 message: 13124 type: string 13125 description: >- 13126 Human-readable message indicating details about the 13127 condition's last transition. 13128 description: List of status conditions. 13129 observedGeneration: 13130 type: integer 13131 description: >- 13132 The generation of the CRD that was last reconciled by the 13133 operator. 13134 url: 13135 type: string 13136 description: >- 13137 The URL at which external client applications can access the 13138 Kafka Bridge. 13139 labelSelector: 13140 type: string 13141 description: Label selector for pods providing this resource. 13142 replicas: 13143 type: integer 13144 description: >- 13145 The current number of pods being used to provide this 13146 resource. 13147 description: The status of the Kafka Bridge. 13148 13149 --- 13150 apiVersion: apiextensions.k8s.io/v1 13151 kind: CustomResourceDefinition 13152 metadata: 13153 name: kafkaconnectors.kafka.strimzi.io 13154 labels: 13155 app: strimzi 13156 strimzi.io/crd-install: 'true' 13157 spec: 13158 group: kafka.strimzi.io 13159 names: 13160 kind: KafkaConnector 13161 listKind: KafkaConnectorList 13162 singular: kafkaconnector 13163 plural: kafkaconnectors 13164 shortNames: 13165 - kctr 13166 categories: 13167 - strimzi 13168 scope: Namespaced 13169 conversion: 13170 strategy: None 13171 versions: 13172 - name: v1beta2 13173 served: true 13174 storage: true 13175 subresources: 13176 status: {} 13177 scale: 13178 specReplicasPath: .spec.tasksMax 13179 statusReplicasPath: .status.tasksMax 13180 additionalPrinterColumns: 13181 - name: Cluster 13182 description: The name of the Kafka Connect cluster this connector belongs to 13183 jsonPath: .metadata.labels.strimzi\.io/cluster 13184 type: string 13185 - name: Connector class 13186 description: The class used by this connector 13187 jsonPath: .spec.class 13188 type: string 13189 - name: Max Tasks 13190 description: Maximum number of tasks 13191 jsonPath: .spec.tasksMax 13192 type: integer 13193 - name: Ready 13194 description: The state of the custom resource 13195 jsonPath: '.status.conditions[?(@.type=="Ready")].status' 13196 type: string 13197 schema: 13198 openAPIV3Schema: 13199 type: object 13200 properties: 13201 spec: 13202 type: object 13203 properties: 13204 class: 13205 type: string 13206 description: The Class for the Kafka Connector. 13207 tasksMax: 13208 type: integer 13209 minimum: 1 13210 description: The maximum number of tasks for the Kafka Connector. 13211 config: 13212 x-kubernetes-preserve-unknown-fields: true 13213 type: object 13214 description: >- 13215 The Kafka Connector configuration. The following properties 13216 cannot be set: connector.class, tasks.max. 13217 pause: 13218 type: boolean 13219 description: Whether the connector should be paused. Defaults to false. 13220 description: The specification of the Kafka Connector. 13221 status: 13222 type: object 13223 properties: 13224 conditions: 13225 type: array 13226 items: 13227 type: object 13228 properties: 13229 type: 13230 type: string 13231 description: >- 13232 The unique identifier of a condition, used to 13233 distinguish between other conditions in the resource. 13234 status: 13235 type: string 13236 description: >- 13237 The status of the condition, either True, False or 13238 Unknown. 13239 lastTransitionTime: 13240 type: string 13241 description: >- 13242 Last time the condition of a type changed from one 13243 status to another. The required format is 13244 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone. 13245 reason: 13246 type: string 13247 description: >- 13248 The reason for the condition's last transition (a 13249 single word in CamelCase). 13250 message: 13251 type: string 13252 description: >- 13253 Human-readable message indicating details about the 13254 condition's last transition. 13255 description: List of status conditions. 13256 observedGeneration: 13257 type: integer 13258 description: >- 13259 The generation of the CRD that was last reconciled by the 13260 operator. 13261 connectorStatus: 13262 x-kubernetes-preserve-unknown-fields: true 13263 type: object 13264 description: >- 13265 The connector status, as reported by the Kafka Connect REST 13266 API. 13267 tasksMax: 13268 type: integer 13269 description: The maximum number of tasks for the Kafka Connector. 13270 topics: 13271 type: array 13272 items: 13273 type: string 13274 description: The list of topics used by the Kafka Connector. 13275 description: The status of the Kafka Connector. 13276 13277 --- 13278 apiVersion: rbac.authorization.k8s.io/v1 13279 kind: ClusterRole 13280 metadata: 13281 name: strimzi-entity-operator 13282 labels: 13283 app: strimzi 13284 rules: 13285 - apiGroups: 13286 - kafka.strimzi.io 13287 resources: 13288 - kafkatopics 13289 - kafkatopics/status 13290 - kafkausers 13291 - kafkausers/status 13292 verbs: 13293 - get 13294 - list 13295 - watch 13296 - create 13297 - patch 13298 - update 13299 - delete 13300 - apiGroups: 13301 - '' 13302 resources: 13303 - events 13304 verbs: 13305 - create 13306 - apiGroups: 13307 - '' 13308 resources: 13309 - secrets 13310 verbs: 13311 - get 13312 - list 13313 - watch 13314 - create 13315 - delete 13316 - patch 13317 - update 13318 13319 --- 13320 apiVersion: rbac.authorization.k8s.io/v1 13321 kind: ClusterRole 13322 metadata: 13323 name: strimzi-cluster-operator-global 13324 labels: 13325 app: strimzi 13326 rules: 13327 - apiGroups: 13328 - rbac.authorization.k8s.io 13329 resources: 13330 - clusterrolebindings 13331 verbs: 13332 - get 13333 - list 13334 - watch 13335 - create 13336 - delete 13337 - patch 13338 - update 13339 - apiGroups: 13340 - storage.k8s.io 13341 resources: 13342 - storageclasses 13343 verbs: 13344 - get 13345 - apiGroups: 13346 - '' 13347 resources: 13348 - nodes 13349 verbs: 13350 - list 13351 13352 --- 13353 apiVersion: rbac.authorization.k8s.io/v1 13354 kind: ClusterRoleBinding 13355 metadata: 13356 name: strimzi-cluster-operator-kafka-client-delegation 13357 labels: 13358 app: strimzi 13359 subjects: 13360 - kind: ServiceAccount 13361 name: strimzi-cluster-operator 13362 namespace: kafka 13363 roleRef: 13364 kind: ClusterRole 13365 name: strimzi-kafka-client 13366 apiGroup: rbac.authorization.k8s.io 13367 13368 --- 13369 apiVersion: apiextensions.k8s.io/v1 13370 kind: CustomResourceDefinition 13371 metadata: 13372 name: kafkamirrormakers.kafka.strimzi.io 13373 labels: 13374 app: strimzi 13375 strimzi.io/crd-install: 'true' 13376 spec: 13377 group: kafka.strimzi.io 13378 names: 13379 kind: KafkaMirrorMaker 13380 listKind: KafkaMirrorMakerList 13381 singular: kafkamirrormaker 13382 plural: kafkamirrormakers 13383 shortNames: 13384 - kmm 13385 categories: 13386 - strimzi 13387 scope: Namespaced 13388 conversion: 13389 strategy: None 13390 versions: 13391 - name: v1beta2 13392 served: true 13393 storage: true 13394 subresources: 13395 status: {} 13396 scale: 13397 specReplicasPath: .spec.replicas 13398 statusReplicasPath: .status.replicas 13399 labelSelectorPath: .status.labelSelector 13400 additionalPrinterColumns: 13401 - name: Desired replicas 13402 description: The desired number of Kafka MirrorMaker replicas 13403 jsonPath: .spec.replicas 13404 type: integer 13405 - name: Consumer Bootstrap Servers 13406 description: The boostrap servers for the consumer 13407 jsonPath: .spec.consumer.bootstrapServers 13408 type: string 13409 priority: 1 13410 - name: Producer Bootstrap Servers 13411 description: The boostrap servers for the producer 13412 jsonPath: .spec.producer.bootstrapServers 13413 type: string 13414 priority: 1 13415 - name: Ready 13416 description: The state of the custom resource 13417 jsonPath: '.status.conditions[?(@.type=="Ready")].status' 13418 type: string 13419 schema: 13420 openAPIV3Schema: 13421 type: object 13422 properties: 13423 spec: 13424 type: object 13425 properties: 13426 version: 13427 type: string 13428 description: >- 13429 The Kafka MirrorMaker version. Defaults to 13430 {DefaultKafkaVersion}. Consult the documentation to 13431 understand the process required to upgrade or downgrade the 13432 version. 13433 replicas: 13434 type: integer 13435 minimum: 0 13436 description: The number of pods in the `Deployment`. 13437 image: 13438 type: string 13439 description: The docker image for the pods. 13440 consumer: 13441 type: object 13442 properties: 13443 numStreams: 13444 type: integer 13445 minimum: 1 13446 description: >- 13447 Specifies the number of consumer stream threads to 13448 create. 13449 offsetCommitInterval: 13450 type: integer 13451 description: >- 13452 Specifies the offset auto-commit interval in ms. Default 13453 value is 60000. 13454 bootstrapServers: 13455 type: string 13456 description: >- 13457 A list of host:port pairs for establishing the initial 13458 connection to the Kafka cluster. 13459 groupId: 13460 type: string 13461 description: >- 13462 A unique string that identifies the consumer group this 13463 consumer belongs to. 13464 authentication: 13465 type: object 13466 properties: 13467 accessToken: 13468 type: object 13469 properties: 13470 key: 13471 type: string 13472 description: >- 13473 The key under which the secret value is stored 13474 in the Kubernetes Secret. 13475 secretName: 13476 type: string 13477 description: >- 13478 The name of the Kubernetes Secret containing the 13479 secret value. 13480 required: 13481 - key 13482 - secretName 13483 description: >- 13484 Link to Kubernetes Secret containing the access 13485 token which was obtained from the authorization 13486 server. 13487 accessTokenIsJwt: 13488 type: boolean 13489 description: >- 13490 Configure whether access token should be treated as 13491 JWT. This should be set to `false` if the 13492 authorization server returns opaque tokens. Defaults 13493 to `true`. 13494 audience: 13495 type: string 13496 description: >- 13497 OAuth audience to use when authenticating against 13498 the authorization server. Some authorization servers 13499 require the audience to be explicitly set. The 13500 possible values depend on how the authorization 13501 server is configured. By default, `audience` is not 13502 specified when performing the token endpoint 13503 request. 13504 certificateAndKey: 13505 type: object 13506 properties: 13507 certificate: 13508 type: string 13509 description: The name of the file certificate in the Secret. 13510 key: 13511 type: string 13512 description: The name of the private key in the Secret. 13513 secretName: 13514 type: string 13515 description: >- 13516 The name of the Secret containing the 13517 certificate. 13518 required: 13519 - certificate 13520 - key 13521 - secretName 13522 description: >- 13523 Reference to the `Secret` which holds the 13524 certificate and private key pair. 13525 clientId: 13526 type: string 13527 description: >- 13528 OAuth Client ID which the Kafka client can use to 13529 authenticate against the OAuth server and use the 13530 token endpoint URI. 13531 clientSecret: 13532 type: object 13533 properties: 13534 key: 13535 type: string 13536 description: >- 13537 The key under which the secret value is stored 13538 in the Kubernetes Secret. 13539 secretName: 13540 type: string 13541 description: >- 13542 The name of the Kubernetes Secret containing the 13543 secret value. 13544 required: 13545 - key 13546 - secretName 13547 description: >- 13548 Link to Kubernetes Secret containing the OAuth 13549 client secret which the Kafka client can use to 13550 authenticate against the OAuth server and use the 13551 token endpoint URI. 13552 connectTimeoutSeconds: 13553 type: integer 13554 description: >- 13555 The connect timeout in seconds when connecting to 13556 authorization server. If not set, the effective 13557 connect timeout is 60 seconds. 13558 disableTlsHostnameVerification: 13559 type: boolean 13560 description: >- 13561 Enable or disable TLS hostname verification. Default 13562 value is `false`. 13563 maxTokenExpirySeconds: 13564 type: integer 13565 description: >- 13566 Set or limit time-to-live of the access tokens to 13567 the specified number of seconds. This should be set 13568 if the authorization server returns opaque tokens. 13569 passwordSecret: 13570 type: object 13571 properties: 13572 password: 13573 type: string 13574 description: >- 13575 The name of the key in the Secret under which 13576 the password is stored. 13577 secretName: 13578 type: string 13579 description: The name of the Secret containing the password. 13580 required: 13581 - password 13582 - secretName 13583 description: Reference to the `Secret` which holds the password. 13584 readTimeoutSeconds: 13585 type: integer 13586 description: >- 13587 The read timeout in seconds when connecting to 13588 authorization server. If not set, the effective read 13589 timeout is 60 seconds. 13590 refreshToken: 13591 type: object 13592 properties: 13593 key: 13594 type: string 13595 description: >- 13596 The key under which the secret value is stored 13597 in the Kubernetes Secret. 13598 secretName: 13599 type: string 13600 description: >- 13601 The name of the Kubernetes Secret containing the 13602 secret value. 13603 required: 13604 - key 13605 - secretName 13606 description: >- 13607 Link to Kubernetes Secret containing the refresh 13608 token which can be used to obtain access token from 13609 the authorization server. 13610 scope: 13611 type: string 13612 description: >- 13613 OAuth scope to use when authenticating against the 13614 authorization server. Some authorization servers 13615 require this to be set. The possible values depend 13616 on how authorization server is configured. By 13617 default `scope` is not specified when doing the 13618 token endpoint request. 13619 tlsTrustedCertificates: 13620 type: array 13621 items: 13622 type: object 13623 properties: 13624 certificate: 13625 type: string 13626 description: >- 13627 The name of the file certificate in the 13628 Secret. 13629 secretName: 13630 type: string 13631 description: >- 13632 The name of the Secret containing the 13633 certificate. 13634 required: 13635 - certificate 13636 - secretName 13637 description: >- 13638 Trusted certificates for TLS connection to the OAuth 13639 server. 13640 tokenEndpointUri: 13641 type: string 13642 description: Authorization server token endpoint URI. 13643 type: 13644 type: string 13645 enum: 13646 - tls 13647 - scram-sha-256 13648 - scram-sha-512 13649 - plain 13650 - oauth 13651 description: >- 13652 Authentication type. Currently the only supported 13653 types are `tls`, `scram-sha-256`, `scram-sha-512`, 13654 and `plain`. `scram-sha-256` and `scram-sha-512` 13655 types use SASL SCRAM-SHA-256 and SASL SCRAM-SHA-512 13656 Authentication, respectively. `plain` type uses SASL 13657 PLAIN Authentication. `oauth` type uses SASL 13658 OAUTHBEARER Authentication. The `tls` type uses TLS 13659 Client Authentication. The `tls` type is supported 13660 only over TLS connections. 13661 username: 13662 type: string 13663 description: Username used for the authentication. 13664 required: 13665 - type 13666 description: >- 13667 Authentication configuration for connecting to the 13668 cluster. 13669 config: 13670 x-kubernetes-preserve-unknown-fields: true 13671 type: object 13672 description: >- 13673 The MirrorMaker consumer config. Properties with the 13674 following prefixes cannot be set: ssl., 13675 bootstrap.servers, group.id, sasl., security., 13676 interceptor.classes (with the exception of: 13677 ssl.endpoint.identification.algorithm, 13678 ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols). 13679 tls: 13680 type: object 13681 properties: 13682 trustedCertificates: 13683 type: array 13684 items: 13685 type: object 13686 properties: 13687 certificate: 13688 type: string 13689 description: >- 13690 The name of the file certificate in the 13691 Secret. 13692 secretName: 13693 type: string 13694 description: >- 13695 The name of the Secret containing the 13696 certificate. 13697 required: 13698 - certificate 13699 - secretName 13700 description: Trusted certificates for TLS connection. 13701 description: >- 13702 TLS configuration for connecting MirrorMaker to the 13703 cluster. 13704 required: 13705 - bootstrapServers 13706 - groupId 13707 description: Configuration of source cluster. 13708 producer: 13709 type: object 13710 properties: 13711 bootstrapServers: 13712 type: string 13713 description: >- 13714 A list of host:port pairs for establishing the initial 13715 connection to the Kafka cluster. 13716 abortOnSendFailure: 13717 type: boolean 13718 description: >- 13719 Flag to set the MirrorMaker to exit on a failed send. 13720 Default value is `true`. 13721 authentication: 13722 type: object 13723 properties: 13724 accessToken: 13725 type: object 13726 properties: 13727 key: 13728 type: string 13729 description: >- 13730 The key under which the secret value is stored 13731 in the Kubernetes Secret. 13732 secretName: 13733 type: string 13734 description: >- 13735 The name of the Kubernetes Secret containing the 13736 secret value. 13737 required: 13738 - key 13739 - secretName 13740 description: >- 13741 Link to Kubernetes Secret containing the access 13742 token which was obtained from the authorization 13743 server. 13744 accessTokenIsJwt: 13745 type: boolean 13746 description: >- 13747 Configure whether access token should be treated as 13748 JWT. This should be set to `false` if the 13749 authorization server returns opaque tokens. Defaults 13750 to `true`. 13751 audience: 13752 type: string 13753 description: >- 13754 OAuth audience to use when authenticating against 13755 the authorization server. Some authorization servers 13756 require the audience to be explicitly set. The 13757 possible values depend on how the authorization 13758 server is configured. By default, `audience` is not 13759 specified when performing the token endpoint 13760 request. 13761 certificateAndKey: 13762 type: object 13763 properties: 13764 certificate: 13765 type: string 13766 description: The name of the file certificate in the Secret. 13767 key: 13768 type: string 13769 description: The name of the private key in the Secret. 13770 secretName: 13771 type: string 13772 description: >- 13773 The name of the Secret containing the 13774 certificate. 13775 required: 13776 - certificate 13777 - key 13778 - secretName 13779 description: >- 13780 Reference to the `Secret` which holds the 13781 certificate and private key pair. 13782 clientId: 13783 type: string 13784 description: >- 13785 OAuth Client ID which the Kafka client can use to 13786 authenticate against the OAuth server and use the 13787 token endpoint URI. 13788 clientSecret: 13789 type: object 13790 properties: 13791 key: 13792 type: string 13793 description: >- 13794 The key under which the secret value is stored 13795 in the Kubernetes Secret. 13796 secretName: 13797 type: string 13798 description: >- 13799 The name of the Kubernetes Secret containing the 13800 secret value. 13801 required: 13802 - key 13803 - secretName 13804 description: >- 13805 Link to Kubernetes Secret containing the OAuth 13806 client secret which the Kafka client can use to 13807 authenticate against the OAuth server and use the 13808 token endpoint URI. 13809 connectTimeoutSeconds: 13810 type: integer 13811 description: >- 13812 The connect timeout in seconds when connecting to 13813 authorization server. If not set, the effective 13814 connect timeout is 60 seconds. 13815 disableTlsHostnameVerification: 13816 type: boolean 13817 description: >- 13818 Enable or disable TLS hostname verification. Default 13819 value is `false`. 13820 maxTokenExpirySeconds: 13821 type: integer 13822 description: >- 13823 Set or limit time-to-live of the access tokens to 13824 the specified number of seconds. This should be set 13825 if the authorization server returns opaque tokens. 13826 passwordSecret: 13827 type: object 13828 properties: 13829 password: 13830 type: string 13831 description: >- 13832 The name of the key in the Secret under which 13833 the password is stored. 13834 secretName: 13835 type: string 13836 description: The name of the Secret containing the password. 13837 required: 13838 - password 13839 - secretName 13840 description: Reference to the `Secret` which holds the password. 13841 readTimeoutSeconds: 13842 type: integer 13843 description: >- 13844 The read timeout in seconds when connecting to 13845 authorization server. If not set, the effective read 13846 timeout is 60 seconds. 13847 refreshToken: 13848 type: object 13849 properties: 13850 key: 13851 type: string 13852 description: >- 13853 The key under which the secret value is stored 13854 in the Kubernetes Secret. 13855 secretName: 13856 type: string 13857 description: >- 13858 The name of the Kubernetes Secret containing the 13859 secret value. 13860 required: 13861 - key 13862 - secretName 13863 description: >- 13864 Link to Kubernetes Secret containing the refresh 13865 token which can be used to obtain access token from 13866 the authorization server. 13867 scope: 13868 type: string 13869 description: >- 13870 OAuth scope to use when authenticating against the 13871 authorization server. Some authorization servers 13872 require this to be set. The possible values depend 13873 on how authorization server is configured. By 13874 default `scope` is not specified when doing the 13875 token endpoint request. 13876 tlsTrustedCertificates: 13877 type: array 13878 items: 13879 type: object 13880 properties: 13881 certificate: 13882 type: string 13883 description: >- 13884 The name of the file certificate in the 13885 Secret. 13886 secretName: 13887 type: string 13888 description: >- 13889 The name of the Secret containing the 13890 certificate. 13891 required: 13892 - certificate 13893 - secretName 13894 description: >- 13895 Trusted certificates for TLS connection to the OAuth 13896 server. 13897 tokenEndpointUri: 13898 type: string 13899 description: Authorization server token endpoint URI. 13900 type: 13901 type: string 13902 enum: 13903 - tls 13904 - scram-sha-256 13905 - scram-sha-512 13906 - plain 13907 - oauth 13908 description: >- 13909 Authentication type. Currently the only supported 13910 types are `tls`, `scram-sha-256`, `scram-sha-512`, 13911 and `plain`. `scram-sha-256` and `scram-sha-512` 13912 types use SASL SCRAM-SHA-256 and SASL SCRAM-SHA-512 13913 Authentication, respectively. `plain` type uses SASL 13914 PLAIN Authentication. `oauth` type uses SASL 13915 OAUTHBEARER Authentication. The `tls` type uses TLS 13916 Client Authentication. The `tls` type is supported 13917 only over TLS connections. 13918 username: 13919 type: string 13920 description: Username used for the authentication. 13921 required: 13922 - type 13923 description: >- 13924 Authentication configuration for connecting to the 13925 cluster. 13926 config: 13927 x-kubernetes-preserve-unknown-fields: true 13928 type: object 13929 description: >- 13930 The MirrorMaker producer config. Properties with the 13931 following prefixes cannot be set: ssl., 13932 bootstrap.servers, sasl., security., interceptor.classes 13933 (with the exception of: 13934 ssl.endpoint.identification.algorithm, 13935 ssl.cipher.suites, ssl.protocol, ssl.enabled.protocols). 13936 tls: 13937 type: object 13938 properties: 13939 trustedCertificates: 13940 type: array 13941 items: 13942 type: object 13943 properties: 13944 certificate: 13945 type: string 13946 description: >- 13947 The name of the file certificate in the 13948 Secret. 13949 secretName: 13950 type: string 13951 description: >- 13952 The name of the Secret containing the 13953 certificate. 13954 required: 13955 - certificate 13956 - secretName 13957 description: Trusted certificates for TLS connection. 13958 description: >- 13959 TLS configuration for connecting MirrorMaker to the 13960 cluster. 13961 required: 13962 - bootstrapServers 13963 description: Configuration of target cluster. 13964 resources: 13965 type: object 13966 properties: 13967 limits: 13968 x-kubernetes-preserve-unknown-fields: true 13969 type: object 13970 requests: 13971 x-kubernetes-preserve-unknown-fields: true 13972 type: object 13973 description: CPU and memory resources to reserve. 13974 whitelist: 13975 type: string 13976 description: >- 13977 List of topics which are included for mirroring. This option 13978 allows any regular expression using Java-style regular 13979 expressions. Mirroring two topics named A and B is achieved 13980 by using the expression `A\|B`. Or, as a special case, you 13981 can mirror all topics using the regular expression `*`. You 13982 can also specify multiple regular expressions separated by 13983 commas. 13984 include: 13985 type: string 13986 description: >- 13987 List of topics which are included for mirroring. This option 13988 allows any regular expression using Java-style regular 13989 expressions. Mirroring two topics named A and B is achieved 13990 by using the expression `A\|B`. Or, as a special case, you 13991 can mirror all topics using the regular expression `*`. You 13992 can also specify multiple regular expressions separated by 13993 commas. 13994 jvmOptions: 13995 type: object 13996 properties: 13997 '-XX': 13998 x-kubernetes-preserve-unknown-fields: true 13999 type: object 14000 description: A map of -XX options to the JVM. 14001 '-Xms': 14002 type: string 14003 pattern: '^[0-9]+[mMgG]?$' 14004 description: '-Xms option to to the JVM.' 14005 '-Xmx': 14006 type: string 14007 pattern: '^[0-9]+[mMgG]?$' 14008 description: '-Xmx option to to the JVM.' 14009 gcLoggingEnabled: 14010 type: boolean 14011 description: >- 14012 Specifies whether the Garbage Collection logging is 14013 enabled. The default is false. 14014 javaSystemProperties: 14015 type: array 14016 items: 14017 type: object 14018 properties: 14019 name: 14020 type: string 14021 description: The system property name. 14022 value: 14023 type: string 14024 description: The system property value. 14025 description: >- 14026 A map of additional system properties which will be 14027 passed using the `-D` option to the JVM. 14028 description: JVM Options for pods. 14029 logging: 14030 type: object 14031 properties: 14032 loggers: 14033 x-kubernetes-preserve-unknown-fields: true 14034 type: object 14035 description: A Map from logger name to logger level. 14036 type: 14037 type: string 14038 enum: 14039 - inline 14040 - external 14041 description: 'Logging type, must be either ''inline'' or ''external''.' 14042 valueFrom: 14043 type: object 14044 properties: 14045 configMapKeyRef: 14046 type: object 14047 properties: 14048 key: 14049 type: string 14050 name: 14051 type: string 14052 optional: 14053 type: boolean 14054 description: >- 14055 Reference to the key in the ConfigMap containing the 14056 configuration. 14057 description: >- 14058 `ConfigMap` entry where the logging configuration is 14059 stored. 14060 required: 14061 - type 14062 description: Logging configuration for MirrorMaker. 14063 metricsConfig: 14064 type: object 14065 properties: 14066 type: 14067 type: string 14068 enum: 14069 - jmxPrometheusExporter 14070 description: >- 14071 Metrics type. Only 'jmxPrometheusExporter' supported 14072 currently. 14073 valueFrom: 14074 type: object 14075 properties: 14076 configMapKeyRef: 14077 type: object 14078 properties: 14079 key: 14080 type: string 14081 name: 14082 type: string 14083 optional: 14084 type: boolean 14085 description: >- 14086 Reference to the key in the ConfigMap containing the 14087 configuration. 14088 description: >- 14089 ConfigMap entry where the Prometheus JMX Exporter 14090 configuration is stored. For details of the structure of 14091 this configuration, see the {JMXExporter}. 14092 required: 14093 - type 14094 - valueFrom 14095 description: Metrics configuration. 14096 tracing: 14097 type: object 14098 properties: 14099 type: 14100 type: string 14101 enum: 14102 - jaeger 14103 description: >- 14104 Type of the tracing used. Currently the only supported 14105 type is `jaeger` for Jaeger tracing. 14106 required: 14107 - type 14108 description: The configuration of tracing in Kafka MirrorMaker. 14109 template: 14110 type: object 14111 properties: 14112 deployment: 14113 type: object 14114 properties: 14115 metadata: 14116 type: object 14117 properties: 14118 labels: 14119 x-kubernetes-preserve-unknown-fields: true 14120 type: object 14121 description: >- 14122 Labels added to the resource template. Can be 14123 applied to different resources such as 14124 `StatefulSets`, `Deployments`, `Pods`, and 14125 `Services`. 14126 annotations: 14127 x-kubernetes-preserve-unknown-fields: true 14128 type: object 14129 description: >- 14130 Annotations added to the resource template. Can 14131 be applied to different resources such as 14132 `StatefulSets`, `Deployments`, `Pods`, and 14133 `Services`. 14134 description: Metadata applied to the resource. 14135 deploymentStrategy: 14136 type: string 14137 enum: 14138 - RollingUpdate 14139 - Recreate 14140 description: >- 14141 DeploymentStrategy which will be used for this 14142 Deployment. Valid values are `RollingUpdate` and 14143 `Recreate`. Defaults to `RollingUpdate`. 14144 description: Template for Kafka MirrorMaker `Deployment`. 14145 pod: 14146 type: object 14147 properties: 14148 metadata: 14149 type: object 14150 properties: 14151 labels: 14152 x-kubernetes-preserve-unknown-fields: true 14153 type: object 14154 description: >- 14155 Labels added to the resource template. Can be 14156 applied to different resources such as 14157 `StatefulSets`, `Deployments`, `Pods`, and 14158 `Services`. 14159 annotations: 14160 x-kubernetes-preserve-unknown-fields: true 14161 type: object 14162 description: >- 14163 Annotations added to the resource template. Can 14164 be applied to different resources such as 14165 `StatefulSets`, `Deployments`, `Pods`, and 14166 `Services`. 14167 description: Metadata applied to the resource. 14168 imagePullSecrets: 14169 type: array 14170 items: 14171 type: object 14172 properties: 14173 name: 14174 type: string 14175 description: >- 14176 List of references to secrets in the same namespace 14177 to use for pulling any of the images used by this 14178 Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` 14179 environment variable in Cluster Operator and the 14180 `imagePullSecrets` option are specified, only the 14181 `imagePullSecrets` variable is used and the 14182 `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored. 14183 securityContext: 14184 type: object 14185 properties: 14186 fsGroup: 14187 type: integer 14188 fsGroupChangePolicy: 14189 type: string 14190 runAsGroup: 14191 type: integer 14192 runAsNonRoot: 14193 type: boolean 14194 runAsUser: 14195 type: integer 14196 seLinuxOptions: 14197 type: object 14198 properties: 14199 level: 14200 type: string 14201 role: 14202 type: string 14203 type: 14204 type: string 14205 user: 14206 type: string 14207 seccompProfile: 14208 type: object 14209 properties: 14210 localhostProfile: 14211 type: string 14212 type: 14213 type: string 14214 supplementalGroups: 14215 type: array 14216 items: 14217 type: integer 14218 sysctls: 14219 type: array 14220 items: 14221 type: object 14222 properties: 14223 name: 14224 type: string 14225 value: 14226 type: string 14227 windowsOptions: 14228 type: object 14229 properties: 14230 gmsaCredentialSpec: 14231 type: string 14232 gmsaCredentialSpecName: 14233 type: string 14234 hostProcess: 14235 type: boolean 14236 runAsUserName: 14237 type: string 14238 description: >- 14239 Configures pod-level security attributes and common 14240 container settings. 14241 terminationGracePeriodSeconds: 14242 type: integer 14243 minimum: 0 14244 description: >- 14245 The grace period is the duration in seconds after 14246 the processes running in the pod are sent a 14247 termination signal, and the time when the processes 14248 are forcibly halted with a kill signal. Set this 14249 value to longer than the expected cleanup time for 14250 your process. Value must be a non-negative integer. 14251 A zero value indicates delete immediately. You might 14252 need to increase the grace period for very large 14253 Kafka clusters, so that the Kafka brokers have 14254 enough time to transfer their work to another broker 14255 before they are terminated. Defaults to 30 seconds. 14256 affinity: 14257 type: object 14258 properties: 14259 nodeAffinity: 14260 type: object 14261 properties: 14262 preferredDuringSchedulingIgnoredDuringExecution: 14263 type: array 14264 items: 14265 type: object 14266 properties: 14267 preference: 14268 type: object 14269 properties: 14270 matchExpressions: 14271 type: array 14272 items: 14273 type: object 14274 properties: 14275 key: 14276 type: string 14277 operator: 14278 type: string 14279 values: 14280 type: array 14281 items: 14282 type: string 14283 matchFields: 14284 type: array 14285 items: 14286 type: object 14287 properties: 14288 key: 14289 type: string 14290 operator: 14291 type: string 14292 values: 14293 type: array 14294 items: 14295 type: string 14296 weight: 14297 type: integer 14298 requiredDuringSchedulingIgnoredDuringExecution: 14299 type: object 14300 properties: 14301 nodeSelectorTerms: 14302 type: array 14303 items: 14304 type: object 14305 properties: 14306 matchExpressions: 14307 type: array 14308 items: 14309 type: object 14310 properties: 14311 key: 14312 type: string 14313 operator: 14314 type: string 14315 values: 14316 type: array 14317 items: 14318 type: string 14319 matchFields: 14320 type: array 14321 items: 14322 type: object 14323 properties: 14324 key: 14325 type: string 14326 operator: 14327 type: string 14328 values: 14329 type: array 14330 items: 14331 type: string 14332 podAffinity: 14333 type: object 14334 properties: 14335 preferredDuringSchedulingIgnoredDuringExecution: 14336 type: array 14337 items: 14338 type: object 14339 properties: 14340 podAffinityTerm: 14341 type: object 14342 properties: 14343 labelSelector: 14344 type: object 14345 properties: 14346 matchExpressions: 14347 type: array 14348 items: 14349 type: object 14350 properties: 14351 key: 14352 type: string 14353 operator: 14354 type: string 14355 values: 14356 type: array 14357 items: 14358 type: string 14359 matchLabels: 14360 x-kubernetes-preserve-unknown-fields: true 14361 type: object 14362 namespaceSelector: 14363 type: object 14364 properties: 14365 matchExpressions: 14366 type: array 14367 items: 14368 type: object 14369 properties: 14370 key: 14371 type: string 14372 operator: 14373 type: string 14374 values: 14375 type: array 14376 items: 14377 type: string 14378 matchLabels: 14379 x-kubernetes-preserve-unknown-fields: true 14380 type: object 14381 namespaces: 14382 type: array 14383 items: 14384 type: string 14385 topologyKey: 14386 type: string 14387 weight: 14388 type: integer 14389 requiredDuringSchedulingIgnoredDuringExecution: 14390 type: array 14391 items: 14392 type: object 14393 properties: 14394 labelSelector: 14395 type: object 14396 properties: 14397 matchExpressions: 14398 type: array 14399 items: 14400 type: object 14401 properties: 14402 key: 14403 type: string 14404 operator: 14405 type: string 14406 values: 14407 type: array 14408 items: 14409 type: string 14410 matchLabels: 14411 x-kubernetes-preserve-unknown-fields: true 14412 type: object 14413 namespaceSelector: 14414 type: object 14415 properties: 14416 matchExpressions: 14417 type: array 14418 items: 14419 type: object 14420 properties: 14421 key: 14422 type: string 14423 operator: 14424 type: string 14425 values: 14426 type: array 14427 items: 14428 type: string 14429 matchLabels: 14430 x-kubernetes-preserve-unknown-fields: true 14431 type: object 14432 namespaces: 14433 type: array 14434 items: 14435 type: string 14436 topologyKey: 14437 type: string 14438 podAntiAffinity: 14439 type: object 14440 properties: 14441 preferredDuringSchedulingIgnoredDuringExecution: 14442 type: array 14443 items: 14444 type: object 14445 properties: 14446 podAffinityTerm: 14447 type: object 14448 properties: 14449 labelSelector: 14450 type: object 14451 properties: 14452 matchExpressions: 14453 type: array 14454 items: 14455 type: object 14456 properties: 14457 key: 14458 type: string 14459 operator: 14460 type: string 14461 values: 14462 type: array 14463 items: 14464 type: string 14465 matchLabels: 14466 x-kubernetes-preserve-unknown-fields: true 14467 type: object 14468 namespaceSelector: 14469 type: object 14470 properties: 14471 matchExpressions: 14472 type: array 14473 items: 14474 type: object 14475 properties: 14476 key: 14477 type: string 14478 operator: 14479 type: string 14480 values: 14481 type: array 14482 items: 14483 type: string 14484 matchLabels: 14485 x-kubernetes-preserve-unknown-fields: true 14486 type: object 14487 namespaces: 14488 type: array 14489 items: 14490 type: string 14491 topologyKey: 14492 type: string 14493 weight: 14494 type: integer 14495 requiredDuringSchedulingIgnoredDuringExecution: 14496 type: array 14497 items: 14498 type: object 14499 properties: 14500 labelSelector: 14501 type: object 14502 properties: 14503 matchExpressions: 14504 type: array 14505 items: 14506 type: object 14507 properties: 14508 key: 14509 type: string 14510 operator: 14511 type: string 14512 values: 14513 type: array 14514 items: 14515 type: string 14516 matchLabels: 14517 x-kubernetes-preserve-unknown-fields: true 14518 type: object 14519 namespaceSelector: 14520 type: object 14521 properties: 14522 matchExpressions: 14523 type: array 14524 items: 14525 type: object 14526 properties: 14527 key: 14528 type: string 14529 operator: 14530 type: string 14531 values: 14532 type: array 14533 items: 14534 type: string 14535 matchLabels: 14536 x-kubernetes-preserve-unknown-fields: true 14537 type: object 14538 namespaces: 14539 type: array 14540 items: 14541 type: string 14542 topologyKey: 14543 type: string 14544 description: The pod's affinity rules. 14545 tolerations: 14546 type: array 14547 items: 14548 type: object 14549 properties: 14550 effect: 14551 type: string 14552 key: 14553 type: string 14554 operator: 14555 type: string 14556 tolerationSeconds: 14557 type: integer 14558 value: 14559 type: string 14560 description: The pod's tolerations. 14561 priorityClassName: 14562 type: string 14563 description: >- 14564 The name of the priority class used to assign 14565 priority to the pods. For more information about 14566 priority classes, see {K8sPriorityClass}. 14567 schedulerName: 14568 type: string 14569 description: >- 14570 The name of the scheduler used to dispatch this 14571 `Pod`. If not specified, the default scheduler will 14572 be used. 14573 hostAliases: 14574 type: array 14575 items: 14576 type: object 14577 properties: 14578 hostnames: 14579 type: array 14580 items: 14581 type: string 14582 ip: 14583 type: string 14584 description: >- 14585 The pod's HostAliases. HostAliases is an optional 14586 list of hosts and IPs that will be injected into the 14587 Pod's hosts file if specified. 14588 tmpDirSizeLimit: 14589 type: string 14590 pattern: '^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$' 14591 description: >- 14592 Defines the total amount (for example `1Gi`) of 14593 local storage required for temporary EmptyDir volume 14594 (`/tmp`). Default value is `1Mi`. 14595 enableServiceLinks: 14596 type: boolean 14597 description: >- 14598 Indicates whether information about services should 14599 be injected into Pod's environment variables. 14600 topologySpreadConstraints: 14601 type: array 14602 items: 14603 type: object 14604 properties: 14605 labelSelector: 14606 type: object 14607 properties: 14608 matchExpressions: 14609 type: array 14610 items: 14611 type: object 14612 properties: 14613 key: 14614 type: string 14615 operator: 14616 type: string 14617 values: 14618 type: array 14619 items: 14620 type: string 14621 matchLabels: 14622 x-kubernetes-preserve-unknown-fields: true 14623 type: object 14624 maxSkew: 14625 type: integer 14626 topologyKey: 14627 type: string 14628 whenUnsatisfiable: 14629 type: string 14630 description: The pod's topology spread constraints. 14631 description: Template for Kafka MirrorMaker `Pods`. 14632 podDisruptionBudget: 14633 type: object 14634 properties: 14635 metadata: 14636 type: object 14637 properties: 14638 labels: 14639 x-kubernetes-preserve-unknown-fields: true 14640 type: object 14641 description: >- 14642 Labels added to the resource template. Can be 14643 applied to different resources such as 14644 `StatefulSets`, `Deployments`, `Pods`, and 14645 `Services`. 14646 annotations: 14647 x-kubernetes-preserve-unknown-fields: true 14648 type: object 14649 description: >- 14650 Annotations added to the resource template. Can 14651 be applied to different resources such as 14652 `StatefulSets`, `Deployments`, `Pods`, and 14653 `Services`. 14654 description: >- 14655 Metadata to apply to the 14656 `PodDisruptionBudgetTemplate` resource. 14657 maxUnavailable: 14658 type: integer 14659 minimum: 0 14660 description: >- 14661 Maximum number of unavailable pods to allow 14662 automatic Pod eviction. A Pod eviction is allowed 14663 when the `maxUnavailable` number of pods or fewer 14664 are unavailable after the eviction. Setting this 14665 value to 0 prevents all voluntary evictions, so the 14666 pods must be evicted manually. Defaults to 1. 14667 description: Template for Kafka MirrorMaker `PodDisruptionBudget`. 14668 mirrorMakerContainer: 14669 type: object 14670 properties: 14671 env: 14672 type: array 14673 items: 14674 type: object 14675 properties: 14676 name: 14677 type: string 14678 description: The environment variable key. 14679 value: 14680 type: string 14681 description: The environment variable value. 14682 description: >- 14683 Environment variables which should be applied to the 14684 container. 14685 securityContext: 14686 type: object 14687 properties: 14688 allowPrivilegeEscalation: 14689 type: boolean 14690 capabilities: 14691 type: object 14692 properties: 14693 add: 14694 type: array 14695 items: 14696 type: string 14697 drop: 14698 type: array 14699 items: 14700 type: string 14701 privileged: 14702 type: boolean 14703 procMount: 14704 type: string 14705 readOnlyRootFilesystem: 14706 type: boolean 14707 runAsGroup: 14708 type: integer 14709 runAsNonRoot: 14710 type: boolean 14711 runAsUser: 14712 type: integer 14713 seLinuxOptions: 14714 type: object 14715 properties: 14716 level: 14717 type: string 14718 role: 14719 type: string 14720 type: 14721 type: string 14722 user: 14723 type: string 14724 seccompProfile: 14725 type: object 14726 properties: 14727 localhostProfile: 14728 type: string 14729 type: 14730 type: string 14731 windowsOptions: 14732 type: object 14733 properties: 14734 gmsaCredentialSpec: 14735 type: string 14736 gmsaCredentialSpecName: 14737 type: string 14738 hostProcess: 14739 type: boolean 14740 runAsUserName: 14741 type: string 14742 description: Security context for the container. 14743 description: Template for Kafka MirrorMaker container. 14744 serviceAccount: 14745 type: object 14746 properties: 14747 metadata: 14748 type: object 14749 properties: 14750 labels: 14751 x-kubernetes-preserve-unknown-fields: true 14752 type: object 14753 description: >- 14754 Labels added to the resource template. Can be 14755 applied to different resources such as 14756 `StatefulSets`, `Deployments`, `Pods`, and 14757 `Services`. 14758 annotations: 14759 x-kubernetes-preserve-unknown-fields: true 14760 type: object 14761 description: >- 14762 Annotations added to the resource template. Can 14763 be applied to different resources such as 14764 `StatefulSets`, `Deployments`, `Pods`, and 14765 `Services`. 14766 description: Metadata applied to the resource. 14767 description: Template for the Kafka MirrorMaker service account. 14768 description: >- 14769 Template to specify how Kafka MirrorMaker resources, 14770 `Deployments` and `Pods`, are generated. 14771 livenessProbe: 14772 type: object 14773 properties: 14774 failureThreshold: 14775 type: integer 14776 minimum: 1 14777 description: >- 14778 Minimum consecutive failures for the probe to be 14779 considered failed after having succeeded. Defaults to 3. 14780 Minimum value is 1. 14781 initialDelaySeconds: 14782 type: integer 14783 minimum: 0 14784 description: >- 14785 The initial delay before first the health is first 14786 checked. Default to 15 seconds. Minimum value is 0. 14787 periodSeconds: 14788 type: integer 14789 minimum: 1 14790 description: >- 14791 How often (in seconds) to perform the probe. Default to 14792 10 seconds. Minimum value is 1. 14793 successThreshold: 14794 type: integer 14795 minimum: 1 14796 description: >- 14797 Minimum consecutive successes for the probe to be 14798 considered successful after having failed. Defaults to 14799 1. Must be 1 for liveness. Minimum value is 1. 14800 timeoutSeconds: 14801 type: integer 14802 minimum: 1 14803 description: >- 14804 The timeout for each attempted health check. Default to 14805 5 seconds. Minimum value is 1. 14806 description: Pod liveness checking. 14807 readinessProbe: 14808 type: object 14809 properties: 14810 failureThreshold: 14811 type: integer 14812 minimum: 1 14813 description: >- 14814 Minimum consecutive failures for the probe to be 14815 considered failed after having succeeded. Defaults to 3. 14816 Minimum value is 1. 14817 initialDelaySeconds: 14818 type: integer 14819 minimum: 0 14820 description: >- 14821 The initial delay before first the health is first 14822 checked. Default to 15 seconds. Minimum value is 0. 14823 periodSeconds: 14824 type: integer 14825 minimum: 1 14826 description: >- 14827 How often (in seconds) to perform the probe. Default to 14828 10 seconds. Minimum value is 1. 14829 successThreshold: 14830 type: integer 14831 minimum: 1 14832 description: >- 14833 Minimum consecutive successes for the probe to be 14834 considered successful after having failed. Defaults to 14835 1. Must be 1 for liveness. Minimum value is 1. 14836 timeoutSeconds: 14837 type: integer 14838 minimum: 1 14839 description: >- 14840 The timeout for each attempted health check. Default to 14841 5 seconds. Minimum value is 1. 14842 description: Pod readiness checking. 14843 oneOf: 14844 - properties: 14845 include: {} 14846 required: 14847 - include 14848 - properties: 14849 whitelist: {} 14850 required: 14851 - whitelist 14852 required: 14853 - replicas 14854 - consumer 14855 - producer 14856 description: The specification of Kafka MirrorMaker. 14857 status: 14858 type: object 14859 properties: 14860 conditions: 14861 type: array 14862 items: 14863 type: object 14864 properties: 14865 type: 14866 type: string 14867 description: >- 14868 The unique identifier of a condition, used to 14869 distinguish between other conditions in the resource. 14870 status: 14871 type: string 14872 description: >- 14873 The status of the condition, either True, False or 14874 Unknown. 14875 lastTransitionTime: 14876 type: string 14877 description: >- 14878 Last time the condition of a type changed from one 14879 status to another. The required format is 14880 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone. 14881 reason: 14882 type: string 14883 description: >- 14884 The reason for the condition's last transition (a 14885 single word in CamelCase). 14886 message: 14887 type: string 14888 description: >- 14889 Human-readable message indicating details about the 14890 condition's last transition. 14891 description: List of status conditions. 14892 observedGeneration: 14893 type: integer 14894 description: >- 14895 The generation of the CRD that was last reconciled by the 14896 operator. 14897 labelSelector: 14898 type: string 14899 description: Label selector for pods providing this resource. 14900 replicas: 14901 type: integer 14902 description: >- 14903 The current number of pods being used to provide this 14904 resource. 14905 description: The status of Kafka MirrorMaker. 14906 14907 --- 14908 apiVersion: rbac.authorization.k8s.io/v1 14909 kind: ClusterRole 14910 metadata: 14911 name: strimzi-kafka-broker 14912 labels: 14913 app: strimzi 14914 rules: 14915 - apiGroups: 14916 - '' 14917 resources: 14918 - nodes 14919 verbs: 14920 - get 14921 14922 --- 14923 apiVersion: apiextensions.k8s.io/v1 14924 kind: CustomResourceDefinition 14925 metadata: 14926 name: kafkamirrormaker2s.kafka.strimzi.io 14927 labels: 14928 app: strimzi 14929 strimzi.io/crd-install: 'true' 14930 spec: 14931 group: kafka.strimzi.io 14932 names: 14933 kind: KafkaMirrorMaker2 14934 listKind: KafkaMirrorMaker2List 14935 singular: kafkamirrormaker2 14936 plural: kafkamirrormaker2s 14937 shortNames: 14938 - kmm2 14939 categories: 14940 - strimzi 14941 scope: Namespaced 14942 conversion: 14943 strategy: None 14944 versions: 14945 - name: v1beta2 14946 served: true 14947 storage: true 14948 subresources: 14949 status: {} 14950 scale: 14951 specReplicasPath: .spec.replicas 14952 statusReplicasPath: .status.replicas 14953 labelSelectorPath: .status.labelSelector 14954 additionalPrinterColumns: 14955 - name: Desired replicas 14956 description: The desired number of Kafka MirrorMaker 2.0 replicas 14957 jsonPath: .spec.replicas 14958 type: integer 14959 - name: Ready 14960 description: The state of the custom resource 14961 jsonPath: '.status.conditions[?(@.type=="Ready")].status' 14962 type: string 14963 schema: 14964 openAPIV3Schema: 14965 type: object 14966 properties: 14967 spec: 14968 type: object 14969 properties: 14970 version: 14971 type: string 14972 description: >- 14973 The Kafka Connect version. Defaults to 14974 {DefaultKafkaVersion}. Consult the user documentation to 14975 understand the process required to upgrade or downgrade the 14976 version. 14977 replicas: 14978 type: integer 14979 description: The number of pods in the Kafka Connect group. 14980 image: 14981 type: string 14982 description: The docker image for the pods. 14983 connectCluster: 14984 type: string 14985 description: >- 14986 The cluster alias used for Kafka Connect. The alias must 14987 match a cluster in the list at `spec.clusters`. 14988 clusters: 14989 type: array 14990 items: 14991 type: object 14992 properties: 14993 alias: 14994 type: string 14995 pattern: '^[a-zA-Z0-9\._\-]{1,100}$' 14996 description: Alias used to reference the Kafka cluster. 14997 bootstrapServers: 14998 type: string 14999 description: >- 15000 A comma-separated list of `host:port` pairs for 15001 establishing the connection to the Kafka cluster. 15002 tls: 15003 type: object 15004 properties: 15005 trustedCertificates: 15006 type: array 15007 items: 15008 type: object 15009 properties: 15010 certificate: 15011 type: string 15012 description: >- 15013 The name of the file certificate in the 15014 Secret. 15015 secretName: 15016 type: string 15017 description: >- 15018 The name of the Secret containing the 15019 certificate. 15020 required: 15021 - certificate 15022 - secretName 15023 description: Trusted certificates for TLS connection. 15024 description: >- 15025 TLS configuration for connecting MirrorMaker 2.0 15026 connectors to a cluster. 15027 authentication: 15028 type: object 15029 properties: 15030 accessToken: 15031 type: object 15032 properties: 15033 key: 15034 type: string 15035 description: >- 15036 The key under which the secret value is stored 15037 in the Kubernetes Secret. 15038 secretName: 15039 type: string 15040 description: >- 15041 The name of the Kubernetes Secret containing 15042 the secret value. 15043 required: 15044 - key 15045 - secretName 15046 description: >- 15047 Link to Kubernetes Secret containing the access 15048 token which was obtained from the authorization 15049 server. 15050 accessTokenIsJwt: 15051 type: boolean 15052 description: >- 15053 Configure whether access token should be treated 15054 as JWT. This should be set to `false` if the 15055 authorization server returns opaque tokens. 15056 Defaults to `true`. 15057 audience: 15058 type: string 15059 description: >- 15060 OAuth audience to use when authenticating against 15061 the authorization server. Some authorization 15062 servers require the audience to be explicitly set. 15063 The possible values depend on how the 15064 authorization server is configured. By default, 15065 `audience` is not specified when performing the 15066 token endpoint request. 15067 certificateAndKey: 15068 type: object 15069 properties: 15070 certificate: 15071 type: string 15072 description: >- 15073 The name of the file certificate in the 15074 Secret. 15075 key: 15076 type: string 15077 description: The name of the private key in the Secret. 15078 secretName: 15079 type: string 15080 description: >- 15081 The name of the Secret containing the 15082 certificate. 15083 required: 15084 - certificate 15085 - key 15086 - secretName 15087 description: >- 15088 Reference to the `Secret` which holds the 15089 certificate and private key pair. 15090 clientId: 15091 type: string 15092 description: >- 15093 OAuth Client ID which the Kafka client can use to 15094 authenticate against the OAuth server and use the 15095 token endpoint URI. 15096 clientSecret: 15097 type: object 15098 properties: 15099 key: 15100 type: string 15101 description: >- 15102 The key under which the secret value is stored 15103 in the Kubernetes Secret. 15104 secretName: 15105 type: string 15106 description: >- 15107 The name of the Kubernetes Secret containing 15108 the secret value. 15109 required: 15110 - key 15111 - secretName 15112 description: >- 15113 Link to Kubernetes Secret containing the OAuth 15114 client secret which the Kafka client can use to 15115 authenticate against the OAuth server and use the 15116 token endpoint URI. 15117 connectTimeoutSeconds: 15118 type: integer 15119 description: >- 15120 The connect timeout in seconds when connecting to 15121 authorization server. If not set, the effective 15122 connect timeout is 60 seconds. 15123 disableTlsHostnameVerification: 15124 type: boolean 15125 description: >- 15126 Enable or disable TLS hostname verification. 15127 Default value is `false`. 15128 maxTokenExpirySeconds: 15129 type: integer 15130 description: >- 15131 Set or limit time-to-live of the access tokens to 15132 the specified number of seconds. This should be 15133 set if the authorization server returns opaque 15134 tokens. 15135 passwordSecret: 15136 type: object 15137 properties: 15138 password: 15139 type: string 15140 description: >- 15141 The name of the key in the Secret under which 15142 the password is stored. 15143 secretName: 15144 type: string 15145 description: >- 15146 The name of the Secret containing the 15147 password. 15148 required: 15149 - password 15150 - secretName 15151 description: >- 15152 Reference to the `Secret` which holds the 15153 password. 15154 readTimeoutSeconds: 15155 type: integer 15156 description: >- 15157 The read timeout in seconds when connecting to 15158 authorization server. If not set, the effective 15159 read timeout is 60 seconds. 15160 refreshToken: 15161 type: object 15162 properties: 15163 key: 15164 type: string 15165 description: >- 15166 The key under which the secret value is stored 15167 in the Kubernetes Secret. 15168 secretName: 15169 type: string 15170 description: >- 15171 The name of the Kubernetes Secret containing 15172 the secret value. 15173 required: 15174 - key 15175 - secretName 15176 description: >- 15177 Link to Kubernetes Secret containing the refresh 15178 token which can be used to obtain access token 15179 from the authorization server. 15180 scope: 15181 type: string 15182 description: >- 15183 OAuth scope to use when authenticating against the 15184 authorization server. Some authorization servers 15185 require this to be set. The possible values depend 15186 on how authorization server is configured. By 15187 default `scope` is not specified when doing the 15188 token endpoint request. 15189 tlsTrustedCertificates: 15190 type: array 15191 items: 15192 type: object 15193 properties: 15194 certificate: 15195 type: string 15196 description: >- 15197 The name of the file certificate in the 15198 Secret. 15199 secretName: 15200 type: string 15201 description: >- 15202 The name of the Secret containing the 15203 certificate. 15204 required: 15205 - certificate 15206 - secretName 15207 description: >- 15208 Trusted certificates for TLS connection to the 15209 OAuth server. 15210 tokenEndpointUri: 15211 type: string 15212 description: Authorization server token endpoint URI. 15213 type: 15214 type: string 15215 enum: 15216 - tls 15217 - scram-sha-256 15218 - scram-sha-512 15219 - plain 15220 - oauth 15221 description: >- 15222 Authentication type. Currently the only supported 15223 types are `tls`, `scram-sha-256`, `scram-sha-512`, 15224 and `plain`. `scram-sha-256` and `scram-sha-512` 15225 types use SASL SCRAM-SHA-256 and SASL 15226 SCRAM-SHA-512 Authentication, respectively. 15227 `plain` type uses SASL PLAIN Authentication. 15228 `oauth` type uses SASL OAUTHBEARER Authentication. 15229 The `tls` type uses TLS Client Authentication. The 15230 `tls` type is supported only over TLS connections. 15231 username: 15232 type: string 15233 description: Username used for the authentication. 15234 required: 15235 - type 15236 description: >- 15237 Authentication configuration for connecting to the 15238 cluster. 15239 config: 15240 x-kubernetes-preserve-unknown-fields: true 15241 type: object 15242 description: >- 15243 The MirrorMaker 2.0 cluster config. Properties with 15244 the following prefixes cannot be set: ssl., sasl., 15245 security., listeners, plugin.path, rest., 15246 bootstrap.servers, consumer.interceptor.classes, 15247 producer.interceptor.classes (with the exception of: 15248 ssl.endpoint.identification.algorithm, 15249 ssl.cipher.suites, ssl.protocol, 15250 ssl.enabled.protocols). 15251 required: 15252 - alias 15253 - bootstrapServers 15254 description: Kafka clusters for mirroring. 15255 mirrors: 15256 type: array 15257 items: 15258 type: object 15259 properties: 15260 sourceCluster: 15261 type: string 15262 description: >- 15263 The alias of the source cluster used by the Kafka 15264 MirrorMaker 2.0 connectors. The alias must match a 15265 cluster in the list at `spec.clusters`. 15266 targetCluster: 15267 type: string 15268 description: >- 15269 The alias of the target cluster used by the Kafka 15270 MirrorMaker 2.0 connectors. The alias must match a 15271 cluster in the list at `spec.clusters`. 15272 sourceConnector: 15273 type: object 15274 properties: 15275 tasksMax: 15276 type: integer 15277 minimum: 1 15278 description: >- 15279 The maximum number of tasks for the Kafka 15280 Connector. 15281 config: 15282 x-kubernetes-preserve-unknown-fields: true 15283 type: object 15284 description: >- 15285 The Kafka Connector configuration. The following 15286 properties cannot be set: connector.class, 15287 tasks.max. 15288 pause: 15289 type: boolean 15290 description: >- 15291 Whether the connector should be paused. Defaults 15292 to false. 15293 description: >- 15294 The specification of the Kafka MirrorMaker 2.0 source 15295 connector. 15296 heartbeatConnector: 15297 type: object 15298 properties: 15299 tasksMax: 15300 type: integer 15301 minimum: 1 15302 description: >- 15303 The maximum number of tasks for the Kafka 15304 Connector. 15305 config: 15306 x-kubernetes-preserve-unknown-fields: true 15307 type: object 15308 description: >- 15309 The Kafka Connector configuration. The following 15310 properties cannot be set: connector.class, 15311 tasks.max. 15312 pause: 15313 type: boolean 15314 description: >- 15315 Whether the connector should be paused. Defaults 15316 to false. 15317 description: >- 15318 The specification of the Kafka MirrorMaker 2.0 15319 heartbeat connector. 15320 checkpointConnector: 15321 type: object 15322 properties: 15323 tasksMax: 15324 type: integer 15325 minimum: 1 15326 description: >- 15327 The maximum number of tasks for the Kafka 15328 Connector. 15329 config: 15330 x-kubernetes-preserve-unknown-fields: true 15331 type: object 15332 description: >- 15333 The Kafka Connector configuration. The following 15334 properties cannot be set: connector.class, 15335 tasks.max. 15336 pause: 15337 type: boolean 15338 description: >- 15339 Whether the connector should be paused. Defaults 15340 to false. 15341 description: >- 15342 The specification of the Kafka MirrorMaker 2.0 15343 checkpoint connector. 15344 topicsPattern: 15345 type: string 15346 description: >- 15347 A regular expression matching the topics to be 15348 mirrored, for example, "topic1\|topic2\|topic3". 15349 Comma-separated lists are also supported. 15350 topicsBlacklistPattern: 15351 type: string 15352 description: >- 15353 A regular expression matching the topics to exclude 15354 from mirroring. Comma-separated lists are also 15355 supported. 15356 topicsExcludePattern: 15357 type: string 15358 description: >- 15359 A regular expression matching the topics to exclude 15360 from mirroring. Comma-separated lists are also 15361 supported. 15362 groupsPattern: 15363 type: string 15364 description: >- 15365 A regular expression matching the consumer groups to 15366 be mirrored. Comma-separated lists are also supported. 15367 groupsBlacklistPattern: 15368 type: string 15369 description: >- 15370 A regular expression matching the consumer groups to 15371 exclude from mirroring. Comma-separated lists are also 15372 supported. 15373 groupsExcludePattern: 15374 type: string 15375 description: >- 15376 A regular expression matching the consumer groups to 15377 exclude from mirroring. Comma-separated lists are also 15378 supported. 15379 required: 15380 - sourceCluster 15381 - targetCluster 15382 description: Configuration of the MirrorMaker 2.0 connectors. 15383 resources: 15384 type: object 15385 properties: 15386 limits: 15387 x-kubernetes-preserve-unknown-fields: true 15388 type: object 15389 requests: 15390 x-kubernetes-preserve-unknown-fields: true 15391 type: object 15392 description: >- 15393 The maximum limits for CPU and memory resources and the 15394 requested initial resources. 15395 livenessProbe: 15396 type: object 15397 properties: 15398 failureThreshold: 15399 type: integer 15400 minimum: 1 15401 description: >- 15402 Minimum consecutive failures for the probe to be 15403 considered failed after having succeeded. Defaults to 3. 15404 Minimum value is 1. 15405 initialDelaySeconds: 15406 type: integer 15407 minimum: 0 15408 description: >- 15409 The initial delay before first the health is first 15410 checked. Default to 15 seconds. Minimum value is 0. 15411 periodSeconds: 15412 type: integer 15413 minimum: 1 15414 description: >- 15415 How often (in seconds) to perform the probe. Default to 15416 10 seconds. Minimum value is 1. 15417 successThreshold: 15418 type: integer 15419 minimum: 1 15420 description: >- 15421 Minimum consecutive successes for the probe to be 15422 considered successful after having failed. Defaults to 15423 1. Must be 1 for liveness. Minimum value is 1. 15424 timeoutSeconds: 15425 type: integer 15426 minimum: 1 15427 description: >- 15428 The timeout for each attempted health check. Default to 15429 5 seconds. Minimum value is 1. 15430 description: Pod liveness checking. 15431 readinessProbe: 15432 type: object 15433 properties: 15434 failureThreshold: 15435 type: integer 15436 minimum: 1 15437 description: >- 15438 Minimum consecutive failures for the probe to be 15439 considered failed after having succeeded. Defaults to 3. 15440 Minimum value is 1. 15441 initialDelaySeconds: 15442 type: integer 15443 minimum: 0 15444 description: >- 15445 The initial delay before first the health is first 15446 checked. Default to 15 seconds. Minimum value is 0. 15447 periodSeconds: 15448 type: integer 15449 minimum: 1 15450 description: >- 15451 How often (in seconds) to perform the probe. Default to 15452 10 seconds. Minimum value is 1. 15453 successThreshold: 15454 type: integer 15455 minimum: 1 15456 description: >- 15457 Minimum consecutive successes for the probe to be 15458 considered successful after having failed. Defaults to 15459 1. Must be 1 for liveness. Minimum value is 1. 15460 timeoutSeconds: 15461 type: integer 15462 minimum: 1 15463 description: >- 15464 The timeout for each attempted health check. Default to 15465 5 seconds. Minimum value is 1. 15466 description: Pod readiness checking. 15467 jvmOptions: 15468 type: object 15469 properties: 15470 '-XX': 15471 x-kubernetes-preserve-unknown-fields: true 15472 type: object 15473 description: A map of -XX options to the JVM. 15474 '-Xms': 15475 type: string 15476 pattern: '^[0-9]+[mMgG]?$' 15477 description: '-Xms option to to the JVM.' 15478 '-Xmx': 15479 type: string 15480 pattern: '^[0-9]+[mMgG]?$' 15481 description: '-Xmx option to to the JVM.' 15482 gcLoggingEnabled: 15483 type: boolean 15484 description: >- 15485 Specifies whether the Garbage Collection logging is 15486 enabled. The default is false. 15487 javaSystemProperties: 15488 type: array 15489 items: 15490 type: object 15491 properties: 15492 name: 15493 type: string 15494 description: The system property name. 15495 value: 15496 type: string 15497 description: The system property value. 15498 description: >- 15499 A map of additional system properties which will be 15500 passed using the `-D` option to the JVM. 15501 description: JVM Options for pods. 15502 jmxOptions: 15503 type: object 15504 properties: 15505 authentication: 15506 type: object 15507 properties: 15508 type: 15509 type: string 15510 enum: 15511 - password 15512 description: >- 15513 Authentication type. Currently the only supported 15514 types are `password`.`password` type creates a 15515 username and protected port with no TLS. 15516 required: 15517 - type 15518 description: >- 15519 Authentication configuration for connecting to the JMX 15520 port. 15521 description: JMX Options. 15522 logging: 15523 type: object 15524 properties: 15525 loggers: 15526 x-kubernetes-preserve-unknown-fields: true 15527 type: object 15528 description: A Map from logger name to logger level. 15529 type: 15530 type: string 15531 enum: 15532 - inline 15533 - external 15534 description: 'Logging type, must be either ''inline'' or ''external''.' 15535 valueFrom: 15536 type: object 15537 properties: 15538 configMapKeyRef: 15539 type: object 15540 properties: 15541 key: 15542 type: string 15543 name: 15544 type: string 15545 optional: 15546 type: boolean 15547 description: >- 15548 Reference to the key in the ConfigMap containing the 15549 configuration. 15550 description: >- 15551 `ConfigMap` entry where the logging configuration is 15552 stored. 15553 required: 15554 - type 15555 description: Logging configuration for Kafka Connect. 15556 tracing: 15557 type: object 15558 properties: 15559 type: 15560 type: string 15561 enum: 15562 - jaeger 15563 description: >- 15564 Type of the tracing used. Currently the only supported 15565 type is `jaeger` for Jaeger tracing. 15566 required: 15567 - type 15568 description: The configuration of tracing in Kafka Connect. 15569 template: 15570 type: object 15571 properties: 15572 deployment: 15573 type: object 15574 properties: 15575 metadata: 15576 type: object 15577 properties: 15578 labels: 15579 x-kubernetes-preserve-unknown-fields: true 15580 type: object 15581 description: >- 15582 Labels added to the resource template. Can be 15583 applied to different resources such as 15584 `StatefulSets`, `Deployments`, `Pods`, and 15585 `Services`. 15586 annotations: 15587 x-kubernetes-preserve-unknown-fields: true 15588 type: object 15589 description: >- 15590 Annotations added to the resource template. Can 15591 be applied to different resources such as 15592 `StatefulSets`, `Deployments`, `Pods`, and 15593 `Services`. 15594 description: Metadata applied to the resource. 15595 deploymentStrategy: 15596 type: string 15597 enum: 15598 - RollingUpdate 15599 - Recreate 15600 description: >- 15601 DeploymentStrategy which will be used for this 15602 Deployment. Valid values are `RollingUpdate` and 15603 `Recreate`. Defaults to `RollingUpdate`. 15604 description: Template for Kafka Connect `Deployment`. 15605 pod: 15606 type: object 15607 properties: 15608 metadata: 15609 type: object 15610 properties: 15611 labels: 15612 x-kubernetes-preserve-unknown-fields: true 15613 type: object 15614 description: >- 15615 Labels added to the resource template. Can be 15616 applied to different resources such as 15617 `StatefulSets`, `Deployments`, `Pods`, and 15618 `Services`. 15619 annotations: 15620 x-kubernetes-preserve-unknown-fields: true 15621 type: object 15622 description: >- 15623 Annotations added to the resource template. Can 15624 be applied to different resources such as 15625 `StatefulSets`, `Deployments`, `Pods`, and 15626 `Services`. 15627 description: Metadata applied to the resource. 15628 imagePullSecrets: 15629 type: array 15630 items: 15631 type: object 15632 properties: 15633 name: 15634 type: string 15635 description: >- 15636 List of references to secrets in the same namespace 15637 to use for pulling any of the images used by this 15638 Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` 15639 environment variable in Cluster Operator and the 15640 `imagePullSecrets` option are specified, only the 15641 `imagePullSecrets` variable is used and the 15642 `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored. 15643 securityContext: 15644 type: object 15645 properties: 15646 fsGroup: 15647 type: integer 15648 fsGroupChangePolicy: 15649 type: string 15650 runAsGroup: 15651 type: integer 15652 runAsNonRoot: 15653 type: boolean 15654 runAsUser: 15655 type: integer 15656 seLinuxOptions: 15657 type: object 15658 properties: 15659 level: 15660 type: string 15661 role: 15662 type: string 15663 type: 15664 type: string 15665 user: 15666 type: string 15667 seccompProfile: 15668 type: object 15669 properties: 15670 localhostProfile: 15671 type: string 15672 type: 15673 type: string 15674 supplementalGroups: 15675 type: array 15676 items: 15677 type: integer 15678 sysctls: 15679 type: array 15680 items: 15681 type: object 15682 properties: 15683 name: 15684 type: string 15685 value: 15686 type: string 15687 windowsOptions: 15688 type: object 15689 properties: 15690 gmsaCredentialSpec: 15691 type: string 15692 gmsaCredentialSpecName: 15693 type: string 15694 hostProcess: 15695 type: boolean 15696 runAsUserName: 15697 type: string 15698 description: >- 15699 Configures pod-level security attributes and common 15700 container settings. 15701 terminationGracePeriodSeconds: 15702 type: integer 15703 minimum: 0 15704 description: >- 15705 The grace period is the duration in seconds after 15706 the processes running in the pod are sent a 15707 termination signal, and the time when the processes 15708 are forcibly halted with a kill signal. Set this 15709 value to longer than the expected cleanup time for 15710 your process. Value must be a non-negative integer. 15711 A zero value indicates delete immediately. You might 15712 need to increase the grace period for very large 15713 Kafka clusters, so that the Kafka brokers have 15714 enough time to transfer their work to another broker 15715 before they are terminated. Defaults to 30 seconds. 15716 affinity: 15717 type: object 15718 properties: 15719 nodeAffinity: 15720 type: object 15721 properties: 15722 preferredDuringSchedulingIgnoredDuringExecution: 15723 type: array 15724 items: 15725 type: object 15726 properties: 15727 preference: 15728 type: object 15729 properties: 15730 matchExpressions: 15731 type: array 15732 items: 15733 type: object 15734 properties: 15735 key: 15736 type: string 15737 operator: 15738 type: string 15739 values: 15740 type: array 15741 items: 15742 type: string 15743 matchFields: 15744 type: array 15745 items: 15746 type: object 15747 properties: 15748 key: 15749 type: string 15750 operator: 15751 type: string 15752 values: 15753 type: array 15754 items: 15755 type: string 15756 weight: 15757 type: integer 15758 requiredDuringSchedulingIgnoredDuringExecution: 15759 type: object 15760 properties: 15761 nodeSelectorTerms: 15762 type: array 15763 items: 15764 type: object 15765 properties: 15766 matchExpressions: 15767 type: array 15768 items: 15769 type: object 15770 properties: 15771 key: 15772 type: string 15773 operator: 15774 type: string 15775 values: 15776 type: array 15777 items: 15778 type: string 15779 matchFields: 15780 type: array 15781 items: 15782 type: object 15783 properties: 15784 key: 15785 type: string 15786 operator: 15787 type: string 15788 values: 15789 type: array 15790 items: 15791 type: string 15792 podAffinity: 15793 type: object 15794 properties: 15795 preferredDuringSchedulingIgnoredDuringExecution: 15796 type: array 15797 items: 15798 type: object 15799 properties: 15800 podAffinityTerm: 15801 type: object 15802 properties: 15803 labelSelector: 15804 type: object 15805 properties: 15806 matchExpressions: 15807 type: array 15808 items: 15809 type: object 15810 properties: 15811 key: 15812 type: string 15813 operator: 15814 type: string 15815 values: 15816 type: array 15817 items: 15818 type: string 15819 matchLabels: 15820 x-kubernetes-preserve-unknown-fields: true 15821 type: object 15822 namespaceSelector: 15823 type: object 15824 properties: 15825 matchExpressions: 15826 type: array 15827 items: 15828 type: object 15829 properties: 15830 key: 15831 type: string 15832 operator: 15833 type: string 15834 values: 15835 type: array 15836 items: 15837 type: string 15838 matchLabels: 15839 x-kubernetes-preserve-unknown-fields: true 15840 type: object 15841 namespaces: 15842 type: array 15843 items: 15844 type: string 15845 topologyKey: 15846 type: string 15847 weight: 15848 type: integer 15849 requiredDuringSchedulingIgnoredDuringExecution: 15850 type: array 15851 items: 15852 type: object 15853 properties: 15854 labelSelector: 15855 type: object 15856 properties: 15857 matchExpressions: 15858 type: array 15859 items: 15860 type: object 15861 properties: 15862 key: 15863 type: string 15864 operator: 15865 type: string 15866 values: 15867 type: array 15868 items: 15869 type: string 15870 matchLabels: 15871 x-kubernetes-preserve-unknown-fields: true 15872 type: object 15873 namespaceSelector: 15874 type: object 15875 properties: 15876 matchExpressions: 15877 type: array 15878 items: 15879 type: object 15880 properties: 15881 key: 15882 type: string 15883 operator: 15884 type: string 15885 values: 15886 type: array 15887 items: 15888 type: string 15889 matchLabels: 15890 x-kubernetes-preserve-unknown-fields: true 15891 type: object 15892 namespaces: 15893 type: array 15894 items: 15895 type: string 15896 topologyKey: 15897 type: string 15898 podAntiAffinity: 15899 type: object 15900 properties: 15901 preferredDuringSchedulingIgnoredDuringExecution: 15902 type: array 15903 items: 15904 type: object 15905 properties: 15906 podAffinityTerm: 15907 type: object 15908 properties: 15909 labelSelector: 15910 type: object 15911 properties: 15912 matchExpressions: 15913 type: array 15914 items: 15915 type: object 15916 properties: 15917 key: 15918 type: string 15919 operator: 15920 type: string 15921 values: 15922 type: array 15923 items: 15924 type: string 15925 matchLabels: 15926 x-kubernetes-preserve-unknown-fields: true 15927 type: object 15928 namespaceSelector: 15929 type: object 15930 properties: 15931 matchExpressions: 15932 type: array 15933 items: 15934 type: object 15935 properties: 15936 key: 15937 type: string 15938 operator: 15939 type: string 15940 values: 15941 type: array 15942 items: 15943 type: string 15944 matchLabels: 15945 x-kubernetes-preserve-unknown-fields: true 15946 type: object 15947 namespaces: 15948 type: array 15949 items: 15950 type: string 15951 topologyKey: 15952 type: string 15953 weight: 15954 type: integer 15955 requiredDuringSchedulingIgnoredDuringExecution: 15956 type: array 15957 items: 15958 type: object 15959 properties: 15960 labelSelector: 15961 type: object 15962 properties: 15963 matchExpressions: 15964 type: array 15965 items: 15966 type: object 15967 properties: 15968 key: 15969 type: string 15970 operator: 15971 type: string 15972 values: 15973 type: array 15974 items: 15975 type: string 15976 matchLabels: 15977 x-kubernetes-preserve-unknown-fields: true 15978 type: object 15979 namespaceSelector: 15980 type: object 15981 properties: 15982 matchExpressions: 15983 type: array 15984 items: 15985 type: object 15986 properties: 15987 key: 15988 type: string 15989 operator: 15990 type: string 15991 values: 15992 type: array 15993 items: 15994 type: string 15995 matchLabels: 15996 x-kubernetes-preserve-unknown-fields: true 15997 type: object 15998 namespaces: 15999 type: array 16000 items: 16001 type: string 16002 topologyKey: 16003 type: string 16004 description: The pod's affinity rules. 16005 tolerations: 16006 type: array 16007 items: 16008 type: object 16009 properties: 16010 effect: 16011 type: string 16012 key: 16013 type: string 16014 operator: 16015 type: string 16016 tolerationSeconds: 16017 type: integer 16018 value: 16019 type: string 16020 description: The pod's tolerations. 16021 priorityClassName: 16022 type: string 16023 description: >- 16024 The name of the priority class used to assign 16025 priority to the pods. For more information about 16026 priority classes, see {K8sPriorityClass}. 16027 schedulerName: 16028 type: string 16029 description: >- 16030 The name of the scheduler used to dispatch this 16031 `Pod`. If not specified, the default scheduler will 16032 be used. 16033 hostAliases: 16034 type: array 16035 items: 16036 type: object 16037 properties: 16038 hostnames: 16039 type: array 16040 items: 16041 type: string 16042 ip: 16043 type: string 16044 description: >- 16045 The pod's HostAliases. HostAliases is an optional 16046 list of hosts and IPs that will be injected into the 16047 Pod's hosts file if specified. 16048 tmpDirSizeLimit: 16049 type: string 16050 pattern: '^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$' 16051 description: >- 16052 Defines the total amount (for example `1Gi`) of 16053 local storage required for temporary EmptyDir volume 16054 (`/tmp`). Default value is `1Mi`. 16055 enableServiceLinks: 16056 type: boolean 16057 description: >- 16058 Indicates whether information about services should 16059 be injected into Pod's environment variables. 16060 topologySpreadConstraints: 16061 type: array 16062 items: 16063 type: object 16064 properties: 16065 labelSelector: 16066 type: object 16067 properties: 16068 matchExpressions: 16069 type: array 16070 items: 16071 type: object 16072 properties: 16073 key: 16074 type: string 16075 operator: 16076 type: string 16077 values: 16078 type: array 16079 items: 16080 type: string 16081 matchLabels: 16082 x-kubernetes-preserve-unknown-fields: true 16083 type: object 16084 maxSkew: 16085 type: integer 16086 topologyKey: 16087 type: string 16088 whenUnsatisfiable: 16089 type: string 16090 description: The pod's topology spread constraints. 16091 description: Template for Kafka Connect `Pods`. 16092 apiService: 16093 type: object 16094 properties: 16095 metadata: 16096 type: object 16097 properties: 16098 labels: 16099 x-kubernetes-preserve-unknown-fields: true 16100 type: object 16101 description: >- 16102 Labels added to the resource template. Can be 16103 applied to different resources such as 16104 `StatefulSets`, `Deployments`, `Pods`, and 16105 `Services`. 16106 annotations: 16107 x-kubernetes-preserve-unknown-fields: true 16108 type: object 16109 description: >- 16110 Annotations added to the resource template. Can 16111 be applied to different resources such as 16112 `StatefulSets`, `Deployments`, `Pods`, and 16113 `Services`. 16114 description: Metadata applied to the resource. 16115 ipFamilyPolicy: 16116 type: string 16117 enum: 16118 - SingleStack 16119 - PreferDualStack 16120 - RequireDualStack 16121 description: >- 16122 Specifies the IP Family Policy used by the service. 16123 Available options are `SingleStack`, 16124 `PreferDualStack` and `RequireDualStack`. 16125 `SingleStack` is for a single IP family. 16126 `PreferDualStack` is for two IP families on 16127 dual-stack configured clusters or a single IP family 16128 on single-stack clusters. `RequireDualStack` fails 16129 unless there are two IP families on dual-stack 16130 configured clusters. If unspecified, Kubernetes will 16131 choose the default value based on the service type. 16132 Available on Kubernetes 1.20 and newer. 16133 ipFamilies: 16134 type: array 16135 items: 16136 type: string 16137 enum: 16138 - IPv4 16139 - IPv6 16140 description: >- 16141 Specifies the IP Families used by the service. 16142 Available options are `IPv4` and `IPv6. If 16143 unspecified, Kubernetes will choose the default 16144 value based on the `ipFamilyPolicy` setting. 16145 Available on Kubernetes 1.20 and newer. 16146 description: Template for Kafka Connect API `Service`. 16147 connectContainer: 16148 type: object 16149 properties: 16150 env: 16151 type: array 16152 items: 16153 type: object 16154 properties: 16155 name: 16156 type: string 16157 description: The environment variable key. 16158 value: 16159 type: string 16160 description: The environment variable value. 16161 description: >- 16162 Environment variables which should be applied to the 16163 container. 16164 securityContext: 16165 type: object 16166 properties: 16167 allowPrivilegeEscalation: 16168 type: boolean 16169 capabilities: 16170 type: object 16171 properties: 16172 add: 16173 type: array 16174 items: 16175 type: string 16176 drop: 16177 type: array 16178 items: 16179 type: string 16180 privileged: 16181 type: boolean 16182 procMount: 16183 type: string 16184 readOnlyRootFilesystem: 16185 type: boolean 16186 runAsGroup: 16187 type: integer 16188 runAsNonRoot: 16189 type: boolean 16190 runAsUser: 16191 type: integer 16192 seLinuxOptions: 16193 type: object 16194 properties: 16195 level: 16196 type: string 16197 role: 16198 type: string 16199 type: 16200 type: string 16201 user: 16202 type: string 16203 seccompProfile: 16204 type: object 16205 properties: 16206 localhostProfile: 16207 type: string 16208 type: 16209 type: string 16210 windowsOptions: 16211 type: object 16212 properties: 16213 gmsaCredentialSpec: 16214 type: string 16215 gmsaCredentialSpecName: 16216 type: string 16217 hostProcess: 16218 type: boolean 16219 runAsUserName: 16220 type: string 16221 description: Security context for the container. 16222 description: Template for the Kafka Connect container. 16223 initContainer: 16224 type: object 16225 properties: 16226 env: 16227 type: array 16228 items: 16229 type: object 16230 properties: 16231 name: 16232 type: string 16233 description: The environment variable key. 16234 value: 16235 type: string 16236 description: The environment variable value. 16237 description: >- 16238 Environment variables which should be applied to the 16239 container. 16240 securityContext: 16241 type: object 16242 properties: 16243 allowPrivilegeEscalation: 16244 type: boolean 16245 capabilities: 16246 type: object 16247 properties: 16248 add: 16249 type: array 16250 items: 16251 type: string 16252 drop: 16253 type: array 16254 items: 16255 type: string 16256 privileged: 16257 type: boolean 16258 procMount: 16259 type: string 16260 readOnlyRootFilesystem: 16261 type: boolean 16262 runAsGroup: 16263 type: integer 16264 runAsNonRoot: 16265 type: boolean 16266 runAsUser: 16267 type: integer 16268 seLinuxOptions: 16269 type: object 16270 properties: 16271 level: 16272 type: string 16273 role: 16274 type: string 16275 type: 16276 type: string 16277 user: 16278 type: string 16279 seccompProfile: 16280 type: object 16281 properties: 16282 localhostProfile: 16283 type: string 16284 type: 16285 type: string 16286 windowsOptions: 16287 type: object 16288 properties: 16289 gmsaCredentialSpec: 16290 type: string 16291 gmsaCredentialSpecName: 16292 type: string 16293 hostProcess: 16294 type: boolean 16295 runAsUserName: 16296 type: string 16297 description: Security context for the container. 16298 description: Template for the Kafka init container. 16299 podDisruptionBudget: 16300 type: object 16301 properties: 16302 metadata: 16303 type: object 16304 properties: 16305 labels: 16306 x-kubernetes-preserve-unknown-fields: true 16307 type: object 16308 description: >- 16309 Labels added to the resource template. Can be 16310 applied to different resources such as 16311 `StatefulSets`, `Deployments`, `Pods`, and 16312 `Services`. 16313 annotations: 16314 x-kubernetes-preserve-unknown-fields: true 16315 type: object 16316 description: >- 16317 Annotations added to the resource template. Can 16318 be applied to different resources such as 16319 `StatefulSets`, `Deployments`, `Pods`, and 16320 `Services`. 16321 description: >- 16322 Metadata to apply to the 16323 `PodDisruptionBudgetTemplate` resource. 16324 maxUnavailable: 16325 type: integer 16326 minimum: 0 16327 description: >- 16328 Maximum number of unavailable pods to allow 16329 automatic Pod eviction. A Pod eviction is allowed 16330 when the `maxUnavailable` number of pods or fewer 16331 are unavailable after the eviction. Setting this 16332 value to 0 prevents all voluntary evictions, so the 16333 pods must be evicted manually. Defaults to 1. 16334 description: Template for Kafka Connect `PodDisruptionBudget`. 16335 serviceAccount: 16336 type: object 16337 properties: 16338 metadata: 16339 type: object 16340 properties: 16341 labels: 16342 x-kubernetes-preserve-unknown-fields: true 16343 type: object 16344 description: >- 16345 Labels added to the resource template. Can be 16346 applied to different resources such as 16347 `StatefulSets`, `Deployments`, `Pods`, and 16348 `Services`. 16349 annotations: 16350 x-kubernetes-preserve-unknown-fields: true 16351 type: object 16352 description: >- 16353 Annotations added to the resource template. Can 16354 be applied to different resources such as 16355 `StatefulSets`, `Deployments`, `Pods`, and 16356 `Services`. 16357 description: Metadata applied to the resource. 16358 description: Template for the Kafka Connect service account. 16359 clusterRoleBinding: 16360 type: object 16361 properties: 16362 metadata: 16363 type: object 16364 properties: 16365 labels: 16366 x-kubernetes-preserve-unknown-fields: true 16367 type: object 16368 description: >- 16369 Labels added to the resource template. Can be 16370 applied to different resources such as 16371 `StatefulSets`, `Deployments`, `Pods`, and 16372 `Services`. 16373 annotations: 16374 x-kubernetes-preserve-unknown-fields: true 16375 type: object 16376 description: >- 16377 Annotations added to the resource template. Can 16378 be applied to different resources such as 16379 `StatefulSets`, `Deployments`, `Pods`, and 16380 `Services`. 16381 description: Metadata applied to the resource. 16382 description: Template for the Kafka Connect ClusterRoleBinding. 16383 buildPod: 16384 type: object 16385 properties: 16386 metadata: 16387 type: object 16388 properties: 16389 labels: 16390 x-kubernetes-preserve-unknown-fields: true 16391 type: object 16392 description: >- 16393 Labels added to the resource template. Can be 16394 applied to different resources such as 16395 `StatefulSets`, `Deployments`, `Pods`, and 16396 `Services`. 16397 annotations: 16398 x-kubernetes-preserve-unknown-fields: true 16399 type: object 16400 description: >- 16401 Annotations added to the resource template. Can 16402 be applied to different resources such as 16403 `StatefulSets`, `Deployments`, `Pods`, and 16404 `Services`. 16405 description: Metadata applied to the resource. 16406 imagePullSecrets: 16407 type: array 16408 items: 16409 type: object 16410 properties: 16411 name: 16412 type: string 16413 description: >- 16414 List of references to secrets in the same namespace 16415 to use for pulling any of the images used by this 16416 Pod. When the `STRIMZI_IMAGE_PULL_SECRETS` 16417 environment variable in Cluster Operator and the 16418 `imagePullSecrets` option are specified, only the 16419 `imagePullSecrets` variable is used and the 16420 `STRIMZI_IMAGE_PULL_SECRETS` variable is ignored. 16421 securityContext: 16422 type: object 16423 properties: 16424 fsGroup: 16425 type: integer 16426 fsGroupChangePolicy: 16427 type: string 16428 runAsGroup: 16429 type: integer 16430 runAsNonRoot: 16431 type: boolean 16432 runAsUser: 16433 type: integer 16434 seLinuxOptions: 16435 type: object 16436 properties: 16437 level: 16438 type: string 16439 role: 16440 type: string 16441 type: 16442 type: string 16443 user: 16444 type: string 16445 seccompProfile: 16446 type: object 16447 properties: 16448 localhostProfile: 16449 type: string 16450 type: 16451 type: string 16452 supplementalGroups: 16453 type: array 16454 items: 16455 type: integer 16456 sysctls: 16457 type: array 16458 items: 16459 type: object 16460 properties: 16461 name: 16462 type: string 16463 value: 16464 type: string 16465 windowsOptions: 16466 type: object 16467 properties: 16468 gmsaCredentialSpec: 16469 type: string 16470 gmsaCredentialSpecName: 16471 type: string 16472 hostProcess: 16473 type: boolean 16474 runAsUserName: 16475 type: string 16476 description: >- 16477 Configures pod-level security attributes and common 16478 container settings. 16479 terminationGracePeriodSeconds: 16480 type: integer 16481 minimum: 0 16482 description: >- 16483 The grace period is the duration in seconds after 16484 the processes running in the pod are sent a 16485 termination signal, and the time when the processes 16486 are forcibly halted with a kill signal. Set this 16487 value to longer than the expected cleanup time for 16488 your process. Value must be a non-negative integer. 16489 A zero value indicates delete immediately. You might 16490 need to increase the grace period for very large 16491 Kafka clusters, so that the Kafka brokers have 16492 enough time to transfer their work to another broker 16493 before they are terminated. Defaults to 30 seconds. 16494 affinity: 16495 type: object 16496 properties: 16497 nodeAffinity: 16498 type: object 16499 properties: 16500 preferredDuringSchedulingIgnoredDuringExecution: 16501 type: array 16502 items: 16503 type: object 16504 properties: 16505 preference: 16506 type: object 16507 properties: 16508 matchExpressions: 16509 type: array 16510 items: 16511 type: object 16512 properties: 16513 key: 16514 type: string 16515 operator: 16516 type: string 16517 values: 16518 type: array 16519 items: 16520 type: string 16521 matchFields: 16522 type: array 16523 items: 16524 type: object 16525 properties: 16526 key: 16527 type: string 16528 operator: 16529 type: string 16530 values: 16531 type: array 16532 items: 16533 type: string 16534 weight: 16535 type: integer 16536 requiredDuringSchedulingIgnoredDuringExecution: 16537 type: object 16538 properties: 16539 nodeSelectorTerms: 16540 type: array 16541 items: 16542 type: object 16543 properties: 16544 matchExpressions: 16545 type: array 16546 items: 16547 type: object 16548 properties: 16549 key: 16550 type: string 16551 operator: 16552 type: string 16553 values: 16554 type: array 16555 items: 16556 type: string 16557 matchFields: 16558 type: array 16559 items: 16560 type: object 16561 properties: 16562 key: 16563 type: string 16564 operator: 16565 type: string 16566 values: 16567 type: array 16568 items: 16569 type: string 16570 podAffinity: 16571 type: object 16572 properties: 16573 preferredDuringSchedulingIgnoredDuringExecution: 16574 type: array 16575 items: 16576 type: object 16577 properties: 16578 podAffinityTerm: 16579 type: object 16580 properties: 16581 labelSelector: 16582 type: object 16583 properties: 16584 matchExpressions: 16585 type: array 16586 items: 16587 type: object 16588 properties: 16589 key: 16590 type: string 16591 operator: 16592 type: string 16593 values: 16594 type: array 16595 items: 16596 type: string 16597 matchLabels: 16598 x-kubernetes-preserve-unknown-fields: true 16599 type: object 16600 namespaceSelector: 16601 type: object 16602 properties: 16603 matchExpressions: 16604 type: array 16605 items: 16606 type: object 16607 properties: 16608 key: 16609 type: string 16610 operator: 16611 type: string 16612 values: 16613 type: array 16614 items: 16615 type: string 16616 matchLabels: 16617 x-kubernetes-preserve-unknown-fields: true 16618 type: object 16619 namespaces: 16620 type: array 16621 items: 16622 type: string 16623 topologyKey: 16624 type: string 16625 weight: 16626 type: integer 16627 requiredDuringSchedulingIgnoredDuringExecution: 16628 type: array 16629 items: 16630 type: object 16631 properties: 16632 labelSelector: 16633 type: object 16634 properties: 16635 matchExpressions: 16636 type: array 16637 items: 16638 type: object 16639 properties: 16640 key: 16641 type: string 16642 operator: 16643 type: string 16644 values: 16645 type: array 16646 items: 16647 type: string 16648 matchLabels: 16649 x-kubernetes-preserve-unknown-fields: true 16650 type: object 16651 namespaceSelector: 16652 type: object 16653 properties: 16654 matchExpressions: 16655 type: array 16656 items: 16657 type: object 16658 properties: 16659 key: 16660 type: string 16661 operator: 16662 type: string 16663 values: 16664 type: array 16665 items: 16666 type: string 16667 matchLabels: 16668 x-kubernetes-preserve-unknown-fields: true 16669 type: object 16670 namespaces: 16671 type: array 16672 items: 16673 type: string 16674 topologyKey: 16675 type: string 16676 podAntiAffinity: 16677 type: object 16678 properties: 16679 preferredDuringSchedulingIgnoredDuringExecution: 16680 type: array 16681 items: 16682 type: object 16683 properties: 16684 podAffinityTerm: 16685 type: object 16686 properties: 16687 labelSelector: 16688 type: object 16689 properties: 16690 matchExpressions: 16691 type: array 16692 items: 16693 type: object 16694 properties: 16695 key: 16696 type: string 16697 operator: 16698 type: string 16699 values: 16700 type: array 16701 items: 16702 type: string 16703 matchLabels: 16704 x-kubernetes-preserve-unknown-fields: true 16705 type: object 16706 namespaceSelector: 16707 type: object 16708 properties: 16709 matchExpressions: 16710 type: array 16711 items: 16712 type: object 16713 properties: 16714 key: 16715 type: string 16716 operator: 16717 type: string 16718 values: 16719 type: array 16720 items: 16721 type: string 16722 matchLabels: 16723 x-kubernetes-preserve-unknown-fields: true 16724 type: object 16725 namespaces: 16726 type: array 16727 items: 16728 type: string 16729 topologyKey: 16730 type: string 16731 weight: 16732 type: integer 16733 requiredDuringSchedulingIgnoredDuringExecution: 16734 type: array 16735 items: 16736 type: object 16737 properties: 16738 labelSelector: 16739 type: object 16740 properties: 16741 matchExpressions: 16742 type: array 16743 items: 16744 type: object 16745 properties: 16746 key: 16747 type: string 16748 operator: 16749 type: string 16750 values: 16751 type: array 16752 items: 16753 type: string 16754 matchLabels: 16755 x-kubernetes-preserve-unknown-fields: true 16756 type: object 16757 namespaceSelector: 16758 type: object 16759 properties: 16760 matchExpressions: 16761 type: array 16762 items: 16763 type: object 16764 properties: 16765 key: 16766 type: string 16767 operator: 16768 type: string 16769 values: 16770 type: array 16771 items: 16772 type: string 16773 matchLabels: 16774 x-kubernetes-preserve-unknown-fields: true 16775 type: object 16776 namespaces: 16777 type: array 16778 items: 16779 type: string 16780 topologyKey: 16781 type: string 16782 description: The pod's affinity rules. 16783 tolerations: 16784 type: array 16785 items: 16786 type: object 16787 properties: 16788 effect: 16789 type: string 16790 key: 16791 type: string 16792 operator: 16793 type: string 16794 tolerationSeconds: 16795 type: integer 16796 value: 16797 type: string 16798 description: The pod's tolerations. 16799 priorityClassName: 16800 type: string 16801 description: >- 16802 The name of the priority class used to assign 16803 priority to the pods. For more information about 16804 priority classes, see {K8sPriorityClass}. 16805 schedulerName: 16806 type: string 16807 description: >- 16808 The name of the scheduler used to dispatch this 16809 `Pod`. If not specified, the default scheduler will 16810 be used. 16811 hostAliases: 16812 type: array 16813 items: 16814 type: object 16815 properties: 16816 hostnames: 16817 type: array 16818 items: 16819 type: string 16820 ip: 16821 type: string 16822 description: >- 16823 The pod's HostAliases. HostAliases is an optional 16824 list of hosts and IPs that will be injected into the 16825 Pod's hosts file if specified. 16826 tmpDirSizeLimit: 16827 type: string 16828 pattern: '^([0-9.]+)([eEinumkKMGTP]*[-+]?[0-9]*)$' 16829 description: >- 16830 Defines the total amount (for example `1Gi`) of 16831 local storage required for temporary EmptyDir volume 16832 (`/tmp`). Default value is `1Mi`. 16833 enableServiceLinks: 16834 type: boolean 16835 description: >- 16836 Indicates whether information about services should 16837 be injected into Pod's environment variables. 16838 topologySpreadConstraints: 16839 type: array 16840 items: 16841 type: object 16842 properties: 16843 labelSelector: 16844 type: object 16845 properties: 16846 matchExpressions: 16847 type: array 16848 items: 16849 type: object 16850 properties: 16851 key: 16852 type: string 16853 operator: 16854 type: string 16855 values: 16856 type: array 16857 items: 16858 type: string 16859 matchLabels: 16860 x-kubernetes-preserve-unknown-fields: true 16861 type: object 16862 maxSkew: 16863 type: integer 16864 topologyKey: 16865 type: string 16866 whenUnsatisfiable: 16867 type: string 16868 description: The pod's topology spread constraints. 16869 description: >- 16870 Template for Kafka Connect Build `Pods`. The build pod 16871 is used only on Kubernetes. 16872 buildContainer: 16873 type: object 16874 properties: 16875 env: 16876 type: array 16877 items: 16878 type: object 16879 properties: 16880 name: 16881 type: string 16882 description: The environment variable key. 16883 value: 16884 type: string 16885 description: The environment variable value. 16886 description: >- 16887 Environment variables which should be applied to the 16888 container. 16889 securityContext: 16890 type: object 16891 properties: 16892 allowPrivilegeEscalation: 16893 type: boolean 16894 capabilities: 16895 type: object 16896 properties: 16897 add: 16898 type: array 16899 items: 16900 type: string 16901 drop: 16902 type: array 16903 items: 16904 type: string 16905 privileged: 16906 type: boolean 16907 procMount: 16908 type: string 16909 readOnlyRootFilesystem: 16910 type: boolean 16911 runAsGroup: 16912 type: integer 16913 runAsNonRoot: 16914 type: boolean 16915 runAsUser: 16916 type: integer 16917 seLinuxOptions: 16918 type: object 16919 properties: 16920 level: 16921 type: string 16922 role: 16923 type: string 16924 type: 16925 type: string 16926 user: 16927 type: string 16928 seccompProfile: 16929 type: object 16930 properties: 16931 localhostProfile: 16932 type: string 16933 type: 16934 type: string 16935 windowsOptions: 16936 type: object 16937 properties: 16938 gmsaCredentialSpec: 16939 type: string 16940 gmsaCredentialSpecName: 16941 type: string 16942 hostProcess: 16943 type: boolean 16944 runAsUserName: 16945 type: string 16946 description: Security context for the container. 16947 description: >- 16948 Template for the Kafka Connect Build container. The 16949 build container is used only on Kubernetes. 16950 buildConfig: 16951 type: object 16952 properties: 16953 metadata: 16954 type: object 16955 properties: 16956 labels: 16957 x-kubernetes-preserve-unknown-fields: true 16958 type: object 16959 description: >- 16960 Labels added to the resource template. Can be 16961 applied to different resources such as 16962 `StatefulSets`, `Deployments`, `Pods`, and 16963 `Services`. 16964 annotations: 16965 x-kubernetes-preserve-unknown-fields: true 16966 type: object 16967 description: >- 16968 Annotations added to the resource template. Can 16969 be applied to different resources such as 16970 `StatefulSets`, `Deployments`, `Pods`, and 16971 `Services`. 16972 description: >- 16973 Metadata to apply to the 16974 `PodDisruptionBudgetTemplate` resource. 16975 pullSecret: 16976 type: string 16977 description: >- 16978 Container Registry Secret with the credentials for 16979 pulling the base image. 16980 description: >- 16981 Template for the Kafka Connect BuildConfig used to build 16982 new container images. The BuildConfig is used only on 16983 OpenShift. 16984 buildServiceAccount: 16985 type: object 16986 properties: 16987 metadata: 16988 type: object 16989 properties: 16990 labels: 16991 x-kubernetes-preserve-unknown-fields: true 16992 type: object 16993 description: >- 16994 Labels added to the resource template. Can be 16995 applied to different resources such as 16996 `StatefulSets`, `Deployments`, `Pods`, and 16997 `Services`. 16998 annotations: 16999 x-kubernetes-preserve-unknown-fields: true 17000 type: object 17001 description: >- 17002 Annotations added to the resource template. Can 17003 be applied to different resources such as 17004 `StatefulSets`, `Deployments`, `Pods`, and 17005 `Services`. 17006 description: Metadata applied to the resource. 17007 description: Template for the Kafka Connect Build service account. 17008 jmxSecret: 17009 type: object 17010 properties: 17011 metadata: 17012 type: object 17013 properties: 17014 labels: 17015 x-kubernetes-preserve-unknown-fields: true 17016 type: object 17017 description: >- 17018 Labels added to the resource template. Can be 17019 applied to different resources such as 17020 `StatefulSets`, `Deployments`, `Pods`, and 17021 `Services`. 17022 annotations: 17023 x-kubernetes-preserve-unknown-fields: true 17024 type: object 17025 description: >- 17026 Annotations added to the resource template. Can 17027 be applied to different resources such as 17028 `StatefulSets`, `Deployments`, `Pods`, and 17029 `Services`. 17030 description: Metadata applied to the resource. 17031 description: >- 17032 Template for Secret of the Kafka Connect Cluster JMX 17033 authentication. 17034 description: >- 17035 Template for Kafka Connect and Kafka Mirror Maker 2 17036 resources. The template allows users to specify how the 17037 `Deployment`, `Pods` and `Service` are generated. 17038 externalConfiguration: 17039 type: object 17040 properties: 17041 env: 17042 type: array 17043 items: 17044 type: object 17045 properties: 17046 name: 17047 type: string 17048 description: >- 17049 Name of the environment variable which will be 17050 passed to the Kafka Connect pods. The name of the 17051 environment variable cannot start with `KAFKA_` or 17052 `STRIMZI_`. 17053 valueFrom: 17054 type: object 17055 properties: 17056 configMapKeyRef: 17057 type: object 17058 properties: 17059 key: 17060 type: string 17061 name: 17062 type: string 17063 optional: 17064 type: boolean 17065 description: Reference to a key in a ConfigMap. 17066 secretKeyRef: 17067 type: object 17068 properties: 17069 key: 17070 type: string 17071 name: 17072 type: string 17073 optional: 17074 type: boolean 17075 description: Reference to a key in a Secret. 17076 description: >- 17077 Value of the environment variable which will be 17078 passed to the Kafka Connect pods. It can be passed 17079 either as a reference to Secret or ConfigMap 17080 field. The field has to specify exactly one Secret 17081 or ConfigMap. 17082 required: 17083 - name 17084 - valueFrom 17085 description: >- 17086 Makes data from a Secret or ConfigMap available in the 17087 Kafka Connect pods as environment variables. 17088 volumes: 17089 type: array 17090 items: 17091 type: object 17092 properties: 17093 configMap: 17094 type: object 17095 properties: 17096 defaultMode: 17097 type: integer 17098 items: 17099 type: array 17100 items: 17101 type: object 17102 properties: 17103 key: 17104 type: string 17105 mode: 17106 type: integer 17107 path: 17108 type: string 17109 name: 17110 type: string 17111 optional: 17112 type: boolean 17113 description: >- 17114 Reference to a key in a ConfigMap. Exactly one 17115 Secret or ConfigMap has to be specified. 17116 name: 17117 type: string 17118 description: >- 17119 Name of the volume which will be added to the 17120 Kafka Connect pods. 17121 secret: 17122 type: object 17123 properties: 17124 defaultMode: 17125 type: integer 17126 items: 17127 type: array 17128 items: 17129 type: object 17130 properties: 17131 key: 17132 type: string 17133 mode: 17134 type: integer 17135 path: 17136 type: string 17137 optional: 17138 type: boolean 17139 secretName: 17140 type: string 17141 description: >- 17142 Reference to a key in a Secret. Exactly one Secret 17143 or ConfigMap has to be specified. 17144 required: 17145 - name 17146 description: >- 17147 Makes data from a Secret or ConfigMap available in the 17148 Kafka Connect pods as volumes. 17149 description: >- 17150 Pass data from Secrets or ConfigMaps to the Kafka Connect 17151 pods and use them to configure connectors. 17152 metricsConfig: 17153 type: object 17154 properties: 17155 type: 17156 type: string 17157 enum: 17158 - jmxPrometheusExporter 17159 description: >- 17160 Metrics type. Only 'jmxPrometheusExporter' supported 17161 currently. 17162 valueFrom: 17163 type: object 17164 properties: 17165 configMapKeyRef: 17166 type: object 17167 properties: 17168 key: 17169 type: string 17170 name: 17171 type: string 17172 optional: 17173 type: boolean 17174 description: >- 17175 Reference to the key in the ConfigMap containing the 17176 configuration. 17177 description: >- 17178 ConfigMap entry where the Prometheus JMX Exporter 17179 configuration is stored. For details of the structure of 17180 this configuration, see the {JMXExporter}. 17181 required: 17182 - type 17183 - valueFrom 17184 description: Metrics configuration. 17185 required: 17186 - connectCluster 17187 description: The specification of the Kafka MirrorMaker 2.0 cluster. 17188 status: 17189 type: object 17190 properties: 17191 conditions: 17192 type: array 17193 items: 17194 type: object 17195 properties: 17196 type: 17197 type: string 17198 description: >- 17199 The unique identifier of a condition, used to 17200 distinguish between other conditions in the resource. 17201 status: 17202 type: string 17203 description: >- 17204 The status of the condition, either True, False or 17205 Unknown. 17206 lastTransitionTime: 17207 type: string 17208 description: >- 17209 Last time the condition of a type changed from one 17210 status to another. The required format is 17211 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone. 17212 reason: 17213 type: string 17214 description: >- 17215 The reason for the condition's last transition (a 17216 single word in CamelCase). 17217 message: 17218 type: string 17219 description: >- 17220 Human-readable message indicating details about the 17221 condition's last transition. 17222 description: List of status conditions. 17223 observedGeneration: 17224 type: integer 17225 description: >- 17226 The generation of the CRD that was last reconciled by the 17227 operator. 17228 url: 17229 type: string 17230 description: >- 17231 The URL of the REST API endpoint for managing and monitoring 17232 Kafka Connect connectors. 17233 connectorPlugins: 17234 type: array 17235 items: 17236 type: object 17237 properties: 17238 type: 17239 type: string 17240 description: >- 17241 The type of the connector plugin. The available types 17242 are `sink` and `source`. 17243 version: 17244 type: string 17245 description: The version of the connector plugin. 17246 class: 17247 type: string 17248 description: The class of the connector plugin. 17249 description: >- 17250 The list of connector plugins available in this Kafka 17251 Connect deployment. 17252 connectors: 17253 type: array 17254 items: 17255 x-kubernetes-preserve-unknown-fields: true 17256 type: object 17257 description: >- 17258 List of MirrorMaker 2.0 connector statuses, as reported by 17259 the Kafka Connect REST API. 17260 labelSelector: 17261 type: string 17262 description: Label selector for pods providing this resource. 17263 replicas: 17264 type: integer 17265 description: >- 17266 The current number of pods being used to provide this 17267 resource. 17268 description: The status of the Kafka MirrorMaker 2.0 cluster. 17269 17270 --- 17271 apiVersion: apiextensions.k8s.io/v1 17272 kind: CustomResourceDefinition 17273 metadata: 17274 name: kafkarebalances.kafka.strimzi.io 17275 labels: 17276 app: strimzi 17277 strimzi.io/crd-install: 'true' 17278 spec: 17279 group: kafka.strimzi.io 17280 names: 17281 kind: KafkaRebalance 17282 listKind: KafkaRebalanceList 17283 singular: kafkarebalance 17284 plural: kafkarebalances 17285 shortNames: 17286 - kr 17287 categories: 17288 - strimzi 17289 scope: Namespaced 17290 conversion: 17291 strategy: None 17292 versions: 17293 - name: v1beta2 17294 served: true 17295 storage: true 17296 subresources: 17297 status: {} 17298 additionalPrinterColumns: 17299 - name: Cluster 17300 description: The name of the Kafka cluster this resource rebalances 17301 jsonPath: .metadata.labels.strimzi\.io/cluster 17302 type: string 17303 schema: 17304 openAPIV3Schema: 17305 type: object 17306 properties: 17307 spec: 17308 type: object 17309 properties: 17310 goals: 17311 type: array 17312 items: 17313 type: string 17314 description: >- 17315 A list of goals, ordered by decreasing priority, to use for 17316 generating and executing the rebalance proposal. The 17317 supported goals are available at 17318 https://github.com/linkedin/cruise-control#goals. If an 17319 empty goals list is provided, the goals declared in the 17320 default.goals Cruise Control configuration parameter are 17321 used. 17322 skipHardGoalCheck: 17323 type: boolean 17324 description: >- 17325 Whether to allow the hard goals specified in the Kafka CR to 17326 be skipped in optimization proposal generation. This can be 17327 useful when some of those hard goals are preventing a 17328 balance solution being found. Default is false. 17329 rebalanceDisk: 17330 type: boolean 17331 description: >- 17332 Enables intra-broker disk balancing, which balances disk 17333 space utilization between disks on the same broker. Only 17334 applies to Kafka deployments that use JBOD storage with 17335 multiple disks. When enabled, inter-broker balancing is 17336 disabled. Default is false. 17337 excludedTopics: 17338 type: string 17339 description: >- 17340 A regular expression where any matching topics will be 17341 excluded from the calculation of optimization proposals. 17342 This expression will be parsed by the 17343 java.util.regex.Pattern class; for more information on the 17344 supported format consult the documentation for that class. 17345 concurrentPartitionMovementsPerBroker: 17346 type: integer 17347 minimum: 0 17348 description: >- 17349 The upper bound of ongoing partition replica movements going 17350 into/out of each broker. Default is 5. 17351 concurrentIntraBrokerPartitionMovements: 17352 type: integer 17353 minimum: 0 17354 description: >- 17355 The upper bound of ongoing partition replica movements 17356 between disks within each broker. Default is 2. 17357 concurrentLeaderMovements: 17358 type: integer 17359 minimum: 0 17360 description: >- 17361 The upper bound of ongoing partition leadership movements. 17362 Default is 1000. 17363 replicationThrottle: 17364 type: integer 17365 minimum: 0 17366 description: >- 17367 The upper bound, in bytes per second, on the bandwidth used 17368 to move replicas. There is no limit by default. 17369 replicaMovementStrategies: 17370 type: array 17371 items: 17372 type: string 17373 description: >- 17374 A list of strategy class names used to determine the 17375 execution order for the replica movements in the generated 17376 optimization proposal. By default 17377 BaseReplicaMovementStrategy is used, which will execute the 17378 replica movements in the order that they were generated. 17379 description: The specification of the Kafka rebalance. 17380 status: 17381 type: object 17382 properties: 17383 conditions: 17384 type: array 17385 items: 17386 type: object 17387 properties: 17388 type: 17389 type: string 17390 description: >- 17391 The unique identifier of a condition, used to 17392 distinguish between other conditions in the resource. 17393 status: 17394 type: string 17395 description: >- 17396 The status of the condition, either True, False or 17397 Unknown. 17398 lastTransitionTime: 17399 type: string 17400 description: >- 17401 Last time the condition of a type changed from one 17402 status to another. The required format is 17403 'yyyy-MM-ddTHH:mm:ssZ', in the UTC time zone. 17404 reason: 17405 type: string 17406 description: >- 17407 The reason for the condition's last transition (a 17408 single word in CamelCase). 17409 message: 17410 type: string 17411 description: >- 17412 Human-readable message indicating details about the 17413 condition's last transition. 17414 description: List of status conditions. 17415 observedGeneration: 17416 type: integer 17417 description: >- 17418 The generation of the CRD that was last reconciled by the 17419 operator. 17420 sessionId: 17421 type: string 17422 description: >- 17423 The session identifier for requests to Cruise Control 17424 pertaining to this KafkaRebalance resource. This is used by 17425 the Kafka Rebalance operator to track the status of ongoing 17426 rebalancing operations. 17427 optimizationResult: 17428 x-kubernetes-preserve-unknown-fields: true 17429 type: object 17430 description: A JSON object describing the optimization result. 17431 description: The status of the Kafka rebalance. 17432 17433 --- 17434 apiVersion: v1 17435 kind: ServiceAccount 17436 metadata: 17437 name: strimzi-cluster-operator 17438 labels: 17439 app: strimzi 17440 namespace: kafka 17441 17442 --- 17443 apiVersion: apps/v1 17444 kind: Deployment 17445 metadata: 17446 name: strimzi-cluster-operator 17447 labels: 17448 app: strimzi 17449 namespace: kafka 17450 spec: 17451 replicas: 1 17452 selector: 17453 matchLabels: 17454 name: strimzi-cluster-operator 17455 strimzi.io/kind: cluster-operator 17456 template: 17457 metadata: 17458 labels: 17459 name: strimzi-cluster-operator 17460 strimzi.io/kind: cluster-operator 17461 spec: 17462 serviceAccountName: strimzi-cluster-operator 17463 volumes: 17464 - name: strimzi-tmp 17465 emptyDir: 17466 medium: Memory 17467 sizeLimit: 1Mi 17468 - name: co-config-volume 17469 configMap: 17470 name: strimzi-cluster-operator 17471 containers: 17472 - name: strimzi-cluster-operator 17473 image: 'quay.io/strimzi/operator:0.28.0' 17474 ports: 17475 - containerPort: 8080 17476 name: http 17477 args: 17478 - /opt/strimzi/bin/cluster_operator_run.sh 17479 volumeMounts: 17480 - name: strimzi-tmp 17481 mountPath: /tmp 17482 - name: co-config-volume 17483 mountPath: /opt/strimzi/custom-config/ 17484 env: 17485 - name: STRIMZI_NAMESPACE 17486 valueFrom: 17487 fieldRef: 17488 fieldPath: metadata.namespace 17489 - name: STRIMZI_FULL_RECONCILIATION_INTERVAL_MS 17490 value: '120000' 17491 - name: STRIMZI_OPERATION_TIMEOUT_MS 17492 value: '300000' 17493 - name: STRIMZI_DEFAULT_TLS_SIDECAR_ENTITY_OPERATOR_IMAGE 17494 value: 'quay.io/strimzi/kafka:0.28.0-kafka-3.1.0' 17495 - name: STRIMZI_DEFAULT_KAFKA_EXPORTER_IMAGE 17496 value: 'quay.io/strimzi/kafka:0.28.0-kafka-3.1.0' 17497 - name: STRIMZI_DEFAULT_CRUISE_CONTROL_IMAGE 17498 value: 'quay.io/strimzi/kafka:0.28.0-kafka-3.1.0' 17499 - name: STRIMZI_DEFAULT_TLS_SIDECAR_CRUISE_CONTROL_IMAGE 17500 value: 'quay.io/strimzi/kafka:0.28.0-kafka-3.1.0' 17501 - name: STRIMZI_KAFKA_IMAGES 17502 value: | 17503 3.0.0=quay.io/strimzi/kafka:0.28.0-kafka-3.0.0 17504 3.1.0=quay.io/strimzi/kafka:0.28.0-kafka-3.1.0 17505 - name: STRIMZI_KAFKA_CONNECT_IMAGES 17506 value: | 17507 3.0.0=quay.io/strimzi/kafka:0.28.0-kafka-3.0.0 17508 3.1.0=quay.io/strimzi/kafka:0.28.0-kafka-3.1.0 17509 - name: STRIMZI_KAFKA_MIRROR_MAKER_IMAGES 17510 value: | 17511 3.0.0=quay.io/strimzi/kafka:0.28.0-kafka-3.0.0 17512 3.1.0=quay.io/strimzi/kafka:0.28.0-kafka-3.1.0 17513 - name: STRIMZI_KAFKA_MIRROR_MAKER_2_IMAGES 17514 value: | 17515 3.0.0=quay.io/strimzi/kafka:0.28.0-kafka-3.0.0 17516 3.1.0=quay.io/strimzi/kafka:0.28.0-kafka-3.1.0 17517 - name: STRIMZI_DEFAULT_TOPIC_OPERATOR_IMAGE 17518 value: 'quay.io/strimzi/operator:0.28.0' 17519 - name: STRIMZI_DEFAULT_USER_OPERATOR_IMAGE 17520 value: 'quay.io/strimzi/operator:0.28.0' 17521 - name: STRIMZI_DEFAULT_KAFKA_INIT_IMAGE 17522 value: 'quay.io/strimzi/operator:0.28.0' 17523 - name: STRIMZI_DEFAULT_KAFKA_BRIDGE_IMAGE 17524 value: 'quay.io/strimzi/kafka-bridge:0.21.4' 17525 - name: STRIMZI_DEFAULT_JMXTRANS_IMAGE 17526 value: 'quay.io/strimzi/jmxtrans:0.28.0' 17527 - name: STRIMZI_DEFAULT_KANIKO_EXECUTOR_IMAGE 17528 value: 'quay.io/strimzi/kaniko-executor:0.28.0' 17529 - name: STRIMZI_DEFAULT_MAVEN_BUILDER 17530 value: 'quay.io/strimzi/maven-builder:0.28.0' 17531 - name: STRIMZI_OPERATOR_NAMESPACE 17532 valueFrom: 17533 fieldRef: 17534 fieldPath: metadata.namespace 17535 - name: STRIMZI_FEATURE_GATES 17536 value: '' 17537 livenessProbe: 17538 httpGet: 17539 path: /healthy 17540 port: http 17541 initialDelaySeconds: 10 17542 periodSeconds: 30 17543 readinessProbe: 17544 httpGet: 17545 path: /ready 17546 port: http 17547 initialDelaySeconds: 10 17548 periodSeconds: 30 17549 resources: 17550 limits: 17551 cpu: 1000m 17552 memory: 384Mi 17553 requests: 17554 cpu: 200m 17555 memory: 384Mi 17556 strategy: 17557 type: Recreate 17558 17559 --- 17560 apiVersion: rbac.authorization.k8s.io/v1 17561 kind: ClusterRoleBinding 17562 metadata: 17563 name: strimzi-cluster-operator 17564 labels: 17565 app: strimzi 17566 subjects: 17567 - kind: ServiceAccount 17568 name: strimzi-cluster-operator 17569 namespace: kafka 17570 roleRef: 17571 kind: ClusterRole 17572 name: strimzi-cluster-operator-global 17573 apiGroup: rbac.authorization.k8s.io 17574 17575 --- 17576 apiVersion: rbac.authorization.k8s.io/v1 17577 kind: RoleBinding 17578 metadata: 17579 name: strimzi-cluster-operator 17580 labels: 17581 app: strimzi 17582 namespace: kafka 17583 subjects: 17584 - kind: ServiceAccount 17585 name: strimzi-cluster-operator 17586 namespace: kafka 17587 roleRef: 17588 kind: ClusterRole 17589 name: strimzi-cluster-operator-namespaced 17590 apiGroup: rbac.authorization.k8s.io