github.com/nginxinc/kubernetes-ingress@v1.12.5/deployments/common/crds/k8s.nginx.org_policies.yaml (about)

     1  apiVersion: apiextensions.k8s.io/v1
     2  kind: CustomResourceDefinition
     3  metadata:
     4    annotations:
     5      controller-gen.kubebuilder.io/version: v0.6.2
     6    creationTimestamp: null
     7    name: policies.k8s.nginx.org
     8  spec:
     9    group: k8s.nginx.org
    10    names:
    11      kind: Policy
    12      listKind: PolicyList
    13      plural: policies
    14      shortNames:
    15        - pol
    16      singular: policy
    17    scope: Namespaced
    18    versions:
    19      - additionalPrinterColumns:
    20          - description: Current state of the Policy. If the resource has a valid status, it means it has been validated and accepted by the Ingress Controller.
    21            jsonPath: .status.state
    22            name: State
    23            type: string
    24          - jsonPath: .metadata.creationTimestamp
    25            name: Age
    26            type: date
    27        name: v1
    28        schema:
    29          openAPIV3Schema:
    30            description: Policy defines a Policy for VirtualServer and VirtualServerRoute resources.
    31            type: object
    32            properties:
    33              apiVersion:
    34                description: 'APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources'
    35                type: string
    36              kind:
    37                description: 'Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds'
    38                type: string
    39              metadata:
    40                type: object
    41              spec:
    42                description: PolicySpec is the spec of the Policy resource. The spec includes multiple fields, where each field represents a different policy. Only one policy (field) is allowed.
    43                type: object
    44                properties:
    45                  accessControl:
    46                    description: 'AccessControl defines an access policy based on the source IP of a request. policy status: production-ready'
    47                    type: object
    48                    properties:
    49                      allow:
    50                        type: array
    51                        items:
    52                          type: string
    53                      deny:
    54                        type: array
    55                        items:
    56                          type: string
    57                  egressMTLS:
    58                    description: 'EgressMTLS defines an Egress MTLS policy. policy status: preview'
    59                    type: object
    60                    properties:
    61                      ciphers:
    62                        type: string
    63                      protocols:
    64                        type: string
    65                      serverName:
    66                        type: boolean
    67                      sessionReuse:
    68                        type: boolean
    69                      sslName:
    70                        type: string
    71                      tlsSecret:
    72                        type: string
    73                      trustedCertSecret:
    74                        type: string
    75                      verifyDepth:
    76                        type: integer
    77                      verifyServer:
    78                        type: boolean
    79                  ingressMTLS:
    80                    description: 'IngressMTLS defines an Ingress MTLS policy. policy status: preview'
    81                    type: object
    82                    properties:
    83                      clientCertSecret:
    84                        type: string
    85                      verifyClient:
    86                        type: string
    87                      verifyDepth:
    88                        type: integer
    89                  jwt:
    90                    description: 'JWTAuth holds JWT authentication configuration. policy status: preview'
    91                    type: object
    92                    properties:
    93                      realm:
    94                        type: string
    95                      secret:
    96                        type: string
    97                      token:
    98                        type: string
    99                  oidc:
   100                    description: OIDC defines an Open ID Connect policy.
   101                    type: object
   102                    properties:
   103                      authEndpoint:
   104                        type: string
   105                      clientID:
   106                        type: string
   107                      clientSecret:
   108                        type: string
   109                      jwksURI:
   110                        type: string
   111                      redirectURI:
   112                        type: string
   113                      scope:
   114                        type: string
   115                      tokenEndpoint:
   116                        type: string
   117                  rateLimit:
   118                    description: 'RateLimit defines a rate limit policy. policy status: preview'
   119                    type: object
   120                    properties:
   121                      burst:
   122                        type: integer
   123                      delay:
   124                        type: integer
   125                      dryRun:
   126                        type: boolean
   127                      key:
   128                        type: string
   129                      logLevel:
   130                        type: string
   131                      noDelay:
   132                        type: boolean
   133                      rate:
   134                        type: string
   135                      rejectCode:
   136                        type: integer
   137                      zoneSize:
   138                        type: string
   139                  waf:
   140                    description: 'WAF defines an WAF policy. policy status: preview'
   141                    type: object
   142                    properties:
   143                      apPolicy:
   144                        type: string
   145                      enable:
   146                        type: boolean
   147                      securityLog:
   148                        description: SecurityLog defines the security log of a WAF policy.
   149                        type: object
   150                        properties:
   151                          apLogConf:
   152                            type: string
   153                          enable:
   154                            type: boolean
   155                          logDest:
   156                            type: string
   157              status:
   158                description: PolicyStatus is the status of the policy resource
   159                type: object
   160                properties:
   161                  message:
   162                    type: string
   163                  reason:
   164                    type: string
   165                  state:
   166                    type: string
   167        served: true
   168        storage: true
   169        subresources:
   170          status: {}
   171  status:
   172    acceptedNames:
   173      kind: ""
   174      plural: ""
   175    conditions: []
   176    storedVersions: []