Skip to content

Commit

Permalink
Catalog v1 networking.istio.io crds (#362)
Browse files Browse the repository at this point in the history
  • Loading branch information
@nebojsa-prodana
nebojsa-prodana authored Aug 7, 2024
1 parent 097c369 commit 295fe68
Show file tree
Hide file tree
Showing 7 changed files with 4,582 additions and 0 deletions.
2,074 changes: 2,074 additions & 0 deletions networking.istio.io/destinationrule_v1.json
View file

Large diffs are not rendered by default.

179 changes: 179 additions & 0 deletions networking.istio.io/gateway_v1.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,179 @@
{
"properties": {
"spec": {
"description": "Configuration affecting edge load balancer. See more details at: https://istio.io/docs/reference/config/networking/gateway.html",
"properties": {
"selector": {
"additionalProperties": {
"type": "string"
},
"description": "One or more labels that indicate a specific set of pods/VMs on which this gateway configuration should be applied.",
"type": "object"
},
"servers": {
"description": "A list of server specifications.",
"items": {
"properties": {
"bind": {
"description": "The ip or the Unix domain socket to which the listener should be bound to.",
"type": "string"
},
"defaultEndpoint": {
"type": "string"
},
"hosts": {
"description": "One or more hosts exposed by this gateway.",
"items": {
"type": "string"
},
"type": "array"
},
"name": {
"description": "An optional name of the server, when set must be unique across all servers.",
"type": "string"
},
"port": {
"description": "The Port on which the proxy should listen for incoming connections.",
"properties": {
"name": {
"description": "Label assigned to the port.",
"type": "string"
},
"number": {
"description": "A valid non-negative integer port number.",
"maximum": 4294967295,
"minimum": 0,
"type": "integer"
},
"protocol": {
"description": "The protocol exposed on the port.",
"type": "string"
},
"targetPort": {
"maximum": 4294967295,
"minimum": 0,
"type": "integer"
}
},
"required": [
"number",
"protocol",
"name"
],
"type": "object",
"additionalProperties": false
},
"tls": {
"description": "Set of TLS related options that govern the server's behavior.",
"properties": {
"caCertificates": {
"description": "REQUIRED if mode is `MUTUAL` or `OPTIONAL_MUTUAL`.",
"type": "string"
},
"caCrl": {
"description": "OPTIONAL: The path to the file containing the certificate revocation list (CRL) to use in verifying a presented client side certificate.",
"type": "string"
},
"cipherSuites": {
"description": "Optional: If specified, only support the specified cipher list.",
"items": {
"type": "string"
},
"type": "array"
},
"credentialName": {
"description": "For gateways running on Kubernetes, the name of the secret that holds the TLS certs including the CA certificates.",
"type": "string"
},
"httpsRedirect": {
"description": "If set to true, the load balancer will send a 301 redirect for all http connections, asking the clients to use HTTPS.",
"type": "boolean"
},
"maxProtocolVersion": {
"description": "Optional: Maximum TLS protocol version.\n\nValid Options: TLS_AUTO, TLSV1_0, TLSV1_1, TLSV1_2, TLSV1_3",
"enum": [
"TLS_AUTO",
"TLSV1_0",
"TLSV1_1",
"TLSV1_2",
"TLSV1_3"
],
"type": "string"
},
"minProtocolVersion": {
"description": "Optional: Minimum TLS protocol version.\n\nValid Options: TLS_AUTO, TLSV1_0, TLSV1_1, TLSV1_2, TLSV1_3",
"enum": [
"TLS_AUTO",
"TLSV1_0",
"TLSV1_1",
"TLSV1_2",
"TLSV1_3"
],
"type": "string"
},
"mode": {
"description": "Optional: Indicates whether connections to this port should be secured using TLS.\n\nValid Options: PASSTHROUGH, SIMPLE, MUTUAL, AUTO_PASSTHROUGH, ISTIO_MUTUAL, OPTIONAL_MUTUAL",
"enum": [
"PASSTHROUGH",
"SIMPLE",
"MUTUAL",
"AUTO_PASSTHROUGH",
"ISTIO_MUTUAL",
"OPTIONAL_MUTUAL"
],
"type": "string"
},
"privateKey": {
"description": "REQUIRED if mode is `SIMPLE` or `MUTUAL`.",
"type": "string"
},
"serverCertificate": {
"description": "REQUIRED if mode is `SIMPLE` or `MUTUAL`.",
"type": "string"
},
"subjectAltNames": {
"description": "A list of alternate names to verify the subject identity in the certificate presented by the client.",
"items": {
"type": "string"
},
"type": "array"
},
"verifyCertificateHash": {
"description": "An optional list of hex-encoded SHA-256 hashes of the authorized client certificates.",
"items": {
"type": "string"
},
"type": "array"
},
"verifyCertificateSpki": {
"description": "An optional list of base64-encoded SHA-256 hashes of the SPKIs of authorized client certificates.",
"items": {
"type": "string"
},
"type": "array"
}
},
"type": "object",
"additionalProperties": false
}
},
"required": [
"port",
"hosts"
],
"type": "object",
"additionalProperties": false
},
"type": "array"
}
},
"type": "object",
"additionalProperties": false
},
"status": {
"type": "object",
"x-kubernetes-preserve-unknown-fields": true
}
},
"type": "object"
}
161 changes: 161 additions & 0 deletions networking.istio.io/serviceentry_v1.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,161 @@
{
"properties": {
"spec": {
"description": "Configuration affecting service registry. See more details at: https://istio.io/docs/reference/config/networking/service-entry.html",
"properties": {
"addresses": {
"description": "The virtual IP addresses associated with the service.",
"items": {
"type": "string"
},
"type": "array"
},
"endpoints": {
"description": "One or more endpoints associated with the service.",
"items": {
"properties": {
"address": {
"description": "Address associated with the network endpoint without the port.",
"type": "string"
},
"labels": {
"additionalProperties": {
"type": "string"
},
"description": "One or more labels associated with the endpoint.",
"type": "object"
},
"locality": {
"description": "The locality associated with the endpoint.",
"type": "string"
},
"network": {
"description": "Network enables Istio to group endpoints resident in the same L3 domain/network.",
"type": "string"
},
"ports": {
"additionalProperties": {
"maximum": 4294967295,
"minimum": 0,
"type": "integer"
},
"description": "Set of ports associated with the endpoint.",
"type": "object"
},
"serviceAccount": {
"description": "The service account associated with the workload if a sidecar is present in the workload.",
"type": "string"
},
"weight": {
"description": "The load balancing weight associated with the endpoint.",
"maximum": 4294967295,
"minimum": 0,
"type": "integer"
}
},
"type": "object",
"additionalProperties": false
},
"type": "array"
},
"exportTo": {
"description": "A list of namespaces to which this service is exported.",
"items": {
"type": "string"
},
"type": "array"
},
"hosts": {
"description": "The hosts associated with the ServiceEntry.",
"items": {
"type": "string"
},
"type": "array"
},
"location": {
"description": "Specify whether the service should be considered external to the mesh or part of the mesh.\n\nValid Options: MESH_EXTERNAL, MESH_INTERNAL",
"enum": [
"MESH_EXTERNAL",
"MESH_INTERNAL"
],
"type": "string"
},
"ports": {
"description": "The ports associated with the external service.",
"items": {
"properties": {
"name": {
"description": "Label assigned to the port.",
"type": "string"
},
"number": {
"description": "A valid non-negative integer port number.",
"maximum": 4294967295,
"minimum": 0,
"type": "integer"
},
"protocol": {
"description": "The protocol exposed on the port.",
"type": "string"
},
"targetPort": {
"description": "The port number on the endpoint where the traffic will be received.",
"maximum": 4294967295,
"minimum": 0,
"type": "integer"
}
},
"required": [
"number",
"name"
],
"type": "object",
"additionalProperties": false
},
"type": "array"
},
"resolution": {
"description": "Service resolution mode for the hosts.\n\nValid Options: NONE, STATIC, DNS, DNS_ROUND_ROBIN",
"enum": [
"NONE",
"STATIC",
"DNS",
"DNS_ROUND_ROBIN"
],
"type": "string"
},
"subjectAltNames": {
"description": "If specified, the proxy will verify that the server certificate's subject alternate name matches one of the specified values.",
"items": {
"type": "string"
},
"type": "array"
},
"workloadSelector": {
"description": "Applicable only for MESH_INTERNAL services.",
"properties": {
"labels": {
"additionalProperties": {
"type": "string"
},
"description": "One or more labels that indicate a specific set of pods/VMs on which the configuration should be applied.",
"type": "object"
}
},
"type": "object",
"additionalProperties": false
}
},
"required": [
"hosts"
],
"type": "object",
"additionalProperties": false
},
"status": {
"type": "object",
"x-kubernetes-preserve-unknown-fields": true
}
},
"type": "object"
}
Loading

0 comments on commit 295fe68

Please sign in to comment.